- 18 May, 2019 40 commits
-
-
Rikard Falkeborn authored
Signed-off-by:Rikard Falkeborn <rikard.falkeborn@gmail.com>
-
Rikard Falkeborn authored
Returning -1 in a function with return type bool is the same as returning true. Change to return false to indicate error properly. Detected with cppcheck. Signed-off-by: -
Rikard Falkeborn authored
Returning -1 in a function with return type bool is the same as returning true. Change to return false to indicate error properly. Detected with cppcheck. Signed-off-by: -
Rikard Falkeborn authored
Since _exit() will terminate, the return statement is dead code. Also, returning -1 from a function with bool as return type is confusing. Detected with cppcheck. Signed-off-by: -
Radostin Stoyanov authored
CRIU has only 4 levels of verbosity (errors, warnings, info, debug). Thus, using `-v4` is more appropriate. https://criu.org/LoggingSigned-off-by:
Radostin Stoyanov <rstoyanov1@gmail.com>
-
Rachid Koucha authored
As suggested during the review. Signed-off-by:Rachid Koucha <rachid.koucha@gmail.com>
-
Rachid Koucha authored
lxc-ls without root privileges on privileged containers should not display information. In lxc_container_new(), ongoing_create()'s result is not checked for all possible returned values. Hence, an unprivileged user can send command messages to the container's monitor. For example: $ lxc-ls -P /.../tests -f NAME STATE AUTOSTART GROUPS IPV4 IPV6 UNPRIVILEGED ctr - 0 - - - false $ sudo lxc-ls -P /.../tests -f NAME STATE AUTOSTART GROUPS IPV4 IPV6 UNPRIVILEGED ctr RUNNING 0 - 10.0.3.51 - false After this change: $ lxc-ls -P /.../tests -f <-------- No more display without root privileges $ sudo lxc-ls -P /.../tests -f NAME STATE AUTOSTART GROUPS IPV4 IPV6 UNPRIVILEGED ctr RUNNING 0 - 10.0.3.37 - false $ Signed-off-by:
Christian Brauner <christian.brauner@ubuntu.com>
-
Rachid Koucha authored
. Add the "--bbpath" option to pass an alternate busybox pathname instead of the one found from ${PATH}. . Take this opportunity to add some formatting in the usage display . As a try is done to pick rootfs from the config file and set it to ${path}/rootfs, it is unnecessary to make it mandatory Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Rachid Koucha authored
Some error messages were not redirected to stderr. Moreover, do "exit 0" instead of "exit 1" when "help" option is passed. Signed-off-by: -
Christian Brauner authored
Use CLONE_PIDFD when possible. Note the clone() syscall ignores unknown flags which is usually a design mistake. However, for us this bug is a feature since we can just pass the flag along and see whether the kernel has given us a pidfd. Signed-off-by: -
Thomas Parrott authored
The phys devices will now have their original MTUs recorded at start and restored at shutdown. This is to protect the original phys device from having any container level MTU customisation being applied to the device once it is restored to the host. Signed-off-by:Thomas Parrott <thomas.parrott@canonical.com>
-
Christian Brauner authored
Signed-off-by: -
Thomas Parrott authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by:
David Howells <dhowells@redhat.com> Signed-off-by:
-
Christian Brauner authored
Signed-off-by: -
Rachid Koucha authored
Added /dev in the mknod commands. Signed-off-by: -
Christian Brauner authored
Well, I added this syscall so we better use it. :) Signed-off-by: -
Christian Brauner authored
The returns_twice attribute tells the compiler that a function may return more than one time. The compiler will ensure that all registers are dead before calling such a function and will emit a warning about the variables that may be clobbered after the second return from the function. Examples of such functions are setjmp and vfork. The longjmp-like counterpart of such function, if any, might need to be marked with the noreturn attribute. Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Serge Hallyn authored
Signed-off-by:Serge Hallyn <shallyn@cisco.com>
-
Christian Brauner authored
Signed-off-by: -
tomponline authored
Signed-off-by: -
tomponline authored
Signed-off-by: -
tomponline authored
Signed-off-by: -
tomponline authored
Signed-off-by: -
tomponline authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
This backports various helpers associated with seccomp notify to make maintenance easier. Signed-off-by: -
Christian Brauner authored
This backports seccomp notify into various parts of the codebase as a pure nop to make maintenance easier. Signed-off-by: -
pgauret authored
Another case of calling 'zfs get' which requires reordering arguments to work with latest zfs. Signed-off-by:Paul Gauret <pgauret@yahoo.com>
-
Tycho Andersen authored
We don't in fact exit(1) if this is not specified, and it wouldn't make sense to, since most people probably don't specify this. Signed-off-by:Tycho Andersen <tycho@tycho.ws>
-
Christian Brauner authored
s/NETLINK_DUMP_STRICT_CHK/NETLINK_GET_STRICT_CHK/g Signed-off-by: -
Felix Abecassis authored
These configuration options use the same syntax and therefore it seems more intuitive to have the same behavior for both of them, which is not the case today since mount hooks and autodev mounts are called between the two. See: https://github.com/lxc/lxc/issues/2932Signed-off-by:
Felix Abecassis <fabecassis@nvidia.com>
-
pgauret authored
Change zfs arguments. This also works with older zfs versions, tested with zfs 0.7.9-3 on Ubuntu 18.10. Closes #2916. Signed-off-by:
-
Christian Brauner authored
We can simply fix this issue by switching to our cleanup macros instead of manually freeing the memory. Closes #2912. Signed-off-by: -
yosukesan authored
Signed-off-by:yosukesan <y.otsuki30@gmail.com>
-
KATOH Yasufumi authored
Update for commit db74bbd0Signed-off-by:
KATOH Yasufumi <karma@jazz.email.ne.jp>
-
Christian Brauner authored
Signed-off-by:
-
