- 16 Mar, 2009 1 commit
-
-
Daniel Lezcano authored
Signed-off-by:Daniel Lezcano <dlezcano@fr.ibm.com>
-
- 11 Mar, 2009 1 commit
-
-
Daniel Lezcano authored
The actual behavior is to mount bind the rootfs to a specific location and chroot to it. If someone did previously some bind mount in the rootfs they will be lost in the container. This fix makes the rootfs to have the submounts in the container. Signed-off-by:
-
- 10 Mar, 2009 1 commit
-
-
Kristian Høgh authored
Hi Daniel, This patch retrieves info from kernel config in /lib/modules/`uname -r`/build/.config unless /proc/config.gz exist Signed-off-by:
Kristian Høgh <kfh.lxc@kfh.dk> Signed-off-by:
-
- 09 Mar, 2009 2 commits
-
-
Serge E. Hallyn authored
Switch the flags and sp for sys_clone for s390. Without this, lxc-execute gets a segfault on clone (of course). With this, it succeeds. Signed-off-by:
Serge Hallyn <serue@us.ibm.com> Signed-off-by:
-
Serge E. Hallyn authored
define s390x signalfd for systems with headers which are too old. Signed-off-by:
-
- 08 Mar, 2009 6 commits
-
-
Michael K. Johnson authored
If sys/signalfd.h does not exist, assume that it does not exist in glibc, rather than that it exists without a corresponding header file. Note that this version of the signalfd() wrapper function (unlike the version in glibc) falls back dynamically to the old signalfd system call if the signalfd4 system call is not implemented in the currently-running kernel; the version in glibc chooses the version of the signalfd system call to make via static build-time configuration. Signed-off-by:
Michael K Johnson <johnsonm@rpath.com> Signed-off-by:
-
Matt Helsley authored
nbargs isn't used for anything in lxc_unshare.c. Remove it. Signed-off-by:
Matt Helsley <matthltc@us.ibm.com> Signed-off-by:
-
Matt Helsley authored
Add the ability to lookup usernames and check uids. Bails out early if the given uid/name does not exist and avoids using atoi() (which is bad because we can't tell if it parsed an int or a pumpkin). Signed-off-by:
-
Matt Helsley authored
The second const qualifier causes gcc to emit a warning. const char * should be sufficient. Signed-off-by:
-
Matt Helsley authored
On distros with older headers liblxc fails to build because PR_CAPBSET_DROP is not defined by including /usr/include/sys/prctl.h. This adds an autoconf test and, if not present, defines it. When prctl() is called on systems that do not support PR_CAPBSET_DROP we should expect EINVAL. This case is already handled by the liblxc code so no further changes are needed. Signed-off-by:
-
Matt Helsley authored
On Mon, 2009-02-09 at 15:43 -0800, Dan Smith wrote: > DL> It may be possible to use yum like debootstrap for an minbase > DL> fedora install. > > Yep, something like the following should work: > > root=/path/to/tmproot > mkdir -p $root/var/lib/rpm > rpm --root $root --initdb > rpm --root $root -Uvfh --nodeps http://fedora.osuosl.org/linux/releases/10/Fedora/i386/os/Packages/fedora-release-10-1.noarch.rpm > yum --installroot=$root -y groupinstall Base Looks familiar! ;) I was intrigued by this idea last weekend so I started such a script. However I only tested it as far as creating a semi-correct rootfs. With the exception of network configs most of the configs are still written as for debian. For example I know the selinux policy enforcement settings need to move, the inittab needs to be replaced by the proper upstart configs, etc. Of course it's based heavily on Daniel's excellent lxc-debian script. Signed-off-by:
-
- 20 Feb, 2009 1 commit
-
-
dlezcano authored
From: Daniel Lezcano <dlezcano@fr.ibm.com> Add the pts configuration when creating a debian container. Signed-off-by:
-
- 16 Feb, 2009 7 commits
-
-
dlezcano authored
-
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> Factor out some code and especially the parsing of text file functions. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <dlezcano@fr.ibm.com> Allow to specify a block device as the rootfs. The creation of the container will try with brute force to determine the file system type. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> lxc-execute and lxc-create need capability to mount. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> The realpath function is more convenient to build the absolute path of the rootfs. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> Instead of using a symlink to the rootfs, just mount bind the rootfs directory. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> Remove some debian services because they don't have sense in a container, like the hw clock or the unmount of the file systems. Signed-off-by:
-
- 12 Feb, 2009 5 commits
-
-
dlezcano authored
From: Daniel Lezcano <dlezcano@fr.ibm.com> Update the man page with the new devpts instance option. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <dlezcano@fr.ibm.com> The pts new instance is setup conforming the documentation in the kernel sources, Documentation/filesystems/devpts.txt. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <dlezcano@fr.ibm.com> This patch adds the configuration for a new pts instance. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <dlezcano@fr.ibm.com> When we want to check if a subsystem is enabled, we look at the presence of a file/directory in the configuration tree files. That works until we chroot into the rootfs. Some subsystem should be preferably setup after the chrootfs, making the code simpler and easier to read. So before setup the different subsystem, I build a flags set and reuse it later to check if the subsystem is enabled or not. Signed-off-by: -
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> The TODO file should be filled. Signed-off-by:
-
- 09 Feb, 2009 3 commits
-
-
dlezcano authored
From: Daniel Lezcano <dlezcano@fr.ibm.com> Add the ifupdown missing package. Signed-off-by: -
dlezcano authored
From: Matt Helsley <matthltc@us.ibm.com> With the release of lenny nearing this patch may soon be useful. Signed-off-by:
-
dlezcano authored
From: Daniel Lezcano <dlezcano@fr.ibm.com> Create the m4 directory if it does not exist Reported-by:
Dietmar Maurer <dietmar@proxmox.com> Signed-off-by:
-
- 05 Feb, 2009 1 commit
-
-
dlezcano authored
From: Matt Helsley <matthltc@us.ibm.com> If lxc-debian fails or is interrupted during debootstrap then the next invocation of lxc-debian breaks because it only checks for the existence of the directory. This forces the user to remove the cache by hand to retry the create step. Let's allow the user to re-run lxc-debian to resume/retry. Store the cache in a partial-$ARCH directory until debootstrap succeeds. Then move the valid cache to its final destination. Signed-off-by:
-
- 02 Feb, 2009 1 commit
-
-
dlezcano authored
From: Dietmar Maurer <dietmar@proxmox.com> The signalfd function prototype and the signalfd header file is not defined in the debian Lenny. We want to use this debian version with a newer kernel. This patch gives the signalfd function prototype, because the function is available in the glibc-2.7 which is the version coming with debian Lenny. Signed-off-by:
-
- 29 Jan, 2009 1 commit
-
-
dlezcano authored
From: Matt Helsley <matthltc@us.ibm.com> The lxc-debian script does not consistently address the lxc lock as @LOCALSTATEDIR@/lock/subsys/lxc. Make consistent use of the autotools substitution to completely enable configure --prefixes. I also added a comment explaining why some of the paths didn't need autoconf substitutions for anyone who wants to understand the script. Also, to separate it from the container contents proper, I moved the CACHE variable initialization above the container-internal path variables. Signed-off-by:
-
- 28 Jan, 2009 1 commit
-
-
dlezcano authored
This modification removes the tty configuration file and makes the tty to be usable with the local tty. Signed-off-by:
Daniel Lezcano <daniel.lezcano@free.fr> Signed-off-by:
-
- 26 Jan, 2009 4 commits
-
-
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> Fixed the type of the opt variable. On the powerpc architecture, that leads to an infinite loop in the getopt inspection because getopt returns 255 instead of -1 as expected. The opt variable should be an int and not a char. Signed-off-by:
-
dlezcano authored
Removed usage of the release script. Signed-off-by:
-
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> Removed the release.sh script which is not in the right place in this source tree. Signed-off-by:
-
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> Removed typo. Signed-off-by:
-
- 25 Jan, 2009 4 commits
-
-
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> The virtual devices are automatically destroyed when the network namespace dies for the kernel version >= 2.6.29. Until this version the network devices have to be destroyed by lxc. This modification checks the version of the kernel to make lxc to destroy the network devices or not. Signed-off-by:
-
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> Simplified the spec file Signed-off-by:
-
dlezcano authored
Console support for the system container. Signed-off-by:
-
dlezcano authored
Signed-off-by:
-
- 18 Jan, 2009 1 commit
-
-
dlezcano authored
From: Daniel Lezcano <daniel.lezcano@free.fr> Remove the nsgroup directory when the container dies, otherwise this will lead to an error when the pids number are recycled Signed-off-by:
-
