History

dependabot[bot] 738a3e241e build(deps): bump golang.org/x/term from 0.1.0 to 0.2.0 Bumps [golang.org/x/term](https://github.com/golang/term) from 0.1.0 to 0.2.0. - [Release notes](https://github.com/golang/term/releases) - [Commits](https://github.com/golang/term/compare/v0.1.0...v0.2.0) --- updated-dependencies: - dependency-name: golang.org/x/term dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>		2022-11-08 08:21:56 +00:00
..
.github	bump to golangci-lint v1.50.0	2022-10-17 15:03:07 +02:00
cmd/seccomp	Gofumpt the code	2022-04-09 16:50:11 -07:00
docs	feat: add support for the youki OCI Runtime	2022-10-22 10:35:23 +08:00
libimage	libimage: format platform warning	2022-11-03 09:45:11 +01:00
libnetwork	libnetwork/netavark: disable dns for macvlan	2022-10-25 16:14:19 +02:00
logos	feat: add logo for Podman Desktop	2022-10-26 11:11:51 +02:00
pkg	create known_hosts file path when missing	2022-11-04 08:30:42 -04:00
tests	new libimage package	2021-04-21 11:17:47 +02:00
tools	seccomp: add CI check for up-to-date seccomp.json	2021-01-27 21:40:45 +11:00
vendor	build(deps): bump golang.org/x/term from 0.1.0 to 0.2.0	2022-11-08 08:21:56 +00:00
version	Move to v0.50.2-dev	2022-09-30 06:11:05 -04:00
.cirrus.yml	cirrus: bump cpus and ram	2022-08-04 16:14:08 +02:00
.codespellrc	Create .codespellrc	2022-03-30 11:39:49 -07:00
.gitignore	Switch to ginkgo/v2	2022-03-30 10:03:17 +02:00
.golangci-extra.yml	CI: enable extra linters for new code	2022-05-16 19:54:38 -07:00
.golangci.yml	.golanci-lint: enable gofumpt	2022-05-16 20:01:08 -07:00
CODE-OF-CONDUCT.md	[CI:DOCS] Add more logos and Fix logo in Code of Conduct	2022-05-13 16:23:23 -04:00
CONTRIBUTING.md	fix typo	2018-12-10 12:57:11 +01:00
LICENSE	add Apache 2.0 license file	2019-11-18 10:41:54 +01:00
Makefile	bump to golangci-lint v1.50.0	2022-10-17 15:03:07 +02:00
OWNERS	OWNERS: add @mtrmac	2022-05-19 17:30:17 +02:00
README.md	Update README.md	2022-02-23 17:58:54 +01:00
SECURITY.md	Touch up Security title	2020-05-04 17:47:51 -04:00
go.mod	build(deps): bump golang.org/x/term from 0.1.0 to 0.2.0	2022-11-08 08:21:56 +00:00
go.sum	build(deps): bump golang.org/x/term from 0.1.0 to 0.2.0	2022-11-08 08:21:56 +00:00

README.md

containers/common

Location for shared common files and common go code to manage those files in github.com/containers repos.

The common files to one or more projects in the containers group will be kept in this repository.

It will be up to the individual projects to include the files from this repository.

seccomp

The seccomp package in pkg/seccomp is a set of Go libraries used by container runtimes to generate and load seccomp mappings into the kernel.

seccomp (short for secure computing mode) is a BPF based syscall filter language and present a more conventional function-call based filtering interface that should be familiar to, and easily adopted by, application developers.

Building the seccomp.json file

The make target make seccomp.json generates the seccomp.json file, which contains the allowed list of syscalls that can be used by container runtime engines like CRI-O, Buildah, Podman and Docker, and container runtimes like OCI Runc to control the syscalls available to containers.

Supported build tags

pkg/apparmor: apparmor, linux
pkg/seccomp: seccomp
pkg/config: darwin, remote, linux, systemd
pkg/sysinfo: linux, solaris, windows, cgo
pkg/cgroupv2: linux

Contributing

When developing this library, please use make (or make … BUILDTAGS=…) to take advantage of the tests and validation.

Contact

IRC: #containers on freenode.net