- 17 Oct, 2013 5 commits
-
-
Laurent Vallar authored
Signed-off-by:
Laurent Vallar <val@zbla.net> Acked-by:
Stéphane Graber <stgraber@ubuntu.com>
-
Dmitry Yu Okunev authored
Signed-off-by:
Dmitry Yu Okunev <dyokunev@ut.mephi.ru> Acked-by:
-
Dwight Engen authored
Signed-off-by:
Dwight Engen <dwight.engen@oracle.com> Signed-off-by:
Serge Hallyn <serge.hallyn@ubuntu.com>
-
Dwight Engen authored
Ensure /proc and /sys are mounted in the container, otherwise apparmor_enabled() will fail to find /sys/module/apparmor/parameters/enabled Signed-off-by:
-
Dwight Engen authored
This fixes sshd getting an avc on traversing the /dev/ptmx symlink (was default_t) Signed-off-by:
-
- 16 Oct, 2013 3 commits
-
-
Stéphane Graber authored
This fix is coming from Debian bug: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=720122 The reason for the hardcoded gid= and mode= is because of the fix for CVE-2013-2207 which removes pt_chown from glibc and so requires proper write access to devpts. It looks like the "tty" group is guaranteed to be gid=5 on at least all RedHat based and Debian based systems. So this hardcode gid shouldn't be a big problem. If we however support any distro where that's not the case, we'll need to implement an extra lxc.conf option and matching template changes. Signed-off-by:
-
Dwight Engen authored
Signed-off-by:
-
Stéphane Graber authored
This fixes a few obvious issues when comparing the make dist output with the git tree. - Make all templates non-executable in git - Remove unused files: - src/lxc/list.c (empty, only includes the list.h header) - src/lxc/lxc-destroy.in (replace by lxc_destroy.c) - Add missing files to dist tarball: - src/python-lxc/examples/pyconsole.py - src/python-lxc/examples/pyconsole-vte.py - Mark all the python API tests executable - Mark lxc-test-ubuntu executable Signed-off-by:
-
- 15 Oct, 2013 3 commits
-
-
Laurent Vallar authored
Signed-off-by:
-
Laurent Vallar authored
Signed-off-by:
-
KATOH Yasufumi authored
Change the location of linefeed for improving to be read lxc.conf(5) in Japanese environment. Signed-off-by:
KATOH Yasufumi <karma@jazz.email.ne.jp> Acked-by:
-
- 14 Oct, 2013 1 commit
-
-
Serge Hallyn authored
Two new commands are defined: list_defined_containers() and list_active_containers(). Both take an lxcpath (NULL means use the default lxcpath) and return the number of containers found. If a lxc_container ** is passed in, then an array of lxc_container's is returned, one for each container found. The caller must then lxc_container_put() each container and free the array, as shown in the new list testcase. If a char ** is passed in, then an array of container names is returned, after which the caller must free all the names and the name array, as showsn in the testcase. Changelog: Check for the container config file before trying to create an lxc_container *, to save some work. [ per stgraber comments] Add names ** argument to return only container names. Signed-off-by:
-
- 10 Oct, 2013 8 commits
-
-
Dwight Engen authored
gcc was complaining with: reboot.c:33: error: conflicting types for ‘clone’ /usr/include/bits/sched.h:83: note: previous declaration of ‘clone’ was here Signed-off-by:
-
Alexander Khryukin authored
Signed-off-by:
Alexander Khryukin <alexander@mezon.ru> Acked-by:
-
Alexander Khryukin authored
Signed-off-by:
-
Alexander Khryukin authored
Signed-off-by:
-
Alexander Khryukin authored
Signed-off-by:
-
Alexander Khryukin authored
Signed-off-by:
-
KATOH Yasufumi authored
lxc-plamo now work with any distribution other than Plamo Linux. Signed-off-by:
TAMUKI Shoichi <tamuki@linet.gr.jp> Acked-by:
-
KATOH Yasufumi authored
This template allows to create Plamo Linux container on Plamo Linux. Plamo Linux is Japanese distribution, which is originally based on Slackware Linux. Signed-off-by:
-
- 09 Oct, 2013 2 commits
-
-
Stéphane Graber authored
Signed-off-by: -
Serge Hallyn authored
Bug found by Vincent Ladeuil <vila+ci@canonical.com> Fix suggested by Scott Moser <smoser@ubuntu.com> Signed-off-by:
-
- 08 Oct, 2013 5 commits
-
-
Dwight Engen authored
Section 7.1.2 of the gnutls info manual states that it must be initialized with a call to gnutls_global_init before use. This fixes the syslog warning I was seeing: lxc-create: Libgcrypt warning: missing initialization - please fix the application Signed-off-by: -
KATOH Yasufumi authored
Same as the commit 3157e673Signed-off-by:
-
KATOH Yasufumi authored
Signed-off-by:
-
Stéphane Graber authored
Reported-by:
Scott Moser <smoser@ubuntu.com> Signed-off-by:
-
Scott Moser authored
Just following up here, Serge raised the question of whether or not the other two invocations of 'tar' in this script need '--numeric-owner'. They probably should have it, although its of little concern because the 'build_root_tgz' path is only taken if there is no '-root.tar.gz' file for download, and the only supported ubuntu release without the -root.tar.gz download is 10.04 at this point. Anyway, below is a more complete diff, also including a fix as '--numeric-uid' is not a valid option to tar. The name is '--numeric-owner'. Signed-off-by:
-
- 07 Oct, 2013 3 commits
-
-
Serge Hallyn authored
Signed-off-by: -
Serge Hallyn authored
Signed-off-by: -
Serge Hallyn authored
Signed-off-by:
-
- 04 Oct, 2013 9 commits
-
-
Dwight Engen authored
These need to be in the dist tarball even if the host packaging system doesn't have docbook2x, otherwise configure will fail to find them. Also, the build system may have docbook2x, even if the packaging system does not. Signed-off-by:
-
Dwight Engen authored
docbook2man picks up some errors that docbook2x does not, fixing them isn't harmful to docbook2x. The only real change is adding <para> and <citerefentry> tags. Signed-off-by:
-
Dwight Engen authored
Signed-off-by:
-
Michael H. Warfield authored
This patches the Fedora template to insure that the legacy network startup scripts are enabled when NetworkManager has not been installed in the container (default). It also fixes a login problem with pam_loginuid.so in a container. https://bugzilla.redhat.com/show_bug.cgi?id=966807Signed-off-by:
Michael H. Warfield <mhw@WittsEnd.com> -- Signed-off-by:
-
Serge Hallyn authored
Signed-off-by: -
Serge Hallyn authored
They are the real /dev/tty{0,1}, which are physical consoles. Lxc bind-mounts over them. Don't let the container use these! Signed-off-by: -
S.Çağlar Onur authored
Signed-off-by:
S.Çağlar Onur <caglar@10ur.org> Signed-off-by:
-
Stéphane Graber authored
Container trimming is a bad idea in general, Ubuntu since 12.04 allows standard systems to run in containers and we've got separate code to deal with 10.04, so let's just drop trim. Signed-off-by:
-
Michael H. Warfield authored
This patch reworks the Fedora template to operate in the most "distro agnostic" manner possible. It should even run on distros where rpm and yum are not present and not available or may be incompatible. It depends on the most basic set of system facilities like rsync but does require squashfs support also be available to mount a LiveOS runtime. Based on comments at Linux Plumbers, what I had been referring to as a "run time environment" or RTE has been renamed in the code to refer to it as a "bootstrap". It has been tested on Fedora (of course), OpenSuse, Ubuntu, and Oracle (latest host versions of each) building Fedora containers of F19 back through F9. Varying levels of database problems were encountered from F11 and back and are "will not fix" due to versions being long EOL. F15 and F16 build but do not run "out of the box" due to systemd version issues and those are also "will not fix" for the same reasons. Signed-off-by:
-
- 03 Oct, 2013 1 commit
-
-
Serge Hallyn authored
Some features of lxc - networking and LSM configuration for instance - are generally configured by the distro packages. This program tests the Ubuntu configuration. changelog v2: Switch to lxc-info -i to detect ip address as stgraber suggested Don't look for 'expect' as I'm not using it yet. changelog v3: Make sure to only read one ip address from container. Signed-off-by:
-
