https://jira.sw.ru/browse/PSBM-133986
Kirill Tkhai (1): ve/net/ip_gre: containerize per-net devices Konstantin Khorenko (4): ve/net/cred: add ve_capable to check capabilities relative to the current VE (v2) ve/net/vxlan: enable support in a container ve/uevent: Use own uevent_seqnum for every VE ve/quota: allow to manage quota in top CT user ns Pavel Tikhomirov (1): device_cgroup: add device visibility virtualization in CT Stanislav Kinsburskiy (2): ve/kobj: Send events per VE instead of all net-namespaces broadcasting ve/net: introduce vz_security_*_check checks Vasily Averin (1): ve/net/dummy: enable support in a container Vladimir Davydov (2): ve/kernel: allow to increase rlimit from inside container ve/net: ip_vti: skip per net init in ve block/genhd.c | 18 ++++- drivers/net/dummy.c | 1 + drivers/net/vxlan.c | 1 + fs/block_dev.c | 3 +- fs/char_dev.c | 4 ++ fs/quota/quota.c | 2 +- fs/statfs.c | 18 ++++- fs/super.c | 4 +- include/linux/device_cgroup.h | 16 ++++- include/linux/fs.h | 5 ++ include/linux/ve.h | 12 ++++ kernel/ksysfs.c | 3 +- kernel/sys.c | 3 +- kernel/ve/ve.c | 54 +++++++++++++++ kernel/ve/vecalls.c | 43 ++++++++++++ lib/kobject_uevent.c | 13 +++- net/core/rtnetlink.c | 10 +++ net/ipv4/af_inet.c | 5 ++ net/ipv4/ip_gre.c | 1 + net/ipv4/ip_vti.c | 16 +++++ net/ipv6/af_inet6.c | 5 ++ net/ipv6/sit.c | 2 +- net/socket.c | 6 ++ security/device_cgroup.c | 126 ++++++++++++++++++++++++++++++++-- 24 files changed, 353 insertions(+), 19 deletions(-) -- 2.31.1 _______________________________________________ Devel mailing list Devel@openvz.org https://lists.openvz.org/mailman/listinfo/devel