woj/nsjail
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
495 Commits 2 Branches 0 Tags 1.5 MiB
4f1a6aead2
Commit Graph

495 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Robert Swiecki
dc81a3fe49 readme 2017-05-06 22:37:01 +02:00
Robert Swiecki
b98511f991 readme 2017-05-06 22:34:33 +02:00
Robert Swiecki
d1b3adfc40 readme 2017-05-06 22:33:13 +02:00
Robert Swiecki
ec765851f4 apply --rw to /proc as well 2017-04-22 23:54:33 +02:00
robertswiecki
44d4d47d0d Merge pull request #13 from disconnect3d/add_dockerfile 
Add Dockerfile
 2017-04-21 15:46:10 +02:00
disconnect3d
2162b79fb1 Add Dockerfile 2017-04-21 15:35:50 +02:00
Robert Swiecki
cc5d4b65c9 cgroups: support for PIDs 2017-04-20 17:48:20 +02:00
robertswiecki
730991baff Merge pull request #12 from happyCoder92/master 
Update kafel to newest version
 2017-03-08 18:01:49 +01:00
Wiktor Garbacz
11112750c1 Update kafel to newest version 2017-03-08 15:32:04 +01:00
robertswiecki
1b06c6f685 Merge pull request #11 from sbc100/exit_code_on_bad_option 
Exit with non-zero status on bad command line option
 2017-02-16 02:44:50 +01:00
Sam Clegg
74010d0c45 Exit with non-zero status on bad command line option 2017-02-15 17:23:55 -08:00
Robert Swiecki
c4c0d24e7c Print out logs no matter what the setting of -v/-q 2017-02-15 18:59:02 +01:00
Robert Swiecki
b73a63fe35 Make open-at interrupt safe 2017-02-14 22:14:08 +01:00
Robert Swiecki
9a4dbc1146 log: logging globals should not be 'per-thread' 2017-02-14 21:55:42 +01:00
Robert Swiecki
478d2b3789 cmdline: provide both -v/verbose and -q/quiet for logging 2017-02-14 21:54:02 +01:00
Robert Swiecki
e38be346dc Make it possible to build w/o kafel and nl3 2017-02-13 22:59:24 +01:00
Robert Swiecki
5b07ba1d32 contain: capabilities 2017-02-12 16:54:39 +01:00
Robert Swiecki
341832d755 Duplicate logging fd, so it can be used from child process 2017-02-11 20:33:54 +01:00
Robert Swiecki
a1c0cbacbd mount: log 2017-02-10 02:25:50 +01:00
Robert Swiecki
57f9a0f9db Invalid count 2 -> 1 2017-02-10 02:24:35 +01:00
Robert Swiecki
d5a2130164 newuidmap: partial revert 2017-02-09 13:37:58 +01:00
Robert Swiecki
21982290e5 newuidmap: missing pid 2017-02-09 13:37:21 +01:00
Robert Swiecki
719585ee5a common: good types for uids 2017-02-08 23:21:03 +01:00
Robert Swiecki
9f832aa35a Uid/Gid fix 2017-02-08 00:42:23 +01:00
Robert Swiecki
4a154733e0 Allow to specify multiple uid/gid maps 2017-02-08 00:36:32 +01:00
Robert Swiecki
f7b9fede69 More debug logging in user.c 2017-02-07 18:40:36 +01:00
Robert Swiecki
3b83267cfd Init user-ns setresuid/setresgid before initializing other NSes 2017-02-07 18:31:50 +01:00
Robert Swiecki
a0cc72aa5c cmdline: typo 2017-01-28 14:25:09 +01:00
Robert Swiecki
7917aae84d keep_caps: make effective caps eq to permitted 2017-01-23 12:02:48 +01:00
Robert Swiecki
20745a455d Support for ambient capabilities 2017-01-21 00:15:03 +01:00
Robert Swiecki
f990955d9e seccomp syscall printing: various formats of /proc/<pid>/syscall 2017-01-18 22:32:27 +01:00
Robert Swiecki
97737f451e Readme: TOC 2017-01-15 22:17:14 +01:00
Robert Swiecki
4d5750cca8 Merge branch 'master' of ssh://github.com/google/nsjail 2017-01-15 22:01:04 +01:00
Robert Swiecki
c2e369beb1 Readme: example for kafel/seccomp-bpf 2017-01-15 22:00:55 +01:00
Robert Swiecki
bbf743791f Remove bpf-helper as it's not needed since kafel/ 2017-01-09 12:49:30 +01:00
Robert Swiecki
4b988e4f21 cmdline: usage 2016-12-10 20:47:20 +01:00
Robert Swiecki
049eab950e cmdline: usage 2016-12-10 17:17:01 +01:00
Robert Swiecki
8bd093df2f cmdline: use of --chroot 2016-12-10 17:11:55 +01:00
Robert Swiecki
ae9c1bad9a subproc: logging 2016-11-20 23:55:44 +01:00
Robert Swiecki
abe290431e net: log msg 2016-11-20 23:41:05 +01:00
Robert Swiecki
364273afd7 Makefile: Make it possible to disable kafel and libnl3 from envvar 2016-11-20 23:37:38 +01:00
Robert Swiecki
78ccfa863a setjmp/longjmp: don't use stack-based jmp_buf, use TLS one 2016-11-03 03:53:52 +01:00
Robert Swiecki
9a3c53e9a9 Print time with INFO 2016-10-21 16:49:50 +02:00
Robert Swiecki
cf71ab14f6 Make it compile w/o libnl3 2016-10-18 13:54:27 +02:00
Robert Swiecki
4dd5c38f91 Use subprocClone instead of syscall(__NR_clone) 2016-10-18 09:47:15 +02:00
Robert Swiecki
37a5d15fa8 Comment type + make indent 2016-10-17 22:53:31 +02:00
Robert Swiecki
c9847562dd Less use of USE_KAFEL 2016-10-17 18:17:08 +02:00
Robert Swiecki
238df2ed87 Missing USE_KAFEL defines 2016-10-17 18:09:05 +02:00
Robert Swiecki
d0a3edd67f log: don't print function name with INFO logs 2016-10-17 15:49:20 +02:00
Robert Swiecki
b1ca8dd1b5 subproc: comments 2016-10-17 15:47:50 +02:00