centos:7/oraclelinux:7 now includes libseccomp 2.2.1

[cpuguy83]

- What I did
Make centos/oraclelinux more secure
- How I did it
disable centos filter in rpm builder
- How to verify it
make rpm and install on centos
- Description for the changelog
centos package now supports seccomp

Signed-off-by: Brian Goff cpuguy83@gmail.com

[cpuguy83]

Tested and verified on a centos 7 VM:

[thaJeztah]

Can you also update the docs? The note mentions seccomp not being available on CentOS; https://github.com/docker/docker/blob/master/docs/security/seccomp.md

[cpuguy83]

ping @Djelibeybi added OL7 here.

[Djelibeybi]

Thanks @cpuguy83. I'll ping our internal team to build and test.

[Djelibeybi]

@cpuguy83 built and tested internally on Oracle Linux 7, with all seccomp tests passing. 👍

[thaJeztah]

LGTM

/cc @justincormack ptal

[justincormack]

Excellent, getting to the stage where most of the users should have seccomp which is great. LGTM. (Hi Avi, its been a while!)

[justincormack]

I see 2.2.3 is in jessie backports, so we could document this too (not necessarily in this PR though).

[runcom]

LGTM

[Djelibeybi]

Hey @justincormack, long time no see. :)

FYI, @cpuguy83 - we're working internally on backporting libseccomp-2.2.1 to OL6 and enabling seccomp support for Docker on that platform. There appear to be some gcc/glibc issues here, so it's still a work in progress. Once we have something working, I'll submit a PR to update the OL6 Dockerfile accordingly.