This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "lxc".
The branch, master has been updated
via ce6ce9d662b4ee8c0a10088867826a6725e06f70 (commit)
via 49ee6cdcbf79d8b6fa617479ec8ab753ccca923d (commit)
via cb014488ee24072579837439389552ce3d6cbb83 (commit)
via 99d509541d82f247b3225d243fff5359574817ff (commit)
via e073270504f2f5c5df90bfcc4917d2d20b73d1e7 (commit)
via 525f00025700ae351b9c53dfb0d5f10a70d6b083 (commit)
via 28f2ae839d00373d093234ffbc9bbb4ef5f9d10e (commit)
via 3ea24eb8e68ba18e215aec0f10d96f75b23c340b (commit)
via e16dad106358ae045cdcb1d86fcf3c85ca76724f (commit)
via d79579e87406e8c239014dad04c5d310e553a8dd (commit)
via d55bc1adad2f4929d26d91b295115a77ca6a0d05 (commit)
via 5170c716339cc57e4df2315f24abd18f7fc05d08 (commit)
via 20d816599f954e7e5864d39884cc0de56f9358fd (commit)
via 5781a74a8af3057ce7b561f454e2b5b0925b1f76 (commit)
via 307cf2a670fc8979b84d888f2720a827bcfa5291 (commit)
from aa198728a83e7016cd02583349fce1f5b1a60c66 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -
commit ce6ce9d662b4ee8c0a10088867826a6725e06f70
Author: Jon Nordby
Date: Thu Feb 23 09:57:26 2012 +0100
fix-automake-1.13
## 0001-Replace-pkglib_PROGRAMS-with-pkglibexec_PROGRAMS.patch [diff]
From 95c566740bba899acc7792c11fcdb3f4d32dcfc9 Mon Sep 17 00:00:00 2001
From: Jon Nordby
Date: Fri, 10 Feb 2012 11:38:35 +0100
Subject: [PATCH] Replace pkglib_PROGRAMS with pkglibexec_PROGRAMS
Without this change, autogen.sh fails with automake 1.11.3
Signed-off-by: Daniel Lezcano
commit 49ee6cdcbf79d8b6fa617479ec8ab753ccca923d
Author: Christian Seiler
Date: Thu Feb 23 09:57:14 2012 +0100
Add man page for lxc-attach
Signed-off-by: Daniel Lezcano
commit cb014488ee24072579837439389552ce3d6cbb83
Author: Christian Seiler
Date: Thu Feb 23 09:57:14 2012 +0100
lxc-attach: Drop privileges when attaching to container unless requested
otherwise
lxc-attach will now put the process that is attached to the container into
the correct cgroups corresponding to the container, set the correct
personality and drop the privileges.
The information is extracted from entries in /proc of the init process of
the container. Note that this relies on the (reasonable) assumption that the
init process does not in fact drop additional capabilities from its bounding
set.
Additionally, 2 command line options are added to lxc-attach: One to prevent
the capabilities from being dropped and the process from being put into the
cgroup (-e, --elevated-privileges) and a second one to explicitly state the
architecture which the process will see, (-a, --arch) which defaults to the
container's current architecture.
Signed-off-by: Daniel Lezcano
commit 99d509541d82f247b3225d243fff5359574817ff
Author: Christian Seiler
Date: Thu Feb 23 09:57:14 2012 +0100
Move lxc_attach from namespace.c to attach.c and rename it to
lxc_attach_to_ns
Since lxc-attach helper functions now have an own source file, lxc_attach is
moved from namespace.c to attach.c and is renamed to lxc_attach_to_ns,
because that better reflects what the function does (attaching to a
container can also contain the setting of the process's personality, adding
it to the corresponding cgroups and dropping specific capabilities).
Signed-off-by: Daniel Lezcano
commit e073270504f2f5c5df90bfcc4917d2d20b73d1e7
Author: Christian Seiler
Date: Thu Feb 23 09:57:14 2012 +0100
Add attach.[ch]: Helper functions for lxc-attach
The following helper functions for lxc-attach are added to a new file
attach.c:
- lxc_proc_get_context_info: Get cgroup memberships, personality and
capability bounding set from /proc for a given process.
- lxc_proc_free_context_info: Free the data structure responsible
- lxc_attach_proc_to_cgroups: Add the process specified by the pid
parameter to the cgroups given by the ctx parameter.
- lxc_attach_drop_privs: Drop capabilities to the capability mask given in
the ctx parameter.
Signed-off-by: Daniel Lezcano
commit 525f00025700ae351b9c53dfb0d5f10a70d6b083
Author: Christian Seiler
Date: Thu Feb 23 09:57:14 2012 +0100
Add lxc_config_parse_arch to parse architecture strings
Add the function lxc_config_parse_arch that parses an architecture string
(x86, i686, x86_64, amd64) and returns the corresponding personality. This
is required for lxc-attach, which accepts architectures independently of
lxc.arch. The pa
