Alexander Larsson 
								
							 
						 
						
							
							
							
							
								
							
							
								83de20deb7 
								
							 
						 
						
							
							
								
								libcontainer: Use pivot_root instead of chroot  
							
							... 
							
							
							
							Instead of keeping all the old mounts in the container namespace and
just using subtree as root we pivot_root so that the actual root in
the namespace is the root we want, and then we unmount the previous
mounts.
This has multiple advantages:
* The namespace mount tree is smaller (in the kernel)
* If you break out of the chroot you could previously access the host
  filesystem. Now the host filesystem is fully invisible to the namespace.
* We get rid of all unrelated mounts from the parent namespace, which means
  we don't hog these. This is important if we later switch to MS_PRIVATE instead
  of MS_SLAVE as otherwise these mounts would be impossible to unmount from the
  parent namespace.
Docker-DCO-1.1-Signed-off-by: Alexander Larsson <alexl@redhat.com> (github: alexlarsson) 
							
						 
						
							2014-03-04 12:44:08 +01:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								7dc071dca5 
								
							 
						 
						
							
							
								
								Factor out finalize namespace  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-03-03 12:15:47 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								85696fdb67 
								
							 
						 
						
							
							
								
								Allow child process to live if daemon dies  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-27 09:33:36 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								34301be200 
								
							 
						 
						
							
							
								
								Code review updates  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-26 19:21:46 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								f8262b5748 
								
							 
						 
						
							
							
								
								Ensure that loopback devices are mounted inside the conatiner  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-26 17:21:09 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								4f6cdc6f08 
								
							 
						 
						
							
							
								
								Make network a slice to support multiple types  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-26 14:20:41 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								f85823b53d 
								
							 
						 
						
							
							
								
								Fix cross compile for make cross  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-25 15:19:13 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								2acaf7ca82 
								
							 
						 
						
							
							
								
								Move container.json and pid file into a root specific driver dir  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-25 12:41:31 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guillaume J. Charmes 
								
							 
						 
						
							
							
							
							
								
							
							
								357ca32831 
								
							 
						 
						
							
							
								
								Better capability/namespace management  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Guillaume J. Charmes <guillaume.charmes@docker.com> (github: creack) 
							
						 
						
							2014-02-24 21:52:29 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								6daf56799f 
								
							 
						 
						
							
							
								
								Refactor and improve libcontainer and driver  
							
							... 
							
							
							
							Remove logging for now because it is complicating things
Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-24 21:11:52 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								0e4d946dc4 
								
							 
						 
						
							
							
								
								Improve logging for nsinit  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-24 18:38:36 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								c8ad8184ec 
								
							 
						 
						
							
							
								
								Cgroups allow devices for privileged containers  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-24 15:47:23 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								d50dc3cb7e 
								
							 
						 
						
							
							
								
								Honor user passed on container in nsinit  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-24 13:52:56 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								b899d9bc44 
								
							 
						 
						
							
							
								
								Fix tests with dockerinit lookup path  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-24 13:40:17 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								a42c6fafbe 
								
							 
						 
						
							
							
								
								Refactor driver to use Exec function from nsini  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-22 01:21:26 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								1271ddcd61 
								
							 
						 
						
							
							
								
								Abstract out diff implementations for importing  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-22 00:29:21 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								118ca3ae64 
								
							 
						 
						
							
							
								
								Add syncpipe for passing context  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 22:58:30 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								c71bc03279 
								
							 
						 
						
							
							
								
								Refactor exec method  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 22:37:09 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								609c298810 
								
							 
						 
						
							
							
								
								Refactor network creation and initialization into strategies  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 22:26:07 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								cda4f27f57 
								
							 
						 
						
							
							
								
								Export functions of nsinit  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 21:14:21 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								d2fa488fa2 
								
							 
						 
						
							
							
								
								Initial commit of libcontainer running docker  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 17:23:49 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								fa64bff715 
								
							 
						 
						
							
							
								
								Pass tty master to Exec  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 16:40:32 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								b3d2325c5f 
								
							 
						 
						
							
							
								
								Pass pipes into Exec function  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 16:28:43 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								b9bc36a8bb 
								
							 
						 
						
							
							
								
								Use lookup path for init  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 16:17:18 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								e90b85bdc0 
								
							 
						 
						
							
							
								
								User os.Args[0] as name to reexec  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 15:32:50 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								d40fbbb69b 
								
							 
						 
						
							
							
								
								Add good logging support to both sides  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:17 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								d67915851d 
								
							 
						 
						
							
							
								
								Move tty into container.json  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:17 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								6054bda2b8 
								
							 
						 
						
							
							
								
								Refactor the flag management for main  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:17 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								5d71533d4e 
								
							 
						 
						
							
							
								
								Make nsinit a proper go pkg and add the main in another dir  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:17 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guillaume J. Charmes 
								
							 
						 
						
							
							
							
							
								
							
							
								52fa4de610 
								
							 
						 
						
							
							
								
								Make sure to close the pipe upon ctrl-d  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Guillaume J. Charmes <guillaume.charmes@docker.com> (github: creack) 
							
						 
						
							2014-02-21 14:56:17 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guillaume J. Charmes 
								
							 
						 
						
							
							
							
							
								
							
							
								97738ffed3 
								
							 
						 
						
							
							
								
								Handle non-tty mode  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Guillaume J. Charmes <guillaume.charmes@docker.com> (github: creack) 
							
						 
						
							2014-02-21 14:56:17 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guillaume J. Charmes 
								
							 
						 
						
							
							
							
							
								
							
							
								41696722fa 
								
							 
						 
						
							
							
								
								Minor cleanup  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Guillaume J. Charmes <guillaume.charmes@docker.com> (github: creack) 
							
						 
						
							2014-02-21 14:56:17 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guillaume J. Charmes 
								
							 
						 
						
							
							
							
							
								
							
							
								b2e01cbe8c 
								
							 
						 
						
							
							
								
								Use a custom pipe instead of stdin for sync net namespace  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Guillaume J. Charmes <guillaume.charmes@docker.com> (github: creack) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guillaume J. Charmes 
								
							 
						 
						
							
							
							
							
								
							
							
								3677967f4e 
								
							 
						 
						
							
							
								
								Use flag for init  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Guillaume J. Charmes <guillaume.charmes@docker.com> (github: creack) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								ccc915b7b9 
								
							 
						 
						
							
							
								
								Move rest of cgroups functions into cgroups pkg  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								c4769ec624 
								
							 
						 
						
							
							
								
								Change IP to address because it includes the subnet  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								b90aaf6828 
								
							 
						 
						
							
							
								
								Remove clone_vfork  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								848fd7638b 
								
							 
						 
						
							
							
								
								Revert "WIP for setup kmsg"  
							
							... 
							
							
							
							This reverts commit 80db9a918337c4ae80ffa9a001da13bd24e848c8.
Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Alexander Larsson 
								
							 
						 
						
							
							
							
							
								
							
							
								3de41b34a2 
								
							 
						 
						
							
							
								
								libcontainer: Initial version of cgroups support  
							
							... 
							
							
							
							This is a minimal version of raw cgroup support for libcontainer.
It has only enough for what docker needs, and it has no support
for systemd yet.
Docker-DCO-1.1-Signed-off-by: Alexander Larsson <alexl@redhat.com> (github: alexlarsson) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								8590435fa0 
								
							 
						 
						
							
							
								
								WIP for setup kmsg  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								c20c1dfb04 
								
							 
						 
						
							
							
								
								Add comments to many functions  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								bb59129b2f 
								
							 
						 
						
							
							
								
								Refactor to remove cmd from container  
							
							... 
							
							
							
							Pass the container's command via args
Remove execin function and just look for an
existing nspid file to join the namespace
Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								663518ba66 
								
							 
						 
						
							
							
								
								Add execin function to running a process in a namespace  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								e3d5adc9e2 
								
							 
						 
						
							
							
								
								Refactor large funcs  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Guillaume J. Charmes 
								
							 
						 
						
							
							
							
							
								
							
							
								b48bc85967 
								
							 
						 
						
							
							
								
								OSX compilation  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Guillaume J. Charmes <guillaume.charmes@dotcloud.com> (github: creack) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								84ba029e25 
								
							 
						 
						
							
							
								
								General cleanup of libcontainer  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								ab6864d0c0 
								
							 
						 
						
							
							
								
								Add dynamic veth name  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:16 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								8430fbf11e 
								
							 
						 
						
							
							
								
								Implement init veth creation  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:15 -08:00 
							
								 
							
							
								 
							
						 
					 
				
					
						
							
								
								
									Michael Crosby 
								
							 
						 
						
							
							
							
							
								
							
							
								e25ebdd06c 
								
							 
						 
						
							
							
								
								Simplify namespaces with only nsinit  
							
							... 
							
							
							
							Docker-DCO-1.1-Signed-off-by: Michael Crosby <michael@crosbymichael.com> (github: crosbymichael) 
							
						 
						
							2014-02-21 14:56:15 -08:00