- 17 Jul, 2020 10 commits
-
-
Christian Brauner authored
Signed-off-by:Christian Brauner <christian.brauner@ubuntu.com>
-
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Closes: #3485. Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Improve efficiency of lxc_ifname_alnum_case_sensitive
-
Sam Boyles authored
To detect if a newly generated interface name is a duplicate of an existing interface lxc_ifname_alnum_case_sensitive() currently gets a list of all interfaces using netns_getifaddrs(). When the system has a small number of interfaces this works fine, however when there are thousands or tens of thousands of interfaces this quickly becomes less than optimal. As we only need to check if an interface name exists, and do not need the detailed information about the interfaces provided by netns_getifaddrs(), we can instead use the if_nametoindex() function, which is much more efficient. Signed-off-by:Sam Boyles <sam.boyles@alliedtelesis.co.nz>
-
- 16 Jul, 2020 2 commits
-
-
Stéphane Graber authored
autotools: include COPYING file
-
Christian Brauner authored
Closes: #3484. Suggested-by:
Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by:
-
- 08 Jul, 2020 2 commits
-
-
Christian Brauner authored
checkconfig: Show LXC version in output.
-
Ruben Jenster authored
Signed-off-by:Ruben Jenster <r.jenster@drachenfels.de>
-
- 06 Jul, 2020 3 commits
-
-
Stéphane Graber authored
openpty: improve implementation and handling of platforms without it
-
Christian Brauner authored
Signed-off-by: -
Stéphane Graber authored
openpty: fix faulty rename
-
- 05 Jul, 2020 8 commits
-
-
Christian Brauner authored
Signed-off-by: -
Stéphane Graber authored
tree-wide: update terminal terminology once more
-
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Stéphane Graber authored
cgroups: handle empty bpf log buffer
-
Stéphane Graber authored
cgroups: fix bpf device program generation
-
Christian Brauner authored
Closes: #3473. Signed-off-by:
-
- 03 Jul, 2020 8 commits
-
-
Stéphane Graber authored
api-extensions: add seccomp_allow_deny_syntax extension
-
Christian Brauner authored
Signed-off-by: -
Stéphane Graber authored
fixes
-
Christian Brauner authored
Closes: #3473. Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by: -
Christian Brauner authored
Signed-off-by:
-
- 01 Jul, 2020 2 commits
-
-
Stéphane Graber authored
templates/lxc-download.in: use GPG option "--receive-keys"
-
Johannes Kastl authored
Signed-off-by:Johannes Kastl <kastl@b1-systems.de>
-
- 30 Jun, 2020 4 commits
-
-
Stéphane Graber authored
templates/lxc-download.in: fix wrong if-condition
-
Johannes Kastl authored
Signed-off-by: -
Johannes Kastl authored
templates/lxc-download.in: fix wrong if condition (use the result of the gpg command, not the result when executing the result of the gpg command) Signed-off-by: -
Christian Brauner authored
attach: set no_new_privs flag after LSM label
-
- 29 Jun, 2020 1 commit
-
-
Alexander Livenets authored
In `start.c:1284`, no_new_privs flag is set after LSM label is set. Also, in `lxc.container.conf` documentation it is written that: ``` Note that PR_SET_NO_NEW_PRIVS is applied after the container has changed into its intended AppArmor profile or SElinux context. ``` This commit fixes the behavior of `lxc_attach` by moving `PR_SET_NO_NEW_PRIVS` set logic after LSM for the process is configured; Closes #3393 Signed-off-by:Alexander Livenets <a.livenets@gmail.com>
-
