rpms/skopeo
7
0
Fork 0
Code Issues Pull Requests Releases Activity

Add SETFCAP back into default capabilities

Browse Source 
Remove AUDIT_WRITE from default capabilities
This commit is contained in:
Daniel J Walsh 2020-10-02 13:08:06 -04:00
parent f5aa131e4c
commit 957b244757
No known key found for this signature in database
GPG Key ID: A2DF901DABE2C028
2 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
containers.conf
View File

@ -60,13 +60,13 @@
# the default capabilities defined in the container engine will be added. # the default capabilities defined in the container engine will be added.
# #
default_capabilities = [ default_capabilities = [
"AUDIT_WRITE",
"CHOWN", "CHOWN",
"DAC_OVERRIDE", "DAC_OVERRIDE",
"FOWNER", "FOWNER",
"FSETID", "FSETID",
"KILL", "KILL",
"NET_BIND_SERVICE", "NET_BIND_SERVICE",
"SETFCAP",
"SETGID", "SETGID",
"SETPCAP", "SETPCAP",
"SETUID", "SETUID",

6
skopeo.spec
View File

@ -46,7 +46,7 @@ Epoch: 1
Epoch: 2 Epoch: 2
%endif %endif
Version: 1.2.1 Version: 1.2.1
Release: 4.dev.git%{shortcommit0}%{?dist} Release: 5.dev.git%{shortcommit0}%{?dist}
Summary: Inspect container images and repositories on registries Summary: Inspect container images and repositories on registries
License: ASL 2.0 License: ASL 2.0
URL: %{git0} URL: %{git0}
@ -447,6 +447,10 @@ export GOPATH=%{buildroot}/%{gopath}:$(pwd)/vendor:%{gopath}
%{_datadir}/%{name}/test %{_datadir}/%{name}/test
%changelog %changelog
* Fri Oct 2 2020 Dan Walsh <dwalsh@fedoraproject.org> - 1:1.2.1-5.dev.gitd8bc8b6
- Add SETFCAP back into default capabilities
- Remove AUDIT_WRITE from default capabilities
* Fri Oct 2 2020 RH Container Bot <rhcontainerbot@fedoraproject.org> - 1:1.2.1-4.dev.gitd8bc8b6 * Fri Oct 2 2020 RH Container Bot <rhcontainerbot@fedoraproject.org> - 1:1.2.1-4.dev.gitd8bc8b6
- autobuilt d8bc8b6 - autobuilt d8bc8b6