Commits · a467a845443054a9f75d65cf0a73bb4d5ff2ab71 · Chen Yisong / lxc

11 May, 2017 4 commits
- change version to 2.0.8 in configure.ac · a467a845
  Stéphane Graber authored May 11, 2017
```
Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>
```
  a467a845
- start: add crucial details about lxc_spawn() · e6bbc40b
  Christian Brauner authored May 11, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
  e6bbc40b
- Merge `ubuntu` and `debian`case · 9a135d2c
  0x0916 authored May 11, 2017
```
Signed-off-by: 0x0916 <w@laoqinren.net>
```
  9a135d2c
- Install systemd units for CentOS · f69dc399
  0x0916 authored May 11, 2017
```
Signed-off-by: 0x0916 <w@laoqinren.net>
```
  f69dc399
10 May, 2017 14 commits

utils: handle > 2^31 in lxc_unstack_mountpoint() · a8b012a1

authored May 10, 2017

I mean.. really? But better safe than sorry.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

a8b012a1

conf: non-functional changes · 75022b57
Christian Brauner authored May 10, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
75022b57

start: remove umount2() · 2ff023b7

authored May 10, 2017

I really fail to see the point of this and git {blame, log -S} don't really
enlighten me on the reason for this as well. But I might be dense. The way I
see it the only thing this line achieves is causing trouble when the container
is started as root because the umount2() call will umount e.g.
/usr/lib/x86_64-linux-gnu/lxc in case it is a mountpoint on the host. Note,
this is because lxc_spawn() is still called in the hosts namespaces.

Closes https://github.com/lxc/lxd/#3255.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

2ff023b7

console: fail when we cannot allocate peer tty · 70f89aa1

authored May 10, 2017

There's really no reason not to if it's requested.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

70f89aa1

conf: unstack all mounts atop /dev/console · 4ad9000f
Christian Brauner authored May 09, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
4ad9000f

utils: add lxc_unstack_mountpoint() · b243e8e5

authored May 09, 2017

lxc_unstack_mountpoint() tries to clear all mountpoints from a given path.
It return the number of successful umounts on success and -errno on error.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

b243e8e5

doc: document console behavior · 2e930f34
Christian Brauner authored May 09, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
2e930f34

config: remove /dev/console bind mount · e993a8dd

authored May 09, 2017

The code in conf will bind-mount a /dev/pts/<n> device over a dummy regular
/dev/console file. If users really want /dev/console bind-mount from the host
they can request it explicitly in the containers config file. This change will
have no effect on current LX{C,D} behavior since we (as said above) overmount
the /dev/console bind-mount anyway.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

e993a8dd

conf: lxc_setup_ttydir_console() · a3b2199b

authored May 08, 2017

In case the user specified

lxc.console = none
lxc.devttydir = bla
lxc.mount.entry = /dev/console dev/console none bind,create=file 0 0

move the mount under /dev/bla/console

If he requested a mknod()ed /dev/console rename it to /dev/bla/console.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

a3b2199b

conf: improve lxc_setup_dev_console() · 3c9c967e

authored May 08, 2017

In case the user did request a console to be set up unmount any prior
bind-mount for it.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

3c9c967e

conf: non-functional changes to console functions · 78580ddb
Christian Brauner authored May 08, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
78580ddb
conf: non-functional changes lxc_setup() · bb826cfe
Christian Brauner authored May 08, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
bb826cfe
conf: remove /dev/console from lxc_fill_autodev() · b55e06be
Christian Brauner authored May 08, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
b55e06be
conf: non-functional changes lxc_fill_autodev() · a489983a
Christian Brauner authored May 08, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
a489983a

09 May, 2017 14 commits

fix the wrong exit status · 2e6347d6
0x0916 authored May 08, 2017
```
Signed-off-by: 0x0916 <w@laoqinren.net>
```
2e6347d6
precise is not the latest LTS, let's use xenial instead · ec9be825
Evgeni Golov authored May 08, 2017

ec9be825

monitor: simplify abstract socket logic · 8cab92d4

authored May 06, 2017

Older version of liblxc only allowed for 105 bytes to be used for the abstract
unix domain socket name because the code for our abstract unix socket handling
performed invalid checks. Since we \0-terminate we could now have a maximum of
106 chars. But do not break backwards compatibility we keep the limit at 105.

Reported-by: 0x0916 w@laoqinren.net
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

8cab92d4

lxccontainer: avoid NULL pointer dereference · 91677024

authored May 06, 2017

In case the lxc command socket is hashed and the socket was created for a
different path than the one we're currently querying
lxc_cmd_get_{lxcpath,name}() can return NULL. The command socket path is hashed
when len(lxcpath) > sizeof(sun_path) - 2.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

91677024

commands: non-functional changes · e2b7b3ff
Christian Brauner authored May 06, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
e2b7b3ff

commands: avoid NULL pointer dereference · 1177c9b0

authored May 06, 2017

lxc_cmd_get_lxcpath() and lxc_cmd_get_name() both pass a nil pointer to
fill_sock_name(). Make sure that they are not dereferenced.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

1177c9b0

af unix: allow for maximum socket name · 9d24213e

authored May 06, 2017

Abstract unix sockets need not be \0-terminated. So you can effectively have
107 chars available. If you \0-terminate you'll have a 106. Don't enforce
\0-termination in these low-level functions. Enforce it higher up which we
already do.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

9d24213e

monitor: report errno on exec() error · 20b3cceb
Christian Brauner authored May 05, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
20b3cceb
conf: add MS_LAZYTIME to mount options · 052e7c70
Christian Brauner authored May 02, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
052e7c70
conf: order mount options · a49066d4
Christian Brauner authored May 02, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
a49066d4

Change sshd template to work with Ubuntu 17.04 · 94b8d282

authored May 01, 2017

A few things have changed and this patch makes container generated for sshd work in Ubuntu
Signed-off-by: Nikolay Martynov <mar.kolya@gmail.com>

94b8d282

utils: tweak lxc_mount_proc_if_needed() · 859ee653

authored Apr 29, 2017

Create /proc directory if it doesn't exist.

Closes #1475.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

859ee653

conf: non-functional changes · 8a807a12
Christian Brauner authored Apr 28, 2017
```
Closes #1475.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
8a807a12

conf: close fd in lxc_setup_devpts() · 74363c78

authored Apr 28, 2017

This left the file descriptor to the underlying /dev/ptmx file open which
confused the hell out of criu. Let's close it.

Closes https://github.com/lxc/lxd/issues/3243.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

74363c78

26 Apr, 2017 7 commits

issue template: fix typo · 814e9e3a
Christian Brauner authored Apr 23, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
814e9e3a

cgroups: improve cgfsng debugging · c150e386

authored Apr 23, 2017

In a lot of cases we need a list of the writeable cgroup controllers detected
by the cgfsng driver.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

c150e386

create ISSUE_TEMPLATE.md · 14a53ef2
Christian Brauner authored Apr 22, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
14a53ef2

utils: use loop device helpers from LXD · 57ada8a7

authored Apr 22, 2017

Use the loop device helpers I wrote for LXD in LXC as well. They should be more
efficient.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

57ada8a7

conf: non-functional changes · b31b2a20
Christian Brauner authored Apr 22, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
b31b2a20

conf: use bind-mount for /dev/ptmx · a32f7894

authored Apr 22, 2017

AppArmor will refuse on /dev/ptmx being a symlink.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

a32f7894

conf: non-functional changes to setup_pts() · 4de4ec76
Christian Brauner authored Apr 21, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
4de4ec76

19 Apr, 2017 1 commit
- caps: return false if caps are not supported · 4645c74c
  Christian Brauner authored Apr 19, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
  4645c74c