enable tsan and improve docker security #157

tomerd · 2020-01-31T00:15:42Z

motivation: more secured ci setup

changes:

enable :z selinux flag on bind mounts so we can enable selinux on ci
drop potentially exploitable capabilities from docker-compose
create a 16.04 docker-compose setup so we can run tsan in ci (broken on 18.04)

motivation: more secured ci setup changes: * enable :z selinux flag on bind mounts so we can enable selinux on ci * drop potentially exploitable capabilities from docker-compose * create a 16.04 docker-compose setup so we can run tsan in ci (broken on 18.04)

tomerd requested review from weissi and artemredkin January 31, 2020 00:15

artemredkin approved these changes Jan 31, 2020

View reviewed changes

weissi merged commit a49510c into swift-server:master Jan 31, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

enable tsan and improve docker security #157

enable tsan and improve docker security #157

tomerd commented Jan 31, 2020

enable tsan and improve docker security #157

enable tsan and improve docker security #157

Conversation

tomerd commented Jan 31, 2020