- 25 May, 2018 9 commits
-
-
Christian Brauner authored
Signed-off-by:Christian Brauner <christian.brauner@ubuntu.com>
-
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Seccomp fixup part 2
-
Wolfgang Bumiller authored
Be more strict about unrecognized actions. Previously the parser would happily accept lines with typos like: kexec_load errrno 1 (note the extra 'r') Signed-off-by:Wolfgang Bumiller <w.bumiller@proxmox.com>
-
Wolfgang Bumiller authored
Moving parse_config_v2 to use getline accidentally parsed the wrong buffer. Since both _v1 and _v2 now use getline it seems to be simpler to also use getline() for the first line before entering the version specific parsers and pass along the pointer and size so they can reuse them. Signed-off-by:
-
Wolfgang Bumiller authored
This can happen when the 'errno' action can't parse its supplied number. Signed-off-by:
-
Christian Brauner authored
seccomp: leak fixup
-
Wolfgang Bumiller authored
Fix an error case not free()ing the line forgotten during the move from fgets() on a static buffer to using getline. Signed-off-by:
-
Stéphane Graber authored
lxccontainer: fix fd leaks when sending signals
-
- 24 May, 2018 27 commits
-
-
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Stéphane Graber authored
seccomp: cleanup
-
Stéphane Graber authored
tree-wide: s/sigprocmask/pthread_sigmask()/g
-
Christian Brauner authored
sscanf() skips whitespace anyway so don't account for tabs in case the file layout changes. Signed-off-by: -
Christian Brauner authored
The behavior of sigprocmask() is unspecified in multi-threaded programs. Let's use pthread_sigmask() instead. Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Seccomp fixes
-
Felix Abecassis authored
Specifier %lli was insufficient for the type uint64_t, all values between 2^63-1 and 2^64-1 were silently converted to 2^63-1. We can't use %llu since it doesn't handle hexadecimal. Instead, we parse the values as strings and then use strtoull(3). Signed-off-by:Felix Abecassis <fabecassis@nvidia.com>
-
Felix Abecassis authored
Signed-off-by: -
Felix Abecassis authored
Signed-off-by: -
Felix Abecassis authored
The maximum field width does not include the null terminator. Signed-off-by:
-
- 23 May, 2018 4 commits
-
-
Stéphane Graber authored
tools: only create log file when requested
-
Stéphane Graber authored
lxc-init: skip signals that can't be caught
-
Stéphane Graber authored
log: enable per-thread container name prefix
-
Christian Brauner authored
We used to initialize a log unconditionally before. This has led to scenarios where users where left with container directories and an empty log file even though they didn't request a log be created at all. Switch all tools to only create a log file when the user explicitly requests this. Closes #1779. Closes #2032. Signed-off-by:
-
