Skip to content
Commits on May 17, 2016
  1. Merge pull request #11 from konsolebox/add_long_options

    Add long options --new-user-ns, --new-network-ns, and --env.
    committed May 17, 2016
  2. @konsolebox
  3. man: fix -N list item

    committed May 17, 2016
Commits on May 3, 2016
  1. Merge pull request #9 from konsolebox/add_pidfile_option

    Add -p/--pidfile option.
    committed May 3, 2016
  2. @konsolebox

    Add -p/--pidfile option.

    This makes jchroot write the PID of the child process to a file.
    konsolebox committed May 3, 2016
Commits on Sep 1, 2015
  1. @lawl

    Fix undefined behaviour, free() incremented pointer

    We shouldn't free() template since the pointer won't match the allocation anymore. This is undefined behaviour. So we increment a copy of the pointer and then free() the original one.
    
    Editing this from the web here, please double check if it compiles correctly :)
    lawl committed with Sep 1, 2015
Commits on Aug 31, 2015
  1. Merge pull request #7 from lawl/patch-1

    close pipe after it's been used
    committed Aug 31, 2015
  2. @lawl

    close pipe after it's been used

    The pipe between parent and child should be closed. Additionally unshare CLONE_FILES as we don't need shared file descriptors anymore, and these could worst case be used to break out of the chroot.
    lawl committed Aug 31, 2015
Commits on May 8, 2015
  1. Merge pull request #6 from konsolebox/add_e_option

    Add -e option for setting environment variables using putenv().
    committed May 8, 2015
  2. @konsolebox
Commits on Apr 13, 2015
  1. Merge pull request #3 from jhg/master

    Add call to PR_SET_NO_NEW_PRIVS after of drop privileges.
    committed Apr 13, 2015
  2. @jhg
Commits on Apr 12, 2015
  1. @jhg
Commits on Apr 4, 2015
  1. Merge pull request #2 from Hypsurus/master

    _BSD_SOURCE replaced with _DEFAULT_SOURCE
    committed Apr 4, 2015
  2. @Hypsurus
  3. setuid: don't fail when setgroups fail with user namespaces

    This is expected to fail with recent kernels:
     https://lwn.net/Articles/626665/
    committed Apr 4, 2015
Commits on Apr 3, 2015
  1. chroot: use pivot_root instead of chroot

    This hardens a bit our use of chroot, preventing a process to escape
    using double chroot. However, other attacks are still possible.
    
    Closes #1.
    committed Apr 4, 2015
Commits on Dec 8, 2014
  1. Add possibility to get a new network namespace.

    This allows one to get a chroot without network access.
    committed Dec 8, 2014
  2. man: fix a typo

    committed Dec 8, 2014
Commits on Jul 2, 2013
  1. Add possibility to use user namespace.

    This essentially allows one to run `jchroot` without being root.
    committed Jul 2, 2013
Commits on Sep 6, 2011
Commits on Aug 19, 2011
Commits on Aug 18, 2011
Commits on Aug 17, 2011
  1. Provide a manual page.

    committed Aug 17, 2011
  2. Add links in documentation

    committed Aug 17, 2011
Commits on Aug 16, 2011
Something went wrong with that request. Please try again.