-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/50270/
-----------------------------------------------------------
(Updated Aug. 25, 2016, 5:18 p.m.)
Review request for mesos and Jie Yu.
Changes
-------
Rebased.
Bugs: MESOS-5303
https://issues.apache.org/jira/browse/MESOS-5303
Repository: mesos
Description
-------
This change introduces linux capability based security for unified
containerizer. A new agent flag \`allowed_capabilities\` has been
introduced to override the default capabilities of the user or the
capabilities requested by the user.
This feature is only available on linux.
This patch is based on https://reviews.apache.org/r/46798/.
Diffs (updated)
-----
src/launcher/executor.cpp 71ede1ea4f4e97fe94bd2bd136f17f231cedbce6
src/slave/flags.hpp 1a006663e7cc58ee548b3dda686cfbac0c240baa
src/slave/flags.cpp 0f2be1700f41b74da4ea1ce699a81ec33cf92a9a
Diff: https://reviews.apache.org/r/50270/diff/
Testing
-------
`make check` and `sudo make check` (Debian jessie, gcc-4.9.2, w/o optimizations)
Thanks,
Benjamin Bannier
