[lxc/lxc] 27f69d: cgroups: use userns_exec_full() during cgroup removal
1 visualizzazione
Passa al primo messaggio da leggere
Christian Brauner
24 nov 2022, 08:02:3224/11/22
a lxc-...@lists.linuxcontainers.org
Branch: refs/heads/master
Home: https://github.com/lxc/lxc
Commit: 27f69d45bf82abadcbfe7faf3c6ba9b98d901097
https://github.com/lxc/lxc/commit/27f69d45bf82abadcbfe7faf3c6ba9b98d901097
Author: Christian Brauner <bra...@kernel.org>
Date: 2022-11-24 (Thu, 24 Nov 2022)
Changed paths:
M src/lxc/cgroups/cgfsng.c
Log Message:
-----------
cgroups: use userns_exec_full() during cgroup removal
When removing cgroups we can't always use the minimal idmap if the user has
specified a specific map for the container instead of just a simple one.
Execute cgroup removal under the full map.
Fixes: https://github.com/lxc/lxd/issues/11108
Signed-off-by: Christian Brauner (Microsoft) <christia...@ubuntu.com>
Commit: 68020412c2000f568a17a43575a3568086ba0e98
https://github.com/lxc/lxc/commit/68020412c2000f568a17a43575a3568086ba0e98
Author: Christian Brauner <bra...@kernel.org>
Date: 2022-11-24 (Thu, 24 Nov 2022)
Changed paths:
M src/lxc/cgroups/cgfsng.c
Log Message:
-----------
cgroups: only allocate user namespace if we have to
If the monitor runs as root we can assume it's able to remove the cgroups it
created when the container started.
Fixes: https://github.com/lxc/lxd/issues/11108
Signed-off-by: Christian Brauner (Microsoft) <christia...@ubuntu.com>
Commit: 07670dacddaf944e9d8d8b2b89bc4f85b10dd88b
https://github.com/lxc/lxc/commit/07670dacddaf944e9d8d8b2b89bc4f85b10dd88b
Author: Christian Brauner <chri...@brauner.io>
Date: 2022-11-24 (Thu, 24 Nov 2022)
Changed paths:
M src/lxc/cgroups/cgfsng.c
Log Message:
-----------
Merge pull request #4231 from brauner/cgroup.removal
cgroups: fix cgroup removal
Compare: https://github.com/lxc/lxc/compare/fa56702e6c47...07670dacddaf
Home: https://github.com/lxc/lxc
Commit: 27f69d45bf82abadcbfe7faf3c6ba9b98d901097
https://github.com/lxc/lxc/commit/27f69d45bf82abadcbfe7faf3c6ba9b98d901097
Author: Christian Brauner <bra...@kernel.org>
Date: 2022-11-24 (Thu, 24 Nov 2022)
Changed paths:
M src/lxc/cgroups/cgfsng.c
Log Message:
-----------
cgroups: use userns_exec_full() during cgroup removal
When removing cgroups we can't always use the minimal idmap if the user has
specified a specific map for the container instead of just a simple one.
Execute cgroup removal under the full map.
Fixes: https://github.com/lxc/lxd/issues/11108
Signed-off-by: Christian Brauner (Microsoft) <christia...@ubuntu.com>
Commit: 68020412c2000f568a17a43575a3568086ba0e98
https://github.com/lxc/lxc/commit/68020412c2000f568a17a43575a3568086ba0e98
Author: Christian Brauner <bra...@kernel.org>
Date: 2022-11-24 (Thu, 24 Nov 2022)
Changed paths:
M src/lxc/cgroups/cgfsng.c
Log Message:
-----------
cgroups: only allocate user namespace if we have to
If the monitor runs as root we can assume it's able to remove the cgroups it
created when the container started.
Fixes: https://github.com/lxc/lxd/issues/11108
Signed-off-by: Christian Brauner (Microsoft) <christia...@ubuntu.com>
Commit: 07670dacddaf944e9d8d8b2b89bc4f85b10dd88b
https://github.com/lxc/lxc/commit/07670dacddaf944e9d8d8b2b89bc4f85b10dd88b
Author: Christian Brauner <chri...@brauner.io>
Date: 2022-11-24 (Thu, 24 Nov 2022)
Changed paths:
M src/lxc/cgroups/cgfsng.c
Log Message:
-----------
Merge pull request #4231 from brauner/cgroup.removal
cgroups: fix cgroup removal
Compare: https://github.com/lxc/lxc/compare/fa56702e6c47...07670dacddaf
Rispondi a tutti
Rispondi all'autore
Inoltra
0 nuovi messaggi