Robert Swiecki
|
58d6b3075c
|
Move struct nsjail_t definition to nsjail.h and leave only macros in common.h
|
2017-10-18 14:27:34 +02:00 |
|
Robert Swiecki
|
fe234f4830
|
move VALSTR_STRUCT to common.h
|
2017-10-08 23:06:40 +02:00 |
|
Robert Swiecki
|
d0afb19431
|
allow for indentation of more structures (now with clang-format)
|
2017-10-08 23:03:02 +02:00 |
|
Robert Swiecki
|
74b43346bd
|
make indent
|
2017-10-08 23:00:45 +02:00 |
|
Robert Swiecki
|
414e999787
|
switch indent to clang-format completely
|
2017-10-08 22:52:52 +02:00 |
|
Robert Swiecki
|
59657be88d
|
cmdline: correct description for rlimit_ values
|
2017-09-29 14:46:03 +02:00 |
|
Robert Swiecki
|
c4a57d592d
|
Make it compile (maybe) under uClibc
|
2017-09-29 13:07:42 +02:00 |
|
Robert Swiecki
|
6c1205badc
|
util: mroe debugging
|
2017-07-06 14:37:10 +02:00 |
|
Robert Swiecki
|
5a68595a5b
|
mount: allow for non-mandatory symlinks
mount: allow for non-mandatory symlinks
|
2017-07-02 03:40:47 +02:00 |
|
Robert Swiecki
|
27759b1d2e
|
util: missing includes
|
2017-06-21 19:21:18 +02:00 |
|
Robert Swiecki
|
d259ee4f6d
|
mount: more extensive search for suitable root dir
|
2017-06-21 19:18:02 +02:00 |
|
Robert Swiecki
|
86b71f3d1a
|
util: implement utilTimeToStr
|
2017-06-21 18:46:19 +02:00 |
|
Robert Swiecki
|
fa2796fe65
|
util: Implement utilSigName()
|
2017-06-20 00:16:38 +02:00 |
|
Robert Swiecki
|
0e7393cccf
|
cmdline: implement affinity setting, to limit jailed process to n max cpus
|
2017-06-19 17:01:50 +02:00 |
|
Robert Swiecki
|
0b30240e2e
|
util: remove utilStrDupLen as it was unused
|
2017-05-28 18:59:50 +02:00 |
|
Robert Swiecki
|
7b2fc9cdac
|
add configs/firefox-with-cloned-net.cfg
|
2017-05-28 16:56:16 +02:00 |
|
Robert Swiecki
|
f0cb243a89
|
config: allow skipping arguments in mount points
|
2017-05-27 15:01:34 +02:00 |
|
Robert Swiecki
|
b5e37a6c4a
|
config: support mounts
|
2017-05-27 01:16:12 +02:00 |
|
Robert Swiecki
|
4eaa6cc9d3
|
Rewrite uid mapping system
|
2017-05-26 23:07:47 +02:00 |
|
Robert Swiecki
|
46526d0873
|
config: basic parsing
|
2017-05-26 02:24:36 +02:00 |
|
Robert Swiecki
|
b73a63fe35
|
Make open-at interrupt safe
|
2017-02-14 22:14:08 +01:00 |
|
Robert Swiecki
|
4a154733e0
|
Allow to specify multiple uid/gid maps
|
2017-02-08 00:36:32 +01:00 |
|
Jagger
|
ee7de33531
|
Use O_CLOEXEC when possible to avoid leaking FDs
|
2016-09-10 03:20:32 +02:00 |
|
Jagger
|
0763611ad8
|
The dir must start with '/'
|
2016-08-18 21:04:25 +02:00 |
|
Robert Swiecki
|
d96f730631
|
Recursive dir creation
|
2016-08-18 18:59:06 +02:00 |
|
Robert Swiecki
|
1dc33c7bcf
|
Remove defer{} calls
|
2016-07-29 15:38:22 +02:00 |
|
Jagger
|
e3a351b335
|
More memory cgroup controls
|
2016-06-19 13:54:36 +02:00 |
|
Jagger
|
d4912847ed
|
Make it compile with clang
|
2016-06-12 13:07:40 +02:00 |
|
Robert Swiecki
|
6e25d47eba
|
Cover interruptible syscalls with TEMP_FAILURE_RETRY
|
2016-05-09 15:16:26 +02:00 |
|
Jagger
|
73c847fc98
|
Print /proc/<pid>/syscall upon SIGSYS
|
2016-05-08 03:09:43 +02:00 |
|
Jagger
|
57a523dd08
|
Use defer {} instead of DEFER()
|
2016-04-23 04:22:31 +02:00 |
|
Jagger
|
4ae2c027ac
|
Cleaner impl. of DEFER
|
2016-03-10 22:56:26 +01:00 |
|
Robert Swiecki
|
dcf446d7f3
|
More defer-ization
|
2016-03-08 18:37:07 +01:00 |
|
Jagger
|
8d641169e3
|
Initialize user/group maps from the parent process
|
2016-02-28 02:34:43 +01:00 |
|
Robert Swiecki
|
19de49b375
|
Missing util.*
|
2016-01-20 17:55:40 +01:00 |
|