Commits · bd3dfa33e2e5b65b155cb2c6df030098a8fa73f6 · Chen Yisong / lxc

11 May, 2017 5 commits
- Merge pull request #1550 from brauner/2017-05-11/add_comment_to_lxc_spawn · bd3dfa33
  Stéphane Graber authored May 11, 2017
```
start: add crucial details about lxc_spawn()
```
  bd3dfa33
- start: add crucial details about lxc_spawn() · 480588e6
  Christian Brauner authored May 11, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
  480588e6
- Merge pull request #1549 from 0x0916/install-systemd-unit-for-centos · bb51d6b1
  Christian Brauner authored May 11, 2017
```
Install systemd units for CentOS
```
  bb51d6b1
- Merge `ubuntu` and `debian`case · 82b47911
  0x0916 authored May 11, 2017
```
Signed-off-by: 0x0916 <w@laoqinren.net>
```
  82b47911
- Install systemd units for CentOS · 234f9815
  0x0916 authored May 11, 2017
```
Signed-off-by: 0x0916 <w@laoqinren.net>
```
  234f9815
10 May, 2017 7 commits

Merge pull request #1548 from brauner/2017-05-10/prevent_umount_propagation · 394c2205
Stéphane Graber authored May 10, 2017
```
utils: handle > 2^31 in lxc_unstack_mountpoint()
```
394c2205

utils: handle > 2^31 in lxc_unstack_mountpoint() · b4a40f7b

authored May 10, 2017

I mean.. really? But better safe than sorry.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

b4a40f7b

Merge pull request #1547 from brauner/2017-05-10/prevent_umount_propagation · 60883ba8
Serge Hallyn authored May 10, 2017
```
start: remove umount2() 
```
60883ba8
conf: non-functional changes · 39c7b795
Christian Brauner authored May 10, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
39c7b795

start: remove umount2() · 58d5b527

authored May 10, 2017

I really fail to see the point of this and git {blame, log -S} don't really
enlighten me on the reason for this as well. But I might be dense. The way I
see it the only thing this line achieves is causing trouble when the container
is started as root because the umount2() call will umount e.g.
/usr/lib/x86_64-linux-gnu/lxc in case it is a mountpoint on the host. Note,
this is because lxc_spawn() is still called in the hosts namespaces.

Closes https://github.com/lxc/lxd/#3255.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

58d5b527

Merge pull request #1544 from brauner/2017-05-08/harden_console_handling · eb09dc4e
Serge Hallyn authored May 10, 2017
```
harden console handling
```
eb09dc4e

console: fail when we cannot allocate peer tty · 467c7ff3

authored May 10, 2017

There's really no reason not to if it's requested.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

467c7ff3

09 May, 2017 9 commits

conf: unstack all mounts atop /dev/console · a7ba3c7f
Christian Brauner authored May 09, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
a7ba3c7f

utils: add lxc_unstack_mountpoint() · 74251e49

authored May 09, 2017

lxc_unstack_mountpoint() tries to clear all mountpoints from a given path.
It return the number of successful umounts on success and -errno on error.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

74251e49

doc: document console behavior · 6e3bb289
Christian Brauner authored May 09, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
6e3bb289

config: remove /dev/console bind mount · 2c056d38

authored May 09, 2017

The code in conf will bind-mount a /dev/pts/<n> device over a dummy regular
/dev/console file. If users really want /dev/console bind-mount from the host
they can request it explicitly in the containers config file. This change will
have no effect on current LX{C,D} behavior since we (as said above) overmount
the /dev/console bind-mount anyway.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

2c056d38

conf: lxc_setup_ttydir_console() · 2a12fefd

authored May 08, 2017

In case the user specified

lxc.console = none
lxc.devttydir = bla
lxc.mount.entry = /dev/console dev/console none bind,create=file 0 0

move the mount under /dev/bla/console

If he requested a mknod()ed /dev/console rename it to /dev/bla/console.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

2a12fefd

conf: improve lxc_setup_dev_console() · 8b1b1210

authored May 08, 2017

In case the user did request a console to be set up unmount any prior
bind-mount for it.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

8b1b1210

conf: non-functional changes to console functions · 3d7d929a
Christian Brauner authored May 08, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
3d7d929a
conf: non-functional changes lxc_setup() · 27245ff7
Christian Brauner authored May 08, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
27245ff7
fix the wrong exit status · 9fd8b8a7
0x0916 authored May 08, 2017
```
Signed-off-by: 0x0916 <w@laoqinren.net>
```
9fd8b8a7

08 May, 2017 10 commits

conf: remove /dev/console from lxc_fill_autodev() · 4d78c48e
Christian Brauner authored May 08, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
4d78c48e
conf: non-functional changes lxc_fill_autodev() · 0bbf8572
Christian Brauner authored May 08, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
0bbf8572
Merge pull request #1539 from brauner/2017-05-06/fix_abstract_unix_sockets · 218a8306
Stéphane Graber authored May 08, 2017
```
bugfixes: {segfaults, hashes, abstract unix sockets}
```
218a8306
Merge pull request #1543 from evgeni/patch-1 · 5c77e2ff
Christian Brauner authored May 08, 2017
```
precise is not the latest LTS, let's use xenial instead
```
5c77e2ff
precise is not the latest LTS, let's use xenial instead · ecb5208b
Evgeni Golov authored May 08, 2017

ecb5208b

monitor: simplify abstract socket logic · fcaef9c7

authored May 06, 2017

Older version of liblxc only allowed for 105 bytes to be used for the abstract
unix domain socket name because the code for our abstract unix socket handling
performed invalid checks. Since we \0-terminate we could now have a maximum of
106 chars. But do not break backwards compatibility we keep the limit at 105.

Reported-by: 0x0916 w@laoqinren.net
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

fcaef9c7

lxccontainer: avoid NULL pointer dereference · 899a9f55

authored May 06, 2017

In case the lxc command socket is hashed and the socket was created for a
different path than the one we're currently querying
lxc_cmd_get_{lxcpath,name}() can return NULL. The command socket path is hashed
when len(lxcpath) > sizeof(sun_path) - 2.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

899a9f55

commands: non-functional changes · 860e7c43
Christian Brauner authored May 06, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
860e7c43

commands: avoid NULL pointer dereference · c54a4aee

authored May 06, 2017

lxc_cmd_get_lxcpath() and lxc_cmd_get_name() both pass a nil pointer to
fill_sock_name(). Make sure that they are not dereferenced.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

c54a4aee

af unix: allow for maximum socket name · caf3beb0

authored May 06, 2017

Abstract unix sockets need not be \0-terminated. So you can effectively have
107 chars available. If you \0-terminate you'll have a 106. Don't enforce
\0-termination in these low-level functions. Enforce it higher up which we
already do.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

caf3beb0

06 May, 2017 1 commit
- Merge pull request #1537 from brauner/2017-05-05/report_errno_on_monitor_startup_failure · 55b8c755
  Serge Hallyn authored May 05, 2017
```
monitor: report errno on exec() error
```
  55b8c755
05 May, 2017 1 commit
- monitor: report errno on exec() error · 00cccc8b
  Christian Brauner authored May 05, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
  00cccc8b
03 May, 2017 5 commits

Merge pull request #1533 from brauner/2017-05-02/mount_opts · f5351e24
Stéphane Graber authored May 03, 2017
```
conf: pedantry
```
f5351e24
Merge pull request #1535 from brauner/2017-05-03/api_extension_lxc_is_supported_config_item · 2a902a63
Stéphane Graber authored May 03, 2017
```
api extension: lxc_config_item_is_supported()
```
2a902a63
test: add lxc_config_item_is_supported() tests · add40e62
Christian Brauner authored May 03, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
add40e62

lxccontainer: add lxc_config_item_is_supported() · 12461428

authored May 03, 2017

This adds lxc_config_item_is_supported() as API extension. It allows to check
whether a given config item (e.g. lxc.autodev) is supported by this LXC
instance. The function is useful in the following scenarios:
1. Users have compiled liblxc from source and have removed a config items from
the corresponding struct in confile.c. (For example, embedded users might
decide to gut a bunch of options that they cannot use.)
2. Callers that want to check for a specific configuration item independent of
the version numbers exposed in our version.h header.
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>

12461428

conf: add MS_LAZYTIME to mount options · 8912711c
Christian Brauner authored May 02, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
8912711c

02 May, 2017 2 commits
- conf: order mount options · 470b359b
  Christian Brauner authored May 02, 2017
```
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
```
  470b359b
- Merge pull request #1531 from mar-kolya/master · 2c0807c7
  Stéphane Graber authored May 02, 2017
```
Change sshd template to work with Ubuntu 17.04
```
  2c0807c7