containers/podman.git - forked from: https://github.com/containers/podman.git

	Commit message (Collapse)	Author	Age
*	In podman 1.* regression on --cap-add	Daniel J Walsh	2020-08-21
\| \| \| \| \| \| \| \| \| \| \| \|	In podman 1.0 if you executed a command like: podman run --user dwalsh --cap-add net_bind_service alpine nc -l 80 It would work, and the user dwalsh would get the capability, in podman 2.0, only root and the binding set gets the capability. This change restores us back to the way podman 1.0 worked. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
*	Allow specifying seccomp profiles for privileged containers	Sascha Grunert	2020-08-11
\| \| \| \| \| \| \|	To sync the behavior between AppArmor and seccomp it is now possible to also specify seccomp profiles for privileged containers. Signed-off-by: Sascha Grunert <sgrunert@suse.com>
*	Switch all references to github.com/containers/libpod -> podman	Daniel J Walsh	2020-07-28
\| \| \| \|	Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
*	Support default profile for apparmor	Daniel J Walsh	2020-07-22
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	Currently you can not apply an ApparmorProfile if you specify --privileged. This patch will allow both to be specified simultaniosly. By default Apparmor should be disabled if the user specifies --privileged, but if the user specifies --security apparmor:PROFILE, with --privileged, we should do both. Added e2e run_apparmor_test.go Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
*	move go module to v2	Valentin Rothberg	2020-07-06
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	With the advent of Podman 2.0.0 we crossed the magical barrier of go modules. While we were able to continue importing all packages inside of the project, the project could not be vendored anymore from the outside. Move the go module to new major version and change all imports to `github.com/containers/libpod/v2`. The renaming of the imports was done via `gomove` [1]. [1] https://github.com/KSubedi/gomove Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
*	Handle dropping capabilties correctly when running as non root user	Daniel J Walsh	2020-06-17
\| \| \| \|	Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
*	Properly handle default capabilities listed in containers.conf	Daniel J Walsh	2020-05-01
\| \| \| \| \| \| \|	If user/admin specifies a different list of default capabilties we need to honor these. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
*	Handle Linux Capabilities correctly	Daniel J Walsh	2020-04-20
\| \| \| \| \| \| \| \|	If user sets capabilities list we need handle minimal capabilities. Also handle seccomp-policy being passed in. Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
*	podman v2 remove bloat v2	Brent Baude	2020-04-16
	rid ourseleves of libpod references in v2 client Signed-off-by: Brent Baude <bbaude@redhat.com>