projects / project / procd.git / history
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
jail: read and apply umask from OCI if defined
[project/procd.git] / jail /
2020-07-19 Daniel Gollejail: read and apply umask from OCI if defined tree | commitdiff
2020-07-19 Daniel Gollejail: implement OCI user additionalGIDs tree | commitdiff
2020-07-19 Daniel Gollejail: parse and apply OCI sysctl values tree | commitdiff
2020-07-19 Daniel Gollejail: fix hooks tree | commitdiff
2020-07-17 Daniel Gollejail: add support for maskedPaths and readonlyPaths tree | commitdiff
2020-07-16 Daniel Gollejail: fix some more mount options tree | commitdiff
2020-07-15 Daniel Gollejail: fs: fix build on uClibc-ng tree | commitdiff
2020-07-13 Daniel Gollejail: fix false return in case of nofail mount tree | commitdiff
2020-07-13 Daniel Gollejail: don't make mount source read-only tree | commitdiff
2020-07-13 Daniel Gollejail: refactor mount support to cover OCI spec tree | commitdiff
2020-07-13 Daniel Gollejail: memory allocation fixes tree | commitdiff
2020-07-13 Daniel Gollejail: parse and run OCI hooks tree | commitdiff
2020-07-13 Daniel Gollejail: actually chdir into OCI defined CWD tree | commitdiff
2020-07-13 Daniel Gollejail: consider PATH for argv in OCI container tree | commitdiff
2020-07-13 Daniel Gollejail: fix segfault with len(uidmap/gidmap) > 1 tree | commitdiff
2020-07-11 Rosen Penevprocd: fix compilation with uClibc-ng tree | commitdiff
2020-07-11 Daniel Gollejail: use linux/capability.h instead of sys/capability.h tree | commitdiff
2020-07-10 Daniel Gollejail: fix build on platforms without seccomp support tree | commitdiff
2020-07-10 Daniel Gollejail: add support for running OCI bundle tree | commitdiff
2020-05-28 Daniel Gollejail: handle containers seperately tree | commitdiff
2020-05-28 Daniel Gollejail: use sane termios settings for console pts tree | commitdiff
2020-05-15 Daniel Gollejail: add option to provide /dev/console to containers tree | commitdiff
2020-05-15 Leonardo Mörleinjail: unnamed jails can not have netns (fix segfault) tree | commitdiff
2020-05-15 Leonardo Mörleinjail: SIGSEGV must not be forwarded to the child process tree | commitdiff
2020-04-25 Daniel Gollejail: don't load libpreload-seccomp.so if it doesn... tree | commitdiff
2020-04-25 Daniel Gollejail: don't fail unless requirejail is set tree | commitdiff
2020-04-19 Daniel Gollejail: include /etc/nsswitch.conf in jail for glibc. tree | commitdiff
2020-04-14 Daniel Gollejail: always mount /dev as additional tmpfs tree | commitdiff
2020-04-13 Daniel Gollejail: replace /etc/resolv.conf with symlink in extroot... tree | commitdiff
2020-04-13 Daniel Gollejail: mount /sys read-only tree | commitdiff
2020-04-13 Daniel Gollejail: make /proc more secure tree | commitdiff
2020-04-12 Daniel Gollejail: only mess with rootfs if CLONE_NEWNS was set tree | commitdiff
2020-04-09 Daniel Gollejail: add support for (ram-)overlayfs tree | commitdiff
2020-04-09 Daniel Gollejail: add support for userns and cgroupsns tree | commitdiff
2020-04-09 Daniel Gollejail: add support for launching extroot containers tree | commitdiff
2020-03-12 Daniel Gollejail: mount-bind /etc/resolv.conf for non-netns jails tree | commitdiff
2020-02-11 Kevin Darbyshire... seccomp: fix resource leak tree | commitdiff
2020-01-21 Daniel Gollejail: more strict mount options for /tmp/resolv.conf.d/ tree | commitdiff
2020-01-21 Daniel Gollejail: create resolv.conf symlink for netns jails tree | commitdiff
2020-01-21 Daniel Gollejail: add basic support for network namespaces tree | commitdiff
2019-12-30 Daniel Gollejail: remove accidentally added lines tree | commitdiff
2019-12-30 Daniel Gollejail: set user and group inside jail tree | commitdiff
2019-03-11 Wojciech Dubowikprocd: trace: Define syscall registers for powerpc... tree | commitdiff
2018-01-02 Rosen Penevprocd: Add %m to several functions that return errno. tree | commitdiff
2018-01-02 Rosen Penevprocd: Replace strerror(errno) with %m. tree | commitdiff
2017-09-28 Michal Sojkautrace: Support non-contiguous syscall numbers tree | commitdiff
2017-09-28 Michal Sojkaseccomp: Improve error message tree | commitdiff
2017-09-28 Michal Sojkapreload-seccomp: Use proper log level for error messages tree | commitdiff
2017-09-28 Michal Sojkaseccomp: Log seccomp violations with utrace tree | commitdiff
2017-02-08 John Crispinujail: fix signal forwarding tree | commitdiff
2017-01-10 Etienne CHAMPETIERujail: add basic /dev files tree | commitdiff
2016-12-02 Felix Fietkauujail: send SIGKILL to jail process if SIGTERM fails tree | commitdiff
2016-06-03 Etienne CHAMPETIERjail: don't always CLONE_NEWUTS tree | commitdiff
2016-06-01 Etienne CHAMPETIERjail: ensure mounts are not MS_SHARED to avoid pivot_ro... tree | commitdiff
2016-06-01 Etienne CHAMPETIERjail: improve some logs tree | commitdiff
2016-06-01 Etienne CHAMPETIERjail: don't include capabilities config (-C) inside... tree | commitdiff
2016-06-01 Etienne CHAMPETIERjail: call build_envp() just before execve() tree | commitdiff
2016-06-01 Etienne CHAMPETIERjail: regroup add_path_and_deps() calls tree | commitdiff
2016-06-01 Etienne CHAMPETIERjail: call chdir(/) after pivot_root() tree | commitdiff
2015-12-11 Etienne CHAMPETIERujail: split name (-n) and hostname (-h) options tree | commitdiff
2015-12-11 Etienne CHAMPETIERujail: add no_new_privs (-c) option tree | commitdiff
2015-12-11 Etienne CHAMPETIERinstance, ujail: remove "-P <path>" option tree | commitdiff
2015-12-11 Etienne CHAMPETIERujail: add O_CLOEXEC flag to open() call tree | commitdiff
2015-12-11 Etienne CHAMPETIERujail: fixup code style // -> /* */ tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: add ELF interpreter (DT_INTERP) to the jail tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: automatically add script (#!) interpreter tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: rework fs jail part tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: DT_STRTAB uses d_ptr in d_un union (not d_val) tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: remove some debug/dev hack tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: fixup code style: "func()" -> "func(void)" tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: add init_library_search() tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: use PATH_MAX for path related buffers tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: search libs in /lib before /lib64 tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: remove "#include log.h" from elf.h tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: add <stdio.h> and <syslog.h> to seccomp.h tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: add <stdio.h> to log.h tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: put #include guard macro in all *.h tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: use more const in elf.* tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: stop using extern in elf.h tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: don't pass unused arg in clone call tree | commitdiff
2015-11-27 Etienne CHAMPETIERujail: don't add non existant library_path tree | commitdiff
2015-11-07 Ulrich Webersyslog: set sane priority values tree | commitdiff
2015-10-08 Etienne CHAMPETIERjail: Add MS_NODEV MS_NOEXEC MS_NOSUID mount options... tree | commitdiff
2015-10-07 Etienne CHAMPETIERjail: allow to not use namespaces tree | commitdiff
2015-10-07 Etienne CHAMPETIERjail: cleanup include tree | commitdiff
2015-10-07 Etienne CHAMPETIERjail: add capabilities support tree | commitdiff
2015-10-03 Etienne CHAMPETIERjail: reworks & cleanups tree | commitdiff
2015-10-03 Etienne CHAMPETIERjail, seccomp: remove useless root check tree | commitdiff
2015-10-03 Etienne CHAMPETIERjail, seccomp: fix typo/improve log prefix tree | commitdiff
2015-07-24 Etienne CHAMPETIERjail: fix jail root folder permissions tree | commitdiff
2015-05-14 Daniel Gollejail: respect byte order when setting AUDIT_ARCH tree | commitdiff
2015-05-14 Daniel Gollejail: add support for ARM architecture tree | commitdiff
2015-03-28 John Crispinproperly handle return codes tree | commitdiff
2015-03-27 John Crispinmake it optional to remount the tmpfs as ro tree | commitdiff
2015-03-23 John Crispinadd initial version of ujail and utrace tree | commitdiff
OpenWrt service / process manager