jasder
/
runc
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
3,484 Commits 5 Branches 25 Tags 17 MiB
Commit Graph

3484 Commits

Author SHA1 Message Date
Christy Perez 9ed7e9b176 shfmt'ing files 
Signed-off-by: Christy Perez <christy@linux.vnet.ibm.com>
 2017-05-24 16:43:08 -05:00
Christy Perez 187d2d85be Moving the rest of runc to x/sys/unix 
Signed-off-by: Christy Perez <christy@linux.vnet.ibm.com>
 2017-05-22 17:36:02 -05:00
Christy Perez 3d7cb4293c Move libcontainer to x/sys/unix 
Since syscall is outdated and broken for some architectures,
use x/sys/unix instead.

There are still some dependencies on the syscall package that will
remain in syscall for the forseeable future:

Errno
Signal
SysProcAttr

Additionally:
- os still uses syscall, so it needs to be kept for anything
returning *os.ProcessState, such as process.Wait.

Signed-off-by: Christy Perez <christy@linux.vnet.ibm.com>
 2017-05-22 17:35:20 -05:00
Justin Cormack 7e3934a339 Allow specification of general Go build flags and ldflags 
This is needed if you need to customise the build config for a given platform.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2017-05-19 11:24:03 +01:00
Wentao Zhang 09c1f5c055 Fix setup cgroup before prestart hook 
* User Case:
User could use prestart hook to add block devices to container. so the
hook should have a way to set the permissions of the devices.

Just move cgroup config operation before prestart hook will work.

Signed-off-by: Wentao Zhang <zhangwentao234@huawei.com>
 2017-05-19 17:53:43 +08:00
Mrunal Patel 639454475c Merge pull request #1355 from avagin/cr-console 
Dump and restore containers with external terminals
 2017-05-18 11:22:52 -07:00
Michael Crosby 9a827e90d2 Merge pull request #1451 from runcom/force-delete-not-exists 
Ignore error when force deleting a non-existing container
 2017-05-18 09:44:26 -07:00
Antonio Murdaca d1a743674a
Ignore error when force deleting a non-existing container 
This patch mimics the behavior of "rm -rf" so that if a container
doesn't exist and you force delete it, it won't error out.

Signed-off-by: Antonio Murdaca <runcom@redhat.com>
 2017-05-16 22:23:00 +02:00
Valentin Rothberg 77421139ab libcontainer/user: add supplementary groups only for non-numeric users 
Signed-off-by: Valentin Rothberg <vrothberg@suse.com>
 2017-05-16 13:54:27 +02:00
Michael Crosby c1287819af Merge pull request #1447 from justincormack/unix-linux 
Clean up unix vs linux usage
 2017-05-12 10:25:45 -07:00
Justin Cormack 4c67360296 Clean up unix vs linux usage 
FreeBSD does not support cgroups or namespaces, which the code suggested, and is not supported
in runc anyway right now. So clean up the file naming to use `_linux` where appropriate.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
 2017-05-12 17:22:09 +01:00
Qiang Huang 21ef2e3d12 Merge pull request #1410 from chchliang/statustest 
add createdState and runningState status testcase
 2017-05-12 16:17:17 +08:00
Michael Crosby 2daa11574b Merge pull request #1438 from hqhq/fix_rootfs_comments 
Fix comments about when to pivot_root
 2017-05-05 20:15:49 -07:00
Qiang Huang 96e0df7633 Fix comments about when to pivot_root 
Signed-off-by: Qiang Huang <h.huangqiang@huawei.com>
 2017-05-06 07:59:03 +08:00
Daniel, Dao Quang Minh d37c558a43 Merge pull request #1433 from avagin/wait_for_container 
tests: don't call wait_for_container after synchronous operations
 2017-05-05 10:40:20 -05:00
Daniel, Dao Quang Minh 7ffea268d3 Merge pull request #1435 from harche/id_regex 
Issue #1429 : Removing check for id string length
 2017-05-04 15:45:02 -05:00
Michael Crosby c6fdde7cd1 Merge pull request #1436 from sak0/dev 
update man page for `runc  update`
 2017-05-04 10:18:36 -07:00
CuiHaozhi da49d3a74c update manpages for `runc update` 
Signed-off-by: CuiHaozhi <cuihz@wise2c.com>
 2017-05-04 07:41:08 -04:00
Harshal Patil 700c74cb7e Issue #1429 : Removing check for id string length 
Signed-off-by: Harshal Patil <harshal.patil@in.ibm.com>
 2017-05-04 09:21:29 +05:30
Mrunal Patel 992a5be178 Merge pull request #1428 from harche/dedupe_ns_array 
Remove redundant declaration of namespace slice
 2017-05-03 08:31:27 -07:00
Andrei Vagin a9e15e7e07 criu: check that stdout, stdin pipes are restore correctly 
Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-03 00:55:24 +03:00
Andrei Vagin abd0515816 tests: don't call wait_for_container after synchronous operations 
Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-02 21:48:07 +03:00
Harshal Patil 22953c122f Remove redundant declaraion of namespace slice 
Signed-off-by: Harshal Patil <harshal.patil@in.ibm.com>
 2017-05-02 10:04:57 +05:30
Andrei Vagin 459a17b838 test: check C/R for a container with an external terminal 
We have two test cases with and without pre-dump. Terminals and
pre-dump features are orthogonal, so we can modify one of these test cases.

Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-02 04:48:47 +03:00
Andrei Vagin 73258813d3 cr: set a freezer cgroup for criu 
A freezer cgroup allows to dump processes faster.

If a user wants to checkpoint a container and its storage,
he has to pause a container, but in this case we need to pass
a path to its freezer cgroup to "criu dump".

Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-02 04:48:47 +03:00
Andrei Vagin fe03957bca Dockerfile: use CRIU 2.12 for tests 
Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-02 04:48:47 +03:00
Andrei Vagin 1c43d091a1 checkpoint: add support for containers with terminals 
CRIU was extended to report about orphaned master pty-s via RPC.

Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-02 04:48:47 +03:00
Andrei Vagin a4fcbfb704 Prepare startContainer() to have more action 
Currently startContainer() is used to create and to run a container.
In the next patch it will be used to restore a container.

Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-01 21:55:57 +03:00
Andrei Vagin 1a8b0aced5 Update criurpc 
Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-01 21:55:57 +03:00
Andrei Vagin ffeedc4c62 Update github.com/golang/protobuf 
Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-01 21:55:57 +03:00
Andrei Vagin f8ca1926c4 libcontainer: check cpt/rst for containers with userns 
Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-01 21:45:23 +03:00
Andrei Vagin d307e85dbb Print a criu version in a error message 
Signed-off-by: Andrei Vagin <avagin@virtuozzo.com>
 2017-05-01 21:45:23 +03:00
Michael Crosby efb2bc3fb0 Merge pull request #1423 from mlaventure/update-pids-limit 
Allow updating pids limit
 2017-04-28 14:26:12 -07:00
Aleksa Sarai 1dc53aa457
merge branch 'pr-1425' 
LGTMs: @mrunalp @cyphar
Closes #1425
 2017-04-29 06:25:14 +10:00
Kenfe-Mickael Laventure 1e7e276aff Allow updating container pids limit 
Signed-off-by: Kenfe-Mickael Laventure <mickael.laventure@gmail.com>
 2017-04-28 06:44:44 -07:00
Mrunal Patel c8452121d5 Merge pull request #1418 from harche/optimized_loop 
Optimizing looping over namespaces
 2017-04-27 13:15:57 -07:00
Jonh Wendell 184f094ac0 Add a rootless section to "spec" man page and command help 
Signed-off-by: Jonh Wendell <jonh.wendell@redhat.com>
 2017-04-27 10:54:33 -03:00
Harshal Patil c44d4fa6ed Optimizing looping over namespaces 
Signed-off-by: Harshal Patil <harshal.patil@in.ibm.com>
 2017-04-26 11:54:43 +05:30
Mrunal Patel b6b70e5345 Merge pull request #1408 from cyphar/vndr-cleanup-config 
vendor: clean up to be better written
 2017-04-25 14:59:14 -07:00
Qiang Huang 94cfb7955b Merge pull request #1387 from avagin/freezer 
Don't try to read freezer.state from the current directory
 2017-04-24 20:02:45 -05:00
Aleksa Sarai d9807ae420
vendor: clean up to be better written 
vndr doesn't support non-top-level imports, and in addition we really
should be using tagged releases far more than we currently are
(*especially* when it come to the OCI specs).

Signed-off-by: Aleksa Sarai <asarai@suse.de>
 2017-04-25 10:46:48 +10:00
Mrunal Patel 3568eaa6f0 Merge pull request #1412 from tpot/properties-spelling-fix 
Fix misspelling of "properties" in various places
 2017-04-24 10:05:23 -07:00
Michael Crosby e62817fefc Merge pull request #1414 from jwendell/1413 
Update examples on README to allow rootless execution
 2017-04-21 17:33:05 -07:00
Jonh Wendell d8477f9b02 Add a rootless containers section on README 
Closes #1413.

Signed-off-by: Jonh Wendell <jonh.wendell@redhat.com>
 2017-04-21 21:19:07 -03:00
Tim Potter 9458b39ca9 Fix misspelling of "properties" in various places 
Signed-off-by: Tim Potter <tpot@hpe.com>
 2017-04-21 13:29:58 +10:00
chchliang 4f0e6c4ef0 add createdState and runningState status testcase 
Signed-off-by: chchliang <chen.chuanliang@zte.com.cn>
 2017-04-19 16:28:03 +08:00
Daniel, Dao Quang Minh 9f1ef73ef9 Merge pull request #1402 from chchliang/generictest 
add testcase in generic_error_test.go
 2017-04-18 11:42:24 +01:00
chchliang a23d7c2eab add testcase in generic_error_test.go 
Signed-off-by: chchliang <chen.chuanliang@zte.com.cn>
 2017-04-18 08:56:02 +08:00
Mrunal Patel 97db1eaad9 Merge pull request #1396 from harche/cstate 
Set container state only once during start
 2017-04-17 11:32:42 -07:00
Daniel, Dao Quang Minh 13a8c5d140 Merge pull request #1365 from hqhq/use_go_selinux 
Use opencontainers/selinux package
 2017-04-15 14:22:32 +01:00