Permalink
Commits on Jan 13, 2017
  1. Merge pull request #1249 from datawolf/small-refactor

    small refactor
    hqhq committed on GitHub Jan 13, 2017
Commits on Jan 12, 2017
  1. Merge pull request #1271 from hqhq/bump_golang

    Bump golang to 1.7.4
    mrunalp committed on GitHub Jan 12, 2017
  2. Bump golang to 1.7.4

    Signed-off-by: Qiang Huang <h.huangqiang@huawei.com>
    hqhq committed Jan 12, 2017
Commits on Jan 11, 2017
  1. Merge pull request #1268 from hqhq/use_source_mp

    Do not create cgroup dir name from combining subsystems
    mrunalp committed on GitHub Jan 11, 2017
  2. Set init processes as non-dumpable

    This sets the init processes that join and setup the container's
    namespaces as non-dumpable before they setns to the container's pid (or
    any other ) namespace.
    
    This settings is automatically reset to the default after the Exec in
    the container so that it does not change functionality for the
    applications that are running inside, just our init processes.
    
    This prevents parent processes, the pid 1 of the container, to ptrace
    the init process before it drops caps and other sets LSMs.
    
    This patch also ensures that the stateDirFD being used is still closed
    prior to exec, even though it is set as O_CLOEXEC, because of the order
    in the kernel.
    
    https://github.com/torvalds/linux/blob/v4.9/fs/exec.c#L1290-L1318
    
    The order during the exec syscall is that the process is set back to
    dumpable before O_CLOEXEC are processed.
    
    Signed-off-by: Michael Crosby <crosbymichael@gmail.com>
    crosbymichael committed Dec 7, 2016
  3. Merge pull request #1260 from coolljt0725/remove_redundant

    Cleanup: remove redundant code
    dqminh committed on GitHub Jan 11, 2017
  4. Do not create cgroup dir name from combining subsystems

    On some systems, when we mount some cgroup subsystems into
    a same mountpoint, the name sequence of mount options and
    cgroup directory name can not be the same.
    
    For example, the mount option is cpuacct,cpu, but
    mountpoint name is /sys/fs/cgroup/cpu,cpuacct. In current
    runc, we set mount destination name from combining
    subsystems, which comes from mount option from
    /proc/self/mountinfo, so in my case the name would be
    /sys/fs/cgroup/cpuacct,cpu, which is differernt from
    host, and will break some applications.
    
    Fix it by using directory name from host mountpoint.
    
    Signed-off-by: Qiang Huang <h.huangqiang@huawei.com>
    hqhq committed Jan 11, 2017
Commits on Jan 10, 2017
  1. Merge pull request #1265 from WeiZhang555/fix-exec-regression

    Fix regression of exec command
    mrunalp committed on GitHub Jan 10, 2017
  2. Fix regression of exec command

    Set minimal required args to 1 for `exec` command to roll back to
    previous behavior, also modify help message a little bit.
    
    Signed-off-by: Zhang Wei <zhangwei555@huawei.com>
    WeiZhang555 committed Jan 10, 2017
  3. Merge pull request #1110 from avagin/cpt-in-userns

    checkpoint: handle config.Devices and config.MaskPaths
    hqhq committed on GitHub Jan 10, 2017
Commits on Jan 9, 2017
  1. Merge pull request #1248 from datawolf/fix-the-outdated-comment

    Fix the outdated comment for Error interface
    mrunalp committed on GitHub Jan 9, 2017
  2. Merge pull request #1251 from datawolf/update-cgroup-comment

    cgroups: update the comments
    mrunalp committed on GitHub Jan 9, 2017
  3. Merge pull request #1252 from FengtuWang/remove-i

    remove `-i` option to avoid failure of jenkins in non-interactive mode.
    crosbymichael committed on GitHub Jan 9, 2017
  4. Merge pull request #1254 from hqhq/fix_go_vet

    Fix go_vet errors
    crosbymichael committed on GitHub Jan 9, 2017
  5. Merge pull request #1255 from hqhq/fix_typo

    Fix typos
    crosbymichael committed on GitHub Jan 9, 2017
  6. Merge pull request #1257 from mrunalp/fix_warnings

    Simplify error handling on function return
    crosbymichael committed on GitHub Jan 9, 2017
  7. Merge pull request #1258 from mrunalp/remove_dead_code

    Remove unused code and unnecessary conversion
    crosbymichael committed on GitHub Jan 9, 2017
  8. Merge pull request #1259 from mrunalp/fix_err_chk_shadow

    Fix error shadow and error check warnings
    crosbymichael committed on GitHub Jan 9, 2017
  9. Merge pull request #1232 from Mashimiao/fix-makefile-add-pages-cleanup

    Makefile: add manpage cleanup
    crosbymichael committed on GitHub Jan 9, 2017
  10. Merge pull request #1196 from hqhq/fix_cgroup_leftover

    Fix leftover cgroup directory issue
    crosbymichael committed on GitHub Jan 9, 2017
  11. Cleanup: remove redundant code

    Signed-off-by: Lei Jitang <leijitang@huawei.com>
    coolljt0725 committed Jan 9, 2017
Commits on Jan 7, 2017
  1. Fix error shadow and error check warnings

    Signed-off-by: Mrunal Patel <mrunalp@gmail.com>
    mrunalp committed Jan 7, 2017
  2. Remove unused code and unnecessary conversion

    Signed-off-by: Mrunal Patel <mrunalp@gmail.com>
    mrunalp committed Jan 7, 2017
  3. Simplify loop to a simple array append

    Signed-off-by: Mrunal Patel <mrunalp@gmail.com>
    mrunalp committed Jan 7, 2017
Commits on Jan 6, 2017
  1. Simplify error handling on function return

    Signed-off-by: Mrunal Patel <mrunalp@gmail.com>
    mrunalp committed Jan 6, 2017
  2. Fix typos

    Found by:
    https://goreportcard.com/report/github.com/opencontainers/runc#misspell
    
    Signed-off-by: Qiang Huang <h.huangqiang@huawei.com>
    hqhq committed Jan 6, 2017
  3. Fix go_vet errors

    runc/libcontainer/configs/namespaces_syscall_unsupported.go
    Line 7: error: unreachable code (vet)
    Line 14: error: unreachable code (vet)
    
    Signed-off-by: Qiang Huang <h.huangqiang@huawei.com>
    hqhq committed Jan 6, 2017
Commits on Jan 5, 2017
  1. Merge pull request #1253 from xlgao-zju/add-goreport-badge

    Add badge for Go Report Card
    dqminh committed on GitHub Jan 5, 2017
Commits on Jan 4, 2017
  1. Add badge for Go Report Card

    Signed-off-by: Xianglin Gao <xlgao@zju.edu.cn>
    xlgao-zju committed Jan 4, 2017
  2. remove `-i` option to avoid failure of jenkins in non-interactive mode.

    Signed-off-by: Fengtu Wang <wangfengtu@huawei.com>
    FengtuWang committed Jan 4, 2017
  3. Merge pull request #1250 from caniszczyk/add-travis-badge

    Add Travis CI badge to README
    hqhq committed on GitHub Jan 4, 2017
  4. small refactor

    Signed-off-by: Wang Long <long.wanglong@huawei.com>
    datawolf committed Jan 3, 2017
  5. Merge pull request #1243 from cyphar/govet-cleanup

    *: fix go-vet failures
    mrunalp committed on GitHub Jan 4, 2017
  6. Add Travis CI badge to README

    https://travis-ci.org/opencontainers/runc
    
    Signed-off-by: Chris Aniszczyk <caniszczyk@gmail.com>
    caniszczyk committed Jan 3, 2017
Commits on Jan 3, 2017
  1. *: fix go-vet failures

    Previously, we would get failures with go-vet with test files.
    
    % go vet ./...
    libcontainer/integration/exec_test.go:42: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/exec_test.go:43: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/exec_test.go:184: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/exec_test.go:185: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/exec_test.go:1568: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/exec_test.go:1569: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/exec_test.go:1600: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/exec_test.go:1601: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/execin_test.go:92: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/execin_test.go:93: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/execin_test.go:506: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    libcontainer/integration/execin_test.go:507: github.com/opencontainers/runc/libcontainer/configs.IDMap composite literal uses unkeyed fields
    
    Signed-off-by: Aleksa Sarai <asarai@suse.de>
    cyphar committed Dec 23, 2016