vbatts/pkg
1
0
Fork 0
Code Pull requests Releases Activity

Merge pull request #5448 from crosbymichael/selinux-defaults

Browse source 
Add selinux label support for processes and mount
This commit is contained in:
Guillaume J. Charmes 2014-04-30 14:14:39 -07:00
commit b6344f992e
6 changed files with 53 additions and 18 deletions
Download patch file Download diff file Expand all files Collapse all files

3
libcontainer/nsinit/init.go
View file

@ -75,8 +75,9 @@ func (ns *linuxNs) Init(container *libcontainer.Container, uncleanRootfs, consol
}
}
runtime.LockOSThread()
if err := label.SetProcessLabel(container.Context["process_label"]); err != nil {
return fmt.Errorf("SetProcessLabel label %s", err)
return fmt.Errorf("set process label %s", err)
}
ns.logger.Printf("execing %s\n", args[0])
return system.Execv(args[0], args[0:], container.Env)