Signed-off-by: Hajo Noerenberg <hajo-github@noerenberg.de>
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

Fixing compile error when compiling for android

Signed-off-by: Ondrej Kubik <ondrej.kubik@canonical.com>

trivial fix: unprivileged veth devices (e.g. vethFWABHX) never contain 'Z' char

fix: unprivileged veth devices (e.g. vethFWABHX) never contain 'Z' character in the randomly generated device name part because for modulo one does not need to substract 1 from strlen().
Signed-off-by: Hajo Noerenberg <hajo-github@noerenberg.de>

terminal: remove sigwinch command

storage: do not destroy pre-existing rootfs

cgfsng: do not free container_full_path on error

lxccontainer: fix container copy

confile: add lxc.seccomp.allow_nesting

Closes #2741.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

This adds the lxc.seccomp.allow_nesting api extension. If
lxc.seccomp.allow_nesting is set to 1 then seccomp profiles will be
stacked. This way nested containers can load their own seccomp policy on
top of the policy that the outer container might have applied.

Cc: Simon Fels <simon.fels@canonical.com>
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

We need to strip the prefix from the container's source path before
trying to update the file.

Closes #2380.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

Revert "Set c to NULL after freeing it"

Signed-off-by: S.Çağlar Onur <caglar@10ur.org>

conf: use SYSERROR on lxc_write_to_file errors

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

Set c to NULL after freeing it

Signed-off-by: S.Çağlar Onur <caglar@10ur.org>

lxccontainer: fix mount api (mount_injection_file)

Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

Closes #2752.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

SIGWINCH is handled in lxc_terminal_signalfd_cb().

I cannot for the life of me figure out what this is supposed to do.
Afaict, it scans a global list that is totally unnecessary and also
let's say you have 100 ttys and for a single one SIGWINCH is sent. In
that case the whole list is walked and two ioctl()s are performed: one
to get window size one to set window size. For 99 of them the window
size hasn't changed.
If we see issues we can revert!
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

fix #2742: lxc-cgroup not giving output

Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

lxc-cgroup fails to provide any output since the latest version, this
should fix it
Signed-off-by: Oguz Bektas <o.bektas@proxmox.com>

storage: src cannot be truncated

Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

configure.ac: fix build without stack-protector

Compiler based hardening (including -fstack-protector-strong) are
enabled since version 3.0.3 and
https://github.com/lxc/lxc/commit/2268c27754152aa538db2c9e3753d72d19bcd17a

However, some compilers could missed the needed library (-lssp or
-lssp_nonshared) at linking step so use ax_check_link_flag instead of
ax_check_compile_flag

Fixes:
 - http://autobuild.buildroot.org/results/0b90e7dca2984652842832a41abad93ac49a9b86Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>

stringutils: include stdarg for va_list

Fixes:
 - http://autobuild.buildroot.org/results/0b90e7dca2984652842832a41abad93ac49a9b86Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>

fix install error when using --disable-commands option

lxc-usernsexec: fix default map functionality

Signed-off-by: 2xsec <dh48.jeong@samsung.com>

* Place NULL bytes at the end of strings so that
  lxc_safe_ulong() can parse them correctly

* Only free the newly created id_map on error,
  to avoid passing garbage to lxc_map_ids()
Signed-off-by: Cameron Nemo <camerontnorman@gmail.com>

Add allowrunning option into Japanese lxc-copy(1)

Update for commit 754076f5Signed-off-by: KATOH Yasufumi <karma@jazz.email.ne.jp>