[lxc-devel] [PATCH 1/2] lxc-alpine: run bootmisc and syslog at boot runlevel

The bootmisc script is needed to clean up various temp dirs like /tmp and migrate /var/run to /run if needed. The syslog service is started in 'boot' runlevel when running on real hardware so we do the same for containers. Signed-off-by: Natanael Copa --- templates/lxc-alpine.in | 3 ++- 1 file

[lxc-devel] [PATCH 2/2] lxc-alpine: enable 4 consoles by default

We allow 4 consoles in the LXC config file so we can enable 4 in the inittab as well. Signed-off-by: Natanael Copa --- templates/lxc-alpine.in | 3 +++ 1 file changed, 3 insertions(+) diff --git a/templates/lxc-alpine.in b/templates/lxc-alpine.in index 2756b89..258eed4 100644 --- a/templates/lx

[lxc-devel] [lxc/lxc] 09bbd7: strtoul: check errno

Branch: refs/heads/master Home: https://github.com/lxc/lxc Commit: 09bbd74578af3a039325c273a3bd7e54c9c79482 https://github.com/lxc/lxc/commit/09bbd74578af3a039325c273a3bd7e54c9c79482 Author: Serge Hallyn Date: 2013-10-24 (Thu, 24 Oct 2013) Changed paths: M src/lxc/caps.c

Re: [lxc-devel] [PATCH 3/3] lxc-busybox: if in userns, don't try to mknod

Quoting Stéphane Graber (stgra...@ubuntu.com): > On Wed, Oct 23, 2013 at 01:02:59AM +, Serge Hallyn wrote: > > From: Serge Hallyn > > > > Signed-off-by: Serge Hallyn > > We really should be working on a shared set of functions all templates > can source instead of re-inventing the wheel ove

[lxc-devel] [lxc/lxc] cf3ef1: container creation: support unpriv container creat...

Branch: refs/heads/master Home: https://github.com/lxc/lxc Commit: cf3ef16dc479c102433a82b8ddbb4265d3818cce https://github.com/lxc/lxc/commit/cf3ef16dc479c102433a82b8ddbb4265d3818cce Author: Serge Hallyn Date: 2013-10-24 (Thu, 24 Oct 2013) Changed paths: M src/lxc/conf.c

[lxc-devel] [PATCH] lxc-ls: Rewrite nesting code to use the attach API

Signed-off-by: Stéphane Graber --- src/lxc/lxc-ls | 32 +++- 1 file changed, 19 insertions(+), 13 deletions(-) diff --git a/src/lxc/lxc-ls b/src/lxc/lxc-ls index cc0a1e7..9d45400 100644 --- a/src/lxc/lxc-ls +++ b/src/lxc/lxc-ls @@ -35,7 +35,7 @@ import json import lx

Re: [lxc-devel] [PATCH] lxc-ls: Rewrite nesting code to use the attach API

Quoting Stéphane Graber (stgra...@ubuntu.com): > Signed-off-by: Stéphane Graber Acked-by: Serge E. Hallyn > --- > src/lxc/lxc-ls | 32 +++- > 1 file changed, 19 insertions(+), 13 deletions(-) > > diff --git a/src/lxc/lxc-ls b/src/lxc/lxc-ls > index cc0a1e7..9d45400

[lxc-devel] [lxc/lxc] 1563f8: lxc-ls: Rewrite nesting code to use the attach API

Branch: refs/heads/master Home: https://github.com/lxc/lxc Commit: 1563f8eff33476a55443f52bd77d14be36286a29 https://github.com/lxc/lxc/commit/1563f8eff33476a55443f52bd77d14be36286a29 Author: Stéphane Graber Date: 2013-10-24 (Thu, 24 Oct 2013) Changed paths: M src/lxc/lxc

Re: [lxc-devel] Kernel bug? Setuid apps and user namespaces

On 10/23/2013 12:54 AM, Eric W. Biederman wrote: > Sean Pajot writes: > >> On 10/22/2013 03:50 PM, Eric W. Biederman wrote: >>> Serge Hallyn writes: >>> Quoting Sean Pajot (sean.pa...@execulink.com): > I've been playing with User Namespaces somewhat extensively and I think > I've >

Re: [lxc-devel] [PATCH 1/3] container creation: support unpriv container creation in user namespaces

On Wed, 2013-10-23 at 01:02 +, Serge Hallyn wrote: > From: Serge Hallyn > 1. lxcapi_create: don't try to unshare and mount for dir backed containers > It's unnecessary, and breaks unprivileged lxc-create (since unpriv users > cannot yet unshare(CLONE_NEWNS)). I saw this and thought "I wond

Re: [lxc-devel] [PATCH 1/3] container creation: support unpriv container creation in user namespaces

Quoting Michael H. Warfield (m...@wittsend.com): > On Wed, 2013-10-23 at 01:02 +, Serge Hallyn wrote: > > From: Serge Hallyn > > > 1. lxcapi_create: don't try to unshare and mount for dir backed containers > > > It's unnecessary, and breaks unprivileged lxc-create (since unpriv users > > ca