2016-06-03 | Etienne CHAMPETIER | jail: don't always CLONE_NEWUTS Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2016-06-01 | Etienne CHAMPETIER | jail: ensure mounts are not MS_SHARED to avoid pivot_root... Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2016-06-01 | Etienne CHAMPETIER | jail: improve some logs Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2016-06-01 | Etienne CHAMPETIER | jail: don't include capabilities config (-C) inside... Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2016-06-01 | Etienne CHAMPETIER | jail: call build_envp() just before execve() Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2016-06-01 | Etienne CHAMPETIER | jail: regroup add_path_and_deps() calls Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2016-06-01 | Etienne CHAMPETIER | jail: call chdir(/) after pivot_root() Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-12-11 | Etienne CHAMPETIER | instance, ujail: wire hostname (-h) option Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-12-11 | Etienne CHAMPETIER | ujail: split name (-n) and hostname (-h) options Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-12-11 | Etienne CHAMPETIER | ujail: add no_new_privs (-c) option Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-12-11 | Etienne CHAMPETIER | instance, ujail: wire remount / read only option (-o) Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-12-11 | Etienne CHAMPETIER | instance, ujail: remove "-P <path>" option Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-12-11 | Etienne CHAMPETIER | ujail: add O_CLOEXEC flag to open() call Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-12-11 | Etienne CHAMPETIER | ujail: fixup code style // -> /* */ Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: add ELF interpreter (DT_INTERP) to the jail Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: automatically add script (#!) interpreter Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: rework fs jail part Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: DT_STRTAB uses d_ptr in d_un union (not d_val) Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: remove some debug/dev hack Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: fixup code style: "func()" -> "func(void)" Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: add init_library_search() Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: use PATH_MAX for path related buffers Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: search libs in /lib before /lib64 Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: remove "#include log.h" from elf.h Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: add <stdio.h> and <syslog.h> to seccomp.h Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: add <stdio.h> to log.h Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: put #include guard macro in all *.h Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: use more const in elf.* Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: stop using extern in elf.h Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: don't pass unused arg in clone call Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-11-27 | Etienne CHAMPETIER | ujail: don't add non existant library_path Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-08 | Etienne CHAMPETIER | jail: Add MS_NODEV MS_NOEXEC MS_NOSUID mount options... Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-07 | Etienne CHAMPETIER | jail: allow to not use namespaces Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-07 | Etienne CHAMPETIER | jail: cleanup include Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-07 | Etienne CHAMPETIER | jail: add capabilities support Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-03 | Etienne CHAMPETIER | Add MS_NODEV MS_NOEXEC MS_NOSUID mount options where... Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-03 | Etienne CHAMPETIER | jail: reworks & cleanups Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-03 | Etienne CHAMPETIER | jail, seccomp: remove useless root check Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-03 | Etienne CHAMPETIER | jail, seccomp: fix typo/improve log prefix Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-10-03 | Etienne CHAMPETIER | add UTRACE_SUPPORT build option Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |
2015-07-24 | Etienne CHAMPETIER | jail: fix jail root folder permissions Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> |
commit | commitdiff | tree |