summaryrefslogtreecommitdiff
path: root/src/nspawn
AgeCommit message (Expand)AuthorFilesLines
2017-12-14Merge pull request #7469 from kinvolk/dongsu/nspawn-netnsZbigniew Jędrzejewski-Szmek1-52/+103
2017-12-14tree-wide: make use of new STRLEN() macro everywhere (#7639)Lennart Poettering2-4/+4
2017-12-13nspawn: introduce an option for specifying network namespace pathDongsu Park1-52/+103
2017-12-11tree-wide: unify logging of "Must be root" messageLennart Poettering1-4/+3
2017-12-07nspawn: turn on watchdog logic for nspawn tooLennart Poettering1-0/+2
2017-12-06build-sys: make the dynamic UID range, and the container UID range configurableLennart Poettering2-8/+2
2017-12-05nspawn: when in hybrid mode, chown() both the legacy and the unified hierarch...Lennart Poettering3-3/+16
2017-12-05nspawn: make sure images containing an ESP are compatible with userns -U modeLennart Poettering1-1/+15
2017-12-05cgroup: also include "cgroups.threads" in the list of files to chownLennart Poettering1-5/+7
2017-12-05nspawn: figure out cgroup mode *after* mounting imageLennart Poettering1-9/+57
2017-11-30util-lib: rename path_check_fstype to path_is_fs_typeZbigniew Jędrzejewski-Szmek1-1/+1
2017-11-25nspawn: adjust path to static resolv.conf to support split usrYu Watanabe1-2/+8
2017-11-24nspawn: hash the machine name, when looking for a suitable UID base (#7437)Lennart Poettering1-1/+15
2017-11-24Merge pull request #7442 from poettering/scope-fixesLennart Poettering3-19/+98
2017-11-24Merge pull request #7453 from neosilky/coccinelle-fixesLennart Poettering1-2/+2
2017-11-24Replace free and reassignment with free_and_replaceDaniel Lockyer1-3/+1
2017-11-24Replace empty ternary with helper methodDaniel Lockyer1-2/+2
2017-11-23nspawn: make use of the RequestStop logic of scope unitsLennart Poettering3-19/+98
2017-11-22Merge pull request #7381 from poettering/cgroup-unified-delegate-reworkZbigniew Jędrzejewski-Szmek1-40/+53
2017-11-21cgroup-util: move Set* allocation into cg_kernel_controllers()Lennart Poettering1-5/+1
2017-11-21nspawn: minor optimizationLennart Poettering1-4/+4
2017-11-21nspawn-mount: rework get_controllers() a bitLennart Poettering1-16/+22
2017-11-21nspawn: rework mount_systemd_cgroup_writable() a bitLennart Poettering1-15/+26
2017-11-20tree-wide: adjust fall through comments so that gcc is happyShawn Landden2-6/+6
2017-11-19Add license headers and SPDX identifiers to meson.build filesZbigniew Jędrzejewski-Szmek1-0/+17
2017-11-19Add SPDX license identifiers to source files under the LGPLZbigniew Jędrzejewski-Szmek22-2/+24
2017-11-17nspawn: make recursive chown()ing logic safe for being aborted in the middleLennart Poettering4-63/+121
2017-11-17nspawn: add missing #pragma once to header fileLennart Poettering1-0/+2
2017-11-15Merge pull request #6866 from sourcejedi/set-linger2Lennart Poettering1-0/+2
2017-11-13conf-parser: turn three bool function params into a flags fieldsLennart Poettering1-3/+1
2017-10-26dissect: when we invoke dissection on a loop device with partscan help the userLennart Poettering1-0/+4
2017-10-26machine-image: add partial discovery of block devices as imagesLennart Poettering1-1/+1
2017-10-24nspawn: EROFS for chowning mount points is not fatal (#7122)Lauri Tirkkonen1-2/+6
2017-10-24nspawn: Fix calculation of capabilities for configuration file (#7087)myrkr1-1/+1
2017-10-18nspawn: comment to acknowledge lying about "user session"Alan Jenkins1-0/+2
2017-10-06mkdir: introduce follow_symlink flag to mkdir_safe{,_label}()Yu Watanabe1-1/+1
2017-10-05seccomp: add three more seccomp groupsLennart Poettering1-20/+3
2017-10-05seccomp: include prlimit64 and ugetrlimit in @defaultLennart Poettering1-1/+0
2017-10-04build-sys: use #if Y instead of #ifdef Y everywhereZbigniew Jędrzejewski-Szmek4-12/+12
2017-10-03seccomp: remove '@credentials' syscall set (#6958)Djalal Harouni1-1/+1
2017-10-02nspawn: properly report all kinds of changed UID/GID when patching things for...Lennart Poettering1-0/+2
2017-10-02tree-wide: use IN_SET where possibleAndreas Rammhold1-3/+2
2017-09-22nspawn: set up a new session keyring for the container processLennart Poettering1-0/+25
2017-09-14nspawn: replace syscall blacklist by a whitelistLennart Poettering1-37/+156
2017-09-12nspawn: implement configurable syscall whitelisting/blacklistingLennart Poettering6-9/+127
2017-09-11nspawn: replace homegrown seccomp filter table largely with references to the...Lennart Poettering1-54/+6
2017-09-11nspawn: part over seccomp code to use seccomp_add_syscall_filter_item()Lennart Poettering1-67/+65
2017-09-08util-lib: wrap personality() to fix up broken glibc error handling (#6766)Lennart Poettering1-4/+6
2017-07-23nspawn: do not mount /sys/fs/kdbusZbigniew Jędrzejewski-Szmek1-3/+0
2017-07-20nspawn: downgrade warning when we get sd_notify() message from unexpected pro...Lennart Poettering1-1/+1
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-14 14:37:02 +0000