projects
/
project
/
procd.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first
⋅
prev
⋅ next
service: make sure string read is null terminated
2020-07-20
Daniel Golle
jail: actually apply filesystem-specific mount options
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-20
Daniel Golle
jail: add support for defining devices
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-20
Daniel Golle
jail: move /tmp/resolv.conf.d to /dev/resolv.conf.d
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-19
Daniel Golle
jail: /proc/$pid/oom_score_adj to OCI defined oomScoreAdj
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-19
Daniel Golle
jail: parse and apply POSIX rlimits
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-19
Daniel Golle
jail: read and apply umask from OCI if defined
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-19
Daniel Golle
jail: implement OCI user additionalGIDs
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-19
Daniel Golle
jail: parse and apply OCI sysctl values
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-19
Daniel Golle
jail: fix hooks
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-17
Daniel Golle
jail: add support for maskedPaths and readonlyPaths
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-16
Daniel Golle
jail: fix some more mount options
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-15
Daniel Golle
jail: fs: fix build on uClibc-ng
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-15
Daniel Golle
procd: fix compile if procd-ujail is not selected
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
jail: fix false return in case of nofail mount
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
uxc: fix build with uClibc-ng
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
uxc: fix 'stop' command
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
jail: don't make mount source read-only
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
jail: refactor mount support to cover OCI spec
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
jail: memory allocation fixes
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
jail: parse and run OCI hooks
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
jail: actually chdir into OCI defined CWD
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
jail: consider PATH for argv in OCI container
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-13
Daniel Golle
jail: fix segfault with len(uidmap/gidmap) > 1
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-11
Daniel Golle
jail: use linux/capability.h instead of sys/capability.h
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-11
Daniel Golle
ujail: add dependency on syscall-names-h
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-10
Daniel Golle
jail: fix build on platforms without seccomp support
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-10
Daniel Golle
uxc: add container management CLI tool
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-07-10
Daniel Golle
jail: add support for running OCI bundle
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-05-28
Daniel Golle
jail: handle containers seperately
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-05-28
Daniel Golle
jail: use sane termios settings for console pts
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-05-15
Daniel Golle
jail: add option to provide /dev/console to containers
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-25
Daniel Golle
jail: don't load libpreload-seccomp.so if it doesn...
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-25
Daniel Golle
jail: don't fail unless requirejail is set
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-19
Daniel Golle
jail: include /etc/nsswitch.conf in jail for glibc.
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-14
Daniel Golle
jail: always mount /dev as additional tmpfs
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-13
Daniel Golle
jail: replace /etc/resolv.conf with symlink in extroot...
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-13
Daniel Golle
jail: mount /sys read-only
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-13
Daniel Golle
jail: make /proc more secure
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-12
Daniel Golle
instance: harmonize instance API
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-12
Daniel Golle
jail: only mess with rootfs if CLONE_NEWNS was set
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-09
Daniel Golle
jail: add support for (ram-)overlayfs
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-09
Daniel Golle
jail: add support for userns and cgroupsns
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-04-09
Daniel Golle
jail: add support for launching extroot containers
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-03-12
Daniel Golle
jail: mount-bind /etc/resolv.conf for non-netns jails
Signed-off-by:
Daniel Golle
<daniel@makrotoia.org>
commit
|
commitdiff
|
tree
2020-01-21
Daniel Golle
jail: more strict mount options for /tmp/resolv.conf.d/
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-01-21
Daniel Golle
jail: create resolv.conf symlink for netns jails
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-01-21
Daniel Golle
jail: add basic support for network namespaces
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-01-19
Daniel Golle
instance: Fix instance_config_move_strdup() function
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2020-01-05
Daniel Golle
instance: strdup string attributes
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2019-12-30
Daniel Golle
jail: remove accidentally added lines
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2019-12-30
Daniel Golle
jail: set user and group inside jail
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2017-06-18
Daniel Golle
system: introduce new attribute board_name
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2017-06-08
Daniel Golle
system: return legacy board name
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2015-10-25
Daniel Golle
explicitely ignore return value of symlink(3) call
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2015-05-14
Daniel Golle
jail: respect byte order when setting AUDIT_ARCH
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2015-05-14
Daniel Golle
jail: add support for ARM architecture
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree
2015-05-14
Daniel Golle
trace: add support for ARM architecture
Signed-off-by:
Daniel Golle
<daniel@makrotopia.org>
commit
|
commitdiff
|
tree