summaryrefslogtreecommitdiffstats
AgeCommit message (Expand)Author
2020-11-22uxc: also delete procd runtime state on 'delete'Daniel Golle
2020-11-22uxc: fix incomplete commitDaniel Golle
2020-11-21jail: cgroup hack: rewrite cgroup -> cgroup2Daniel Golle
2020-11-21seccomp: silence 'unknown syscall' warningsDaniel Golle
2020-11-21uxc: make force-delete kill container processDaniel Golle
2020-11-17trace: switch to OCI seccomp JSON outputDaniel Golle
2020-11-15seccomp: switch to new OCI compliant parserDaniel Golle
2020-11-15seccomp: specifying architectures is optionalDaniel Golle
2020-11-07jail: fix capabilitiesDaniel Golle
2020-10-28uxc: mimic runc cmdline by using getopt_longDaniel Golle
2020-10-28jail: don't fail if maskedPath cannot be foundDaniel Golle
2020-10-28jail: add support for absolute root path in OCI specDaniel Golle
2020-10-28jail: relax seccomp unknown syscall handlingDaniel Golle
2020-10-28jail: handle mount propagation flagsDaniel Golle
2020-10-28jail: add option for pidfileDaniel Golle
2020-10-28jail: guard boolean blobmsg attributesDaniel Golle
2020-10-23ujail: elf: work around GCC bug on MIPS64Daniel Golle
2020-10-22jail: mount more stuff read-onlyDaniel Golle
2020-10-21jail: capabilities: apply in two phasesDaniel Golle
2020-10-19jail: nuke old capabilities code in favour of reusing OCI codeDaniel Golle
2020-10-19instance: actually wire up capabilities filenameDaniel Golle
2020-10-19jail: adapt to new ubus socket pathDaniel Golle
2020-10-19early: run ubusd non-root as user ubus, group ubusDaniel Golle
2020-08-13cgroups: memory controller fixesDaniel Golle
2020-08-13cgroups: restrict allowed keys in 'unified' sectionDaniel Golle
2020-08-10initd/init: add minimal SELinux policy loading supportThomas Petazzoni
2020-08-06jail: fix freeing cgroups avlDaniel Golle
2020-08-06jail: only free cgroups if they were allocatedDaniel Golle
2020-08-06jail: parse OCI cgroups resourcesDaniel Golle
2020-08-06instance: add instances into unified cgroup hierarchyDaniel Golle
2020-08-06jail: make use of BLOBMSG_CAST_INT64 for OCI rlimitsDaniel Golle
2020-08-06jail: use pidns semantics also for timensDaniel Golle
2020-08-06initd: attempt to mount cgroup2Daniel Golle
2020-07-30service: add method to query available container featuresDaniel Golle
2020-07-30uxc: remove debugging left-overDaniel Golle
2020-07-30instance: make sure values are not inherited from previous runsDaniel Golle
2020-07-29uxc: use new container.%s kill ubus APIDaniel Golle
2020-07-29jail: add 'kill' method to container.%s objectDaniel Golle
2020-07-29uxc: fix create operationDaniel Golle
2020-07-28uxc: behave more like a compliant OCI run-timeDaniel Golle
2020-07-28jail: add some remaining OCI featuresDaniel Golle
2020-07-25jail: serialize hook executionDaniel Golle
2020-07-25jail: fix build on glibc and uclibcDaniel Golle
2020-07-21jail: add support for referencing existing namespacesDaniel Golle
2020-07-20jail: fix wrong format for 32-bitRosen Penev
2020-07-20rcS: cast format string to int64_tRosen Penev
2020-07-20jail: re-implement /proc/sys/net read-write in netns hackDaniel Golle
2020-07-20jail: refactor default mounts into new structureDaniel Golle
2020-07-20jail: actually apply filesystem-specific mount optionsDaniel Golle
2020-07-20jail: add support for defining devicesDaniel Golle
generated by cgit v1.2.3 (git 2.46.0) at 2026-04-22 16:04:18 +0000