On Wed, 18 Jun 2014 14:11:49 -0400
Stéphane Graber wrote:
> Just fixing lxc-devel's e-mail address, it turns out that e-mails work
> better when you don't forget the tld :)
>
> So, lxc-devel subscribers, see below:
>
> On Wed, Jun 18, 2014 at 01:41:19PM -0400, Stéphane Graber wrote:
> > TL;DR:
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: d021832111871f46bbce7edb0806944b4247b5d0
https://github.com/lxc/lxc/commit/d021832111871f46bbce7edb0806944b4247b5d0
Author: Serge Hallyn
Date: 2014-06-18 (Wed, 18 Jun 2014)
Changed paths:
M src/lxc/lxccon
Build Update for lxc/lxc
-
Build: #536
Status: Fixed
Duration: 1 minute and 45 seconds
Commit: 761d81c (master)
Author: Serge Hallyn
Message: travis warning: call the fn to clear policy alien statements (memleak)
Signed-off-by: Serge Hallyn
View the changese
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 761d81cad8b98635577837c442edcc116133c4c5
https://github.com/lxc/lxc/commit/761d81cad8b98635577837c442edcc116133c4c5
Author: Serge Hallyn
Date: 2014-06-18 (Wed, 18 Jun 2014)
Changed paths:
M src/lxc/conf.c
Build Update for lxc/lxc
-
Build: #535
Status: Still Failing
Duration: 1 minute and 51 seconds
Commit: e60e630 (master)
Author: Serge Hallyn
Message: snapshot test: make sure that external snapshot was really created
Signed-off-by: Serge Hallyn
Acked-by: Stép
Build Update for lxc/lxc
-
Build: #534
Status: Still Failing
Duration: 2 minutes and 51 seconds
Commit: 18aa217 (master)
Author: Serge Hallyn
Message: snapshots: move snapshot directory
Originally we kept snapshots under /var/lib/lxcsnaps. If a
separate btrfs
Build Update for lxc/lxc
-
Build: #533
Status: Still Failing
Duration: 2 minutes and 41 seconds
Commit: 3dbcf8b (master)
Author: Serge Hallyn
Message: confile: fix a typo (s/len/str/) in my previous patch
Signed-off-by: Serge Hallyn
View the changeset:
http
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: ce7aee4d913e4c181502e3c2e6373c30a3db55b9
https://github.com/lxc/lxc/commit/ce7aee4d913e4c181502e3c2e6373c30a3db55b9
Author: Stéphane Graber
Date: 2014-06-18 (Wed, 18 Jun 2014)
Changed paths:
M templates/l
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 18aa217bb187b551206fe66075229ba382a1dbe4
https://github.com/lxc/lxc/commit/18aa217bb187b551206fe66075229ba382a1dbe4
Author: Serge Hallyn
Date: 2014-06-18 (Wed, 18 Jun 2014)
Changed paths:
M doc/lxc-snapsh
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 3dbcf8b27bf3886d362564cf7d5eb3fcbd48329f
https://github.com/lxc/lxc/commit/3dbcf8b27bf3886d362564cf7d5eb3fcbd48329f
Author: Serge Hallyn
Date: 2014-06-18 (Wed, 18 Jun 2014)
Changed paths:
M src/lxc/confil
Build Update for lxc/lxc
-
Build: #532
Status: Broken
Duration: 1 minute and 33 seconds
Commit: 4184c3e (master)
Author: Serge Hallyn
Message: Store alien config lines
Any config lines not starting with 'lxc.*' are ignored by lxc. That
can be useful for third
On Wed, 2014-06-18 at 16:48 -0400, Stéphane Graber wrote:
> On Wed, Jun 18, 2014 at 03:31:44PM -0400, Michael H. Warfield wrote:
> > Updated lxc-opensuse for common configuration changes.
> >
> > Updated the lxc-opensuse template for the changes for the common
> > configuration used by the downloa
Stéphane (et al)...
Here are the seed containers I promised you for OpenSUSE to go with that
template update I shipped in a little bit ago.
There are three sets of two tarballs (one each per arch i686 / x86_64).
These two can be used to prime /var/cache/lxc
opensuse-13.1-cache-i686.tgz
opensuse
On Wed, Jun 18, 2014 at 04:54:00PM -0400, Stéphane Graber wrote:
> On Tue, May 27, 2014 at 04:24:06PM -0500, Serge Hallyn wrote:
> > Originally we kept snapshots under /var/lib/lxcsnaps. If a
> > separate btrfs is mounted at /var/lib/lxc, then we can't
> > make btrfs snapshots under /var/lib/lxcsn
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 52036991a0c482ab57c4f01340947aaf817d7ba7
https://github.com/lxc/lxc/commit/52036991a0c482ab57c4f01340947aaf817d7ba7
Author: Serge Hallyn
Date: 2014-06-18 (Wed, 18 Jun 2014)
Changed paths:
M src/lxc/seccom
On Mon, Jun 02, 2014 at 08:53:16AM -0500, Serge Hallyn wrote:
> Quoting S.Çağlar Onur (cag...@10ur.org):
> > Serge, I believe you can ignore this problem for now. Looks like it is
> > not an issue if you do a fresh compilation. To reproduce, you need to
> > start with compiling master (and then ins
On Tue, May 27, 2014 at 04:24:06PM -0500, Serge Hallyn wrote:
> Originally we kept snapshots under /var/lib/lxcsnaps. If a
> separate btrfs is mounted at /var/lib/lxc, then we can't
> make btrfs snapshots under /var/lib/lxcsnaps.
>
> This patch moves the default directory to /var/lib/lxc/c/snaps.
On Thu, Jun 12, 2014 at 01:46:37PM +, Serge Hallyn wrote:
> Any config lines not starting with 'lxc.*' are ignored by lxc. That
> can be useful for third party tools, however lxc-clone does not copy such
> lines.
>
> Fix that by tracking such lines in our unexpanded config file and
> printing
On Thu, Jun 12, 2014 at 02:24:38PM +, Serge Hallyn wrote:
> Currently when a container's configuration file has lxc.includes,
> any future write_config() will expand the lxc.includes. This
> affects container clones (and snapshots) as well as users of the
> API who make an update and then c.sa
On Wed, Jun 18, 2014 at 03:31:44PM -0400, Michael H. Warfield wrote:
> Updated lxc-opensuse for common configuration changes.
>
> Updated the lxc-opensuse template for the changes for the common
> configuration used by the download template. Changed the default
> network mode in the container to
On Wed, Jun 18, 2014 at 07:36:37PM +, Serge Hallyn wrote:
> If a syscall is listed which is not resolvable, continue. This allows
> us to keep a more complete list of syscalls in a global seccomp policy
> without having to worry about older kernels not supporting the newer
> syscalls.
>
> Sig
On Wed, Jun 18, 2014 at 08:09:30PM +, Serge Hallyn wrote:
> Quoting Stéphane Graber (stgra...@ubuntu.com):
> > On Wed, Jun 18, 2014 at 07:39:07PM +, Serge Hallyn wrote:
> > > Blacklist module loading, kexec, and open_by_handle_at (the cause of the
> > > not-docker-specific dockerinit mounts
Quoting Stéphane Graber (stgra...@ubuntu.com):
> On Wed, Jun 18, 2014 at 07:39:07PM +, Serge Hallyn wrote:
> > Blacklist module loading, kexec, and open_by_handle_at (the cause of the
> > not-docker-specific dockerinit mounts namespace escape).
> >
> > Note this *should* be safe for use by all
On Wed, Jun 18, 2014 at 07:39:07PM +, Serge Hallyn wrote:
> Blacklist module loading, kexec, and open_by_handle_at (the cause of the
> not-docker-specific dockerinit mounts namespace escape).
>
> Note this *should* be safe for use by all other distros as well. I'm keeping
> the patch small he
Blacklist module loading, kexec, and open_by_handle_at (the cause of the
not-docker-specific dockerinit mounts namespace escape).
Note this *should* be safe for use by all other distros as well. I'm keeping
the patch small here for review's sake, but if acked then we should also add
it to all oth
Updated lxc-opensuse for common configuration changes.
Updated the lxc-opensuse template for the changes for the common
configuration used by the download template. Changed the default
network mode in the container to dhcp.
Signed-off-by: Michael H. Warfield
---
config/templates/Makefile.am
If a syscall is listed which is not resolvable, continue. This allows
us to keep a more complete list of syscalls in a global seccomp policy
without having to worry about older kernels not supporting the newer
syscalls.
Signed-off-by: Serge Hallyn
---
src/lxc/seccomp.c | 6 --
1 file change
Just fixing lxc-devel's e-mail address, it turns out that e-mails work
better when you don't forget the tld :)
So, lxc-devel subscribers, see below:
On Wed, Jun 18, 2014 at 01:41:19PM -0400, Stéphane Graber wrote:
> TL;DR: As we've said a few times already, privileged containers
> shouldn't be co
On Sat, 2014-06-14 at 20:12 +0200, Johannes Kastl wrote:
> On 14.06.2014 15:58 Michael H. Warfield wrote:
> > I assume you mean the LXC upstream, meaning the lxc.spec.in file we
> > have in under our source control as opposed to the one Fedora uses
> > in their project. So why not submit those ch
29 matches
Mail list logo
