On Tue, Dec 22, 2015 at 02:25:00PM -0800, wim.coekae...@oracle.com wrote:
> From: Wim Coekaerts
>
> Linux for SPARC is a free community Linux distribution for SPARC hosted by
> Oracle. See : https://oss.oracle.com/projects/linux-sparc
>
> While the distribution is based on Oracle Linux it does
On Wed, Dec 23, 2015 at 05:24:51PM +0100, Christian Brauner wrote:
> On Wed, Dec 23, 2015 at 08:57:36AM -0700, Tycho Andersen wrote:
> > On Mon, Dec 21, 2015 at 05:12:12PM -0500, Stéphane Graber wrote:
> > > Hey everyone,
> > >
> > > So you may have noticed I just tagged LXC 2.0.0 beta1.
> > >
>
On Sun, Jan 03, 2016 at 11:20:47PM +0100, Marko Hauptvogel wrote:
> From b24b0e16848fbb93402a08efa3950cd59272b8da Mon Sep 17 00:00:00 2001
> From: Marko Hauptvogel
> Date: Sun, 3 Jan 2016 23:07:19 +0100
> Subject: [PATCH] Documenting valueless lxc.cap.drop behaviour
>
> Undocummented behaviour si
On Thu, Dec 24, 2015 at 03:03:39PM +0900, KATOH Yasufumi wrote:
> * remove unavailable options (-w, -r)
> * remove overlapped option (-P)
> * classify options according to bdev type
>
> Signed-off-by: KATOH Yasufumi
Acked-by: Stéphane Graber
> ---
> src/lxc/lxc_create.c | 54
> ++
On Sun, Dec 27, 2015 at 09:29:10AM -0800, wim.coekae...@oracle.com wrote:
> From: Wim Coekaerts
>
> while highly unlikely to happen...
> char version[1024];
>
> fscanf(.. %[1024] .., version );
>
> should leave room for null termination
>
> Signed-off-by: Wim Coekaerts
Acked-by: Stéphane Gr
On Tue, Dec 29, 2015 at 01:10:23AM +0100, Lorenzo David wrote:
> Hello,
>
> I am new to lxc-net and upstart.
> I would like to create two or more lxc bridges (e.g. lxcbrA, lxcbrB, etc.)
> using the same lxc-net.conf launched through 'start lxc-net'.
>
> I have read Serge Hallyn's comment[1] rega
Quoting wim.coekae...@oracle.com (wim.coekae...@oracle.com):
> From: Wim Coekaerts
>
> Signed-off-by: Wim Coekaerts
Acked-by: Serge E. Hallyn
> ---
> src/lxc/network.c |4 +++-
> 1 files changed, 3 insertions(+), 1 deletions(-)
>
> diff --git a/src/lxc/network.c b/src/lxc/network.c
> in
On Mon, Dec 28, 2015 at 10:23:47PM -0800, wim.coekae...@oracle.com wrote:
> From: Wim Coekaerts
>
> Signed-off-by: Wim Coekaerts
Acked-by: Stéphane Graber
> ---
> src/lxc/network.c |4 +++-
> 1 files changed, 3 insertions(+), 1 deletions(-)
>
> diff --git a/src/lxc/network.c b/src/lxc/n
On Mon, Dec 28, 2015 at 06:48:56PM +0900, KATOH Yasufumi wrote:
> only add to English and Japanese docs.
>
> Signed-off-by: KATOH Yasufumi
Acked-by: Stéphane Graber
> ---
> doc/ja/lxc.container.conf.sgml.in | 15 +++
> doc/lxc.container.conf.sgml.in| 12
> 2 files
Quoting wim.coekae...@oracle.com (wim.coekae...@oracle.com):
> From: Wim Coekaerts
>
> nlmsg_reserve() might return NULL
>
> if (nlmsg_len + tlen > nlmsg->cap)
> return NULL;
>
> Also set err = -ENOMEM where appropriate
>
> Signed-off-by: Wim Coekaerts
Acked-by: Serge
On Mon, Dec 28, 2015 at 06:55:24PM +0900, KATOH Yasufumi wrote:
> * Add long options if not be written
> * Remove optional tags in OPTIONS section
>
> Signed-off-by: KATOH Yasufumi
Acked-by: Stéphane Graber
> ---
> doc/ja/lxc-console.sgml.in | 4 ++--
> doc/ja/lxc-create.sgml.in
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: beabd0a28f97372f3842746888082237c070ded1
https://github.com/lxc/lxc/commit/beabd0a28f97372f3842746888082237c070ded1
Author: Wim Coekaerts
Date: 2016-01-04 (Mon, 04 Jan 2016)
Changed paths:
M config/templa
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: a3d42f4bd6313bf2a6e43d2cd64b379d1fce0f32
https://github.com/lxc/lxc/commit/a3d42f4bd6313bf2a6e43d2cd64b379d1fce0f32
Author: Aron Podrigal
Date: 2015-12-31 (Thu, 31 Dec 2015)
Changed paths:
M templates/lxc
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 4027875db1d25dba48712327afa0073c014f1930
https://github.com/lxc/lxc/commit/4027875db1d25dba48712327afa0073c014f1930
Author: Danil Osherov
Date: 2015-12-24 (Thu, 24 Dec 2015)
Changed paths:
M src/python-lx
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: da4cacd1fa7a02a59b1b2adf8dcac58da7dfd81e
https://github.com/lxc/lxc/commit/da4cacd1fa7a02a59b1b2adf8dcac58da7dfd81e
Author: tw19881...@gmail.com
Date: 2015-12-30 (Wed, 30 Dec 2015)
Changed paths:
M src/in
From: Serge Hallyn
allowing root in a non-init user namespace to mount it. This should
now be safe, because
1. non-init-root cannot mount a previously unbound subsystem
2. the task doing the mount must be privileged with respect to the
user namespace owning the cgroup namespace
3. the mounte
Hi,
following is a revised set of the CGroup Namespace patchset which Aditya
Kali has previously sent. The code can also be found in the cgroupns.v9
branch of
https://git.kernel.org/cgit/linux/kernel/git/sergeh/linux-security.git/
To summarize the semantics:
1. CLONE_NEWCGROUP re-uses 0x02
From: Aditya Kali
Add a new kernfs api is added to lookup the dentry for a particular
kernfs path.
Signed-off-by: Aditya Kali
Signed-off-by: Serge E. Hallyn
Acked-by: Greg Kroah-Hartman
---
Changelog:
20151116 - Don't allow user namespaces to bind new subsystems
20151118 - pos
From: Aditya Kali
Introduce the ability to create new cgroup namespace. The newly created
cgroup namespace remembers the cgroup of the process at the point
of creation of the cgroup namespace (referred as cgroupns-root).
The main purpose of cgroup namespace is to virtualize the contents
of /proc/
patch, until we can convince ourselves it
is safe.
20151207 - Switch to walking up the kernfs path from kn root.
- Group initialized variables
- Explain the capable(CAP_SYS_ADMIN) check
- Style fixes
201
From: Aditya Kali
CLONE_NEWCGROUP will be used to create new cgroup namespace.
Signed-off-by: Aditya Kali
Signed-off-by: Serge Hallyn
---
include/uapi/linux/sched.h |3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
diff --git a/include/uapi/linux/sched.h b/include/uapi/linux/sched.h
From: Aditya Kali
setns on a cgroup namespace is allowed only if
task has CAP_SYS_ADMIN in its current user-namespace and
over the user-namespace associated with target cgroupns.
No implicit cgroup changes happen with attaching to another
cgroupns. It is expected that the somone moves the attachi
From: Serge Hallyn
Signed-off-by: Aditya Kali
Signed-off-by: Serge Hallyn
Signed-off-by: Tejun Heo
---
Changelog (2015-12-08):
Merge into Documentation/cgroup.txt
Changelog (2015-12-22):
Reformat to try to follow the style of the rest of the cgroup.txt file.
Changelog (2015-12-22):
tj:
From: Aditya Kali
The new function kernfs_path_from_node() generates and returns kernfs
path of a given kernfs_node relative to a given parent kernfs_node.
Signed-off-by: Aditya Kali
Signed-off-by: Serge E. Hallyn
Acked-by: Greg Kroah-Hartman
---
Changelog 20151125:
- Fully-wing multilineco
On Mon, Jan 04, 2016 at 01:54:48PM -0600, serge.hal...@ubuntu.com wrote:
> From: Aditya Kali
>
> Introduce the ability to create new cgroup namespace. The newly created
> cgroup namespace remembers the cgroup of the process at the point
> of creation of the cgroup namespace (referred as cgroupns-
Closes #1459
Signed-off-by: Serge Hallyn
---
src/lxc/lsm/apparmor.c | 38 +++---
1 file changed, 35 insertions(+), 3 deletions(-)
diff --git a/src/lxc/lsm/apparmor.c b/src/lxc/lsm/apparmor.c
index d78bd7a..39324ce 100644
--- a/src/lxc/lsm/apparmor.c
+++ b/src/lxc
On Mon, Jan 04, 2016 at 09:20:06PM +, Serge Hallyn wrote:
> Closes #1459
>
> Signed-off-by: Serge Hallyn
Acked-by: Stéphane Graber
> ---
> src/lxc/lsm/apparmor.c | 38 +++---
> 1 file changed, 35 insertions(+), 3 deletions(-)
>
> diff --git a/src/lxc/lsm/a
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 9bfdc0adc8a78fd2c15072b8a780a0b76588f169
https://github.com/lxc/lxc/commit/9bfdc0adc8a78fd2c15072b8a780a0b76588f169
Author: Serge Hallyn
Date: 2016-01-04 (Mon, 04 Jan 2016)
Changed paths:
M src/lxc/lsm/ap
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 7d72b9596c6555d374ef32e83c0272d16a1d71dc
https://github.com/lxc/lxc/commit/7d72b9596c6555d374ef32e83c0272d16a1d71dc
Author: Serge Hallyn
Date: 2016-01-04 (Mon, 04 Jan 2016)
Changed paths:
M src/lxc/lxccon
Ok, please hold off on this, there is another locking question i need to look
into :(
___
lxc-devel mailing list
lxc-devel@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-devel
Introduce the ability to create new cgroup namespace. The newly created
cgroup namespace remembers the cgroup of the process at the point
of creation of the cgroup namespace (referred as cgroupns-root).
The main purpose of cgroup namespace is to virtualize the contents
of /proc/self/cgroup file. Pr
Update for commit 0794541
Signed-off-by: Sungbae Yoo
diff --git a/doc/ko/lxc.container.conf.sgml.in
b/doc/ko/lxc.container.conf.sgml.in
index 347ba65..2812bf4 100644
--- a/doc/ko/lxc.container.conf.sgml.in
+++ b/doc/ko/lxc.container.conf.sgml.in
@@ -2141,6 +2141,21 @@ mknod errno 0
Update for commit 7eff30f
Signed-off-by: KATOH Yasufumi
---
doc/ja/lxc.container.conf.sgml.in | 3 +++
1 file changed, 3 insertions(+)
diff --git a/doc/ja/lxc.container.conf.sgml.in
b/doc/ja/lxc.container.conf.sgml.in
index 2150d66..8b47d75 100644
--- a/doc/ja/lxc.container.conf.sgml.in
+++ b/
33 matches
Mail list logo
