https://github.com/rainingmaster/container500lines

https://github.com/rainingmaster/container500lines

Last synced: about 1 year ago
JSON representation

• Host: GitHub
• URL: https://github.com/rainingmaster/container500lines
• Owner: rainingmaster
• Created: 2019-04-24T15:09:25.000Z (about 7 years ago)
• Default Branch: master
• Last Pushed: 2019-04-24T15:11:12.000Z (about 7 years ago)
• Last Synced: 2025-03-25T10:51:09.827Z (about 1 year ago)
• Language: C
• Size: 6.84 KB
• Stars: 6
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# Changes

* `seccomp.h`, also inlcude `linux/seccomp.h`. Also, `sudo apt-get install -y

  libseccomp-dev`

* `sys/capability.h` was not found until after `sudo apt-get install -y

  libcap-dev`

* There seems to be a thing about `CLONE_NEWCGROUP`. The macro is defined in

  `linux/sched.h` but not in `sched.h`. This also seems to be a 4.6 and greater

  feature.

* `linux/sched.h` only has cloning flags but not `clone()` declaration.

```

 contained.c:487:29: error: ‘SCMP_FAIL’ undeclared (first use in this function)

      || seccomp_rule_add(ctx, SCMP_FAIL, SCMP_SYS(chmod), 1,

 ```

 also see this [website](https://blog.lizzie.io/linux-containers-in-500-loc.html)