6 years agoSetting tag lxc-userspace-1.0-12 master lxc-userspace-1.0-12
Thierry Parmentelat [Wed, 16 Jul 2014 10:15:39 +0000]
Setting tag lxc-userspace-1.0-12
fix lxcsu to spot the right architecture for the container - was always using the host's arch

6 years agofix the way we determine a container arch
Thierry Parmentelat [Wed, 9 Jul 2014 11:55:47 +0000]
fix the way we determine a container arch
prior to this change, the container driver_pid (i.e. libvirt_lxc instance) was used, which always returned x86_64
we now use init_pid (i.e. the systemd or upstart or init instance) which now reflects the container's setting
as a side note we could have used instead someting like 'virsh -c lxc:/// dumpxml container_name | grep arch'

6 years agoadd a Requires: to procps-ng as we use pgrep in lxcsu to determine container's arch
Thierry Parmentelat [Wed, 9 Jul 2014 11:53:31 +0000]
add a Requires: to procps-ng as we use pgrep in lxcsu to determine container's arch

6 years agoSetting tag lxc-userspace-1.0-11 lxc-userspace-1.0-11
Thierry Parmentelat [Mon, 28 Apr 2014 11:01:49 +0000]
Setting tag lxc-userspace-1.0-11
reworked kvmsu

6 years agoFixes to kvmsu function
Andy Bavier [Wed, 2 Apr 2014 13:52:53 +0000]
Fixes to kvmsu function

6 years agoSetting tag lxc-userspace-1.0-10 lxc-userspace-1.0-10
Thierry Parmentelat [Wed, 26 Mar 2014 14:50:33 +0000]
Setting tag lxc-userspace-1.0-10
lxcsu evaluates slice_uid earlier
this is for old-installed f18 nodes like in PLE

6 years agoMerge branch 'master' of ssh://git.planet-lab.org/git/lxc-userspace
Sapan Bhatia [Wed, 26 Mar 2014 14:14:03 +0000]
Merge branch 'master' of ssh://git.planet-lab.org/git/lxc-userspace

6 years agoFixed an error that crept in while refactoring kvmsu into slicesu
Sapan Bhatia [Wed, 26 Mar 2014 14:13:56 +0000]
Fixed an error that crept in while refactoring kvmsu into slicesu

6 years agoevaluate slice_uid earlier in the process
Thierry Parmentelat [Wed, 26 Mar 2014 10:22:20 +0000]
evaluate slice_uid earlier in the process
the previous code was, for some reason, behaving oddly on older f18 nodes
my hunch is that the call to pwd.getpwnam was taking place in a restricted environment
the new code was tested successfully on a PLE node

6 years agoSetting tag lxc-userspace-1.0-9 lxc-userspace-1.0-9
Thierry Parmentelat [Fri, 21 Mar 2014 15:50:00 +0000]
Setting tag lxc-userspace-1.0-9
does not rely on capsh (actually this was the one in the sliver)
use native capability dropping instead
provides new slicesu binary
suitable for libvirt-1.1 and above

6 years agoAdd slicesu to package
Sapan Bhatia [Wed, 19 Mar 2014 05:56:11 +0000]
Add slicesu to package

6 years agoGet scp to work over ssh/kvm
Sapan Bhatia [Wed, 19 Mar 2014 05:53:52 +0000]
Get scp to work over ssh/kvm

6 years agoReplaced lxcsu with slicesu. The latter supports hypervisors e.g. KVM
Sapan Bhatia [Wed, 19 Mar 2014 05:43:23 +0000]
Replaced lxcsu with slicesu. The latter supports hypervisors e.g. KVM

6 years agoFixed bug in user account switcheroo. We now use sudo instead of a non-existent bash...
Sapan Bhatia [Tue, 11 Mar 2014 02:27:29 +0000]
Fixed bug in user account switcheroo. We now use sudo instead of a non-existent bash option

6 years agoImplemented native capability dropping, eliminated capsh dependency
Sapan Bhatia [Tue, 25 Feb 2014 05:03:55 +0000]
Implemented native capability dropping, eliminated capsh dependency

6 years agoFixed tabulation issue in the previous patch
Sapan Bhatia [Tue, 21 Jan 2014 14:45:46 +0000]
Fixed tabulation issue in the previous patch

6 years agoTabulation issues. Revert "Make lookup of child pid portable. The new lookup works...
Sapan Bhatia [Tue, 21 Jan 2014 14:37:10 +0000]
Tabulation issues. Revert "Make lookup of child pid portable. The new lookup works on F18 and below."

This reverts commit 51380fc5bdc153460ea678b67ac96cd85847c8ea.

6 years agoMake lookup of child pid portable. The new lookup works on F18 and below.
Sapan Bhatia [Tue, 21 Jan 2014 09:45:07 +0000]
Make lookup of child pid portable. The new lookup works on F18 and below.

6 years agoa little cleanup won’t hurt
Thierry Parmentelat [Mon, 20 Jan 2014 17:40:51 +0000]
a little cleanup won’t hurt

6 years agowhen locating namespaces in /proc/<pid>/ns
Thierry Parmentelat [Mon, 20 Jan 2014 09:58:57 +0000]
when locating namespaces in /proc/<pid>/ns
do not use the result of virsh domid to determine <pid> as this would point at the lxc driver
we need to use its - expected single - child process, that instead corresponds to the VM init/systemd instance

6 years agoa safer way to sync code on a running node - no Makefile.vsh anyway
Thierry Parmentelat [Mon, 20 Jan 2014 07:37:07 +0000]
a safer way to sync code on a running node - no Makefile.vsh anyway

6 years agocheck return codes and print warnings when suspicius
Thierry Parmentelat [Wed, 15 Jan 2014 13:33:08 +0000]
check return codes and print warnings when suspicius

6 years agoremove code stolen from libvirt that is not needed any more
Thierry Parmentelat [Wed, 15 Jan 2014 13:32:38 +0000]
remove code stolen from libvirt that is not needed any more

6 years agomore meaningful retcods for ch[fs]context
Thierry Parmentelat [Wed, 15 Jan 2014 10:35:58 +0000]
more meaningful retcods for ch[fs]context

6 years agojust re-order
Thierry Parmentelat [Wed, 15 Jan 2014 09:46:26 +0000]
just re-order

6 years agocosmetic
Thierry Parmentelat [Wed, 15 Jan 2014 09:39:18 +0000]

6 years agoSapan's changes to address cgroups location
Thierry Parmentelat [Wed, 15 Jan 2014 09:34:41 +0000]
Sapan's changes to address cgroups location
Seems to work on fedora20 nodes

6 years agosupport for libvirt—1.1 naming scheme
Thierry Parmentelat [Fri, 10 Jan 2014 13:25:29 +0000]
support for libvirt—1.1 naming scheme

6 years agoredid indent=4 but more carefully this time
Thierry Parmentelat [Fri, 10 Jan 2014 11:47:02 +0000]
redid indent=4 but more carefully this time

6 years agoshow more in debug mode
Thierry Parmentelat [Fri, 10 Jan 2014 10:34:29 +0000]
show more in debug mode

6 years agorun virsh connected to lxc
Thierry Parmentelat [Fri, 10 Jan 2014 10:28:22 +0000]
run virsh connected to lxc

6 years agodiscarded changes from branch that had the broken reindentation attempt
Thierry Parmentelat [Fri, 10 Jan 2014 10:14:03 +0000]
discarded changes from branch that had the broken reindentation attempt

6 years agoSimplify lxcsu by querying libvirt for pid
Thierry Parmentelat [Fri, 10 Jan 2014 10:05:02 +0000]
Simplify lxcsu by querying libvirt for pid

this is a manual re-injection of Sapan’s change
it was a big mistake to reindent automatically as this broke the logic entirely

6 years agoSimplify lxcsu by querying libvirt for pid
Sapan Bhatia [Thu, 9 Jan 2014 18:00:43 +0000]
Simplify lxcsu by querying libvirt for pid

6 years agoindent=4
Thierry Parmentelat [Thu, 9 Jan 2014 16:01:10 +0000]

7 years agofix perms
Scott Baker [Tue, 3 Dec 2013 00:07:56 +0000]
fix perms

7 years agofix sysctl support causing scp to break due to printing text to ssh connection
Scott Baker [Tue, 3 Dec 2013 00:07:42 +0000]
fix sysctl support causing scp to break due to printing text to ssh connection

7 years agoFix for the "error disabling cgroup" error
Sapan Bhatia [Wed, 9 Oct 2013 02:43:10 +0000]
Fix for the "error disabling cgroup" error

7 years agoSetting tag lxc-userspace-1.0-8 lxc-userspace-1.0-8
Thierry Parmentelat [Fri, 20 Sep 2013 09:43:58 +0000]
Setting tag lxc-userspace-1.0-8
fix vsh permissions

7 years agoset u+s on /usr/sbin/vsh
Scott Baker [Thu, 5 Sep 2013 23:04:06 +0000]
set u+s on /usr/sbin/vsh

7 years agoSetting tag lxc-userspace-1.0-7 lxc-userspace-1.0-7
Thierry Parmentelat [Sat, 31 Aug 2013 09:29:26 +0000]
Setting tag lxc-userspace-1.0-7
perform vsys sysctl inside of container
remove unnecessary proc remounts
prevent setting LD_PRELOAD if the library doesn't exist in image
add --noslicehome option
check /etc/lxcsu_default for default arguments
fix permissions
support conventional invocation of make

7 years agoadd --noslicehome option, and check /etc/lxcsu_default for default arguments
Scott Baker [Fri, 30 Aug 2013 18:08:29 +0000]
add --noslicehome option, and check /etc/lxcsu_default for default arguments

7 years agoThomas's fix on Makefile + remove lines with tabs
Thierry Parmentelat [Mon, 26 Aug 2013 11:40:22 +0000]
Thomas's fix on Makefile + remove lines with tabs

7 years agofix permissions
Scott Baker [Fri, 16 Aug 2013 00:06:40 +0000]
fix permissions

7 years agoremove unnecessary proc remounts, prevent setting LD_PRELOAD if the library doesn...
Scott Baker [Fri, 16 Aug 2013 00:06:26 +0000]
remove unnecessary proc remounts, prevent setting LD_PRELOAD if the library doesn't exist in image

7 years agoSupport conventional invocation of make
Sapan Bhatia [Mon, 12 Aug 2013 20:39:46 +0000]
Support conventional invocation of make

7 years agoasm/unistd.h is a more standard include than asm-generic/unistd.h
Sapan Bhatia [Mon, 12 Aug 2013 20:34:06 +0000]
asm/unistd.h is a more standard include than asm-generic/unistd.h

7 years agofix perms
Scott Baker [Mon, 12 Aug 2013 19:46:20 +0000]
fix perms

7 years agofix lxcsu not handling nodemanager interfaces.py ('/sbin/service network restart...
Scott Baker [Mon, 12 Aug 2013 19:45:55 +0000]
fix lxcsu not handling nodemanager interfaces.py ('/sbin/service network restart') properly

7 years agofix perms
smbaker [Mon, 5 Aug 2013 19:11:06 +0000]
fix perms

7 years agoperform vsys sysctl inside of container
smbaker [Mon, 5 Aug 2013 19:10:42 +0000]
perform vsys sysctl inside of container

7 years agoSetting tag lxc-userspace-1.0-6 lxc-userspace-1.0-6
Thierry Parmentelat [Sat, 13 Jul 2013 22:15:26 +0000]
Setting tag lxc-userspace-1.0-6
merge back lxcsu and -internal into a single source file
capsh --uid instead of --user that was not yet supported in f12 (hopefully tmp)

7 years agomessages still had lxcsu-internal
Thierry Parmentelat [Mon, 8 Jul 2013 19:41:42 +0000]
messages still had lxcsu-internal

7 years agomove back to a single source file (lxcsu) with a -i/--internal option, and an lxcsu...
Thierry Parmentelat [Mon, 8 Jul 2013 19:19:33 +0000]
move back to a single source file (lxcsu) with a -i/--internal option, and an lxcsu-internal symlink

7 years agocapsh --user is available from f14 only
Thierry Parmentelat [Sat, 6 Jul 2013 13:16:47 +0000]
capsh --user is available from f14 only
use caps --uid instead for now

7 years agoremove useless import
Thierry Parmentelat [Sat, 6 Jul 2013 13:12:08 +0000]
remove useless import

7 years agoSetting tag lxc-userspace-1.0-5 lxc-userspace-1.0-5
Thierry Parmentelat [Wed, 3 Jul 2013 05:56:27 +0000]
Setting tag lxc-userspace-1.0-5
entering in a slice now correctly ends up with right uid and pwd
make sync

7 years agoexplicitly chdir to slice's homedir since bash does not seem to be willing to do...
Thierry Parmentelat [Tue, 2 Jul 2013 14:45:24 +0000]
explicitly chdir to slice's homedir since bash does not seem to be willing to do so even though it's started with --login...

7 years agolxcsu-internal to set LD_PRELOAD and HOME (resulting process wtill ends up in / though)
Thierry Parmentelat [Tue, 2 Jul 2013 11:32:20 +0000]
lxcsu-internal to set LD_PRELOAD and HOME (resulting process wtill ends up in / though)

7 years agolxcsu-internal to call capsh with --user=<slicename>
Thierry Parmentelat [Tue, 2 Jul 2013 11:31:09 +0000]
lxcsu-internal to call capsh with --user=<slicename>

7 years agomake sync needs to set extra permissions as well
Thierry Parmentelat [Tue, 2 Jul 2013 10:07:23 +0000]
make sync needs to set extra permissions as well

7 years agocan use make sync to push a working version on a tesst node
Thierry Parmentelat [Tue, 2 Jul 2013 10:00:16 +0000]
can use make sync to push a working version on a tesst node

7 years agoSetting tag lxc-userspace-1.0-4 lxc-userspace-1.0-4
Sapan Bhatia [Mon, 1 Jul 2013 22:03:44 +0000]
Setting tag lxc-userspace-1.0-4
Bug fixes:
- lxcsu <slice_name> works again
- pid namespace issue that would let slices see all processes

7 years agoFixed pid ns bug
Sapan Bhatia [Mon, 1 Jul 2013 22:01:32 +0000]
Fixed pid ns bug

7 years agoAdd commandline option to bash in order to support "lxcsu <slicename>"
Sapan Bhatia [Mon, 1 Jul 2013 15:30:53 +0000]
Add commandline option to bash in order to support "lxcsu <slicename>"

7 years agoSetting tag lxc-userspace-1.0-3 lxc-userspace-1.0-3
Sapan Bhatia [Fri, 28 Jun 2013 16:58:36 +0000]
Setting tag lxc-userspace-1.0-3
Fixed bug that would let slices see all processes in root context.

7 years agoMerge branch 'master' of ssh://git.planet-lab.org/git/lxc-userspace
Sapan Bhatia [Fri, 28 Jun 2013 16:53:35 +0000]
Merge branch 'master' of ssh://git.planet-lab.org/git/lxc-userspace

7 years agolxcsu proc bug fix
Sapan Bhatia [Fri, 28 Jun 2013 16:53:27 +0000]
lxcsu proc bug fix

7 years agoSetting tag lxc-userspace-1.0-2 lxc-userspace-1.0-2
Thierry Parmentelat [Wed, 26 Jun 2013 07:06:07 +0000]
Setting tag lxc-userspace-1.0-2
split into lxcsu{,-internal}

7 years agosupport for centos 5.5 image
smbaker [Mon, 24 Jun 2013 20:29:44 +0000]
support for centos 5.5 image

7 years agorename options into ags as we use ArgumentParser and not OtionParser any more
Thierry Parmentelat [Sun, 23 Jun 2013 06:22:44 +0000]
rename options into ags as we use ArgumentParser and not OtionParser any more

7 years agoOOPS - was packaging lxcsu as lxcsu-internal
Thierry Parmentelat [Sun, 23 Jun 2013 06:20:25 +0000]
OOPS - was packaging lxcsu as lxcsu-internal

7 years agoprobable fix
Thierry Parmentelat [Fri, 21 Jun 2013 15:03:34 +0000]
probable fix

7 years agocleanup and add suggestions but commented
Thierry Parmentelat [Fri, 21 Jun 2013 15:03:00 +0000]
cleanup and add suggestions but commented

7 years agopackage lxcsu-internal
Thierry Parmentelat [Thu, 20 Jun 2013 09:19:40 +0000]
package lxcsu-internal

7 years agoAdded support for sysctls
Sapan Bhatia [Tue, 18 Jun 2013 01:31:33 +0000]
Added support for sysctls

7 years agoSupport lxcsu <slicename>
Sapan Bhatia [Tue, 18 Jun 2013 01:07:11 +0000]
Support lxcsu <slicename>

7 years agoChanged interface to lxcsu. Now invoked as lxcsu <slicename> command
Sapan Bhatia [Tue, 18 Jun 2013 01:04:36 +0000]
Changed interface to lxcsu. Now invoked as lxcsu <slicename> command

7 years agoSetting tag lxc-userspace-1.0-1 lxc-userspace-1.0-1
Thierry Parmentelat [Wed, 5 Jun 2013 17:05:16 +0000]
Setting tag lxc-userspace-1.0-1
rename module and package from lxctools into lxc-userspace

7 years agorename into lxc-userspace and bump release to 1.0
Thierry Parmentelat [Tue, 4 Jun 2013 17:52:44 +0000]
rename into lxc-userspace and bump release to 1.0
this package does Obsoletes: lxctools

7 years agoSetting tag lxctools-0.9-8 lxc-userspace-1.0-0 lxctools-0.9-8
Sapan Bhatia [Mon, 3 Jun 2013 19:55:18 +0000]
Setting tag lxctools-0.9-8
- Upgraded code for compatibility with kernel 3.6.9
- Obsoleted modules for switching into mnt and pid namespaces
- Added command to mount /proc if not mounted

7 years agoBug fixes
Sapan Bhatia [Mon, 3 Jun 2013 19:49:40 +0000]
Bug fixes

7 years agoMount /proc inside slice.
Sapan Bhatia [Mon, 3 Jun 2013 19:24:27 +0000]
Mount /proc inside slice.

7 years agoiron out argument parser usage, add --debug option, and get this to work again in...
Thierry Parmentelat [Thu, 30 May 2013 09:18:34 +0000]
iron out argument parser usage, add --debug option, and get this to work again in simple (no arch change) cases at least

7 years agoSetting tag lxctools-0.9-7 lxctools-0.9-7
Andy Bavier [Wed, 29 May 2013 17:17:44 +0000]
Setting tag lxctools-0.9-7
Use ArgumentParser, fix issue with sensing arch

7 years agoAdded binutils dependency
Andy Bavier [Wed, 29 May 2013 17:13:45 +0000]
Added binutils dependency

7 years agouse ArgumentParser instead of deprecated OptionParser
Thierry Parmentelat [Wed, 29 May 2013 13:42:23 +0000]
use ArgumentParser instead of deprecated OptionParser

7 years agoadded a main function
Thierry Parmentelat [Wed, 29 May 2013 13:40:25 +0000]
added a main function

7 years agodefine a default for 'arch' as I find it sometimes undefined
Thierry Parmentelat [Wed, 29 May 2013 13:30:03 +0000]
define a default for 'arch' as I find it sometimes undefined

7 years agoSetting tag lxctools-0.9-6 lxctools-0.9-6
Thierry Parmentelat [Wed, 29 May 2013 10:53:12 +0000]
Setting tag lxctools-0.9-6
implements vm's arch

7 years agoMerge branch 'master' of ssh://git.planet-lab.org/git/lxctools
Sapan Bhatia [Fri, 24 May 2013 14:51:32 +0000]
Merge branch 'master' of ssh://git.planet-lab.org/git/lxctools

7 years agoDetect architecture of lxc container and make sure the spawned environment has the...
Sapan Bhatia [Thu, 23 May 2013 22:02:56 +0000]
Detect architecture of lxc container and make sure the spawned environment has the same architecture.

7 years agoSetting tag lxctools-0.9-5 lxctools-0.9-5
Thierry Parmentelat [Tue, 23 Apr 2013 09:38:46 +0000]
Setting tag lxctools-0.9-5
more flexible and more robust lxcsu

7 years agorevert tag update so we can use module-tag
Thierry Parmentelat [Tue, 23 Apr 2013 09:36:26 +0000]
revert tag update so we can use module-tag

7 years agoWithout this, scp, ssh with bash arguments etc. does not work
Sapan Bhatia [Thu, 14 Mar 2013 18:10:10 +0000]
Without this, scp, ssh with bash arguments etc. does not work

7 years agoUpdated tag
Sapan Bhatia [Tue, 12 Mar 2013 14:20:30 +0000]
Updated tag

7 years agoAdded flexibility to lxcsu
Sapan Bhatia [Tue, 12 Mar 2013 14:20:04 +0000]
Added flexibility to lxcsu

7 years agoSetting tag lxctools-0.9-4 lxctools-0.9-4
Thierry Parmentelat [Thu, 7 Mar 2013 08:06:50 +0000]
Setting tag lxctools-0.9-4
nicer polish to lxcsu returning the right thing

7 years agoTweaked return code handling to use the usual Python method
Sapan Bhatia [Tue, 5 Mar 2013 14:19:12 +0000]
Tweaked return code handling to use the usual Python method

7 years agoSetting tag lxctools-0.9-3 lxctools-0.9-3
Thierry Parmentelat [Mon, 4 Mar 2013 10:23:54 +0000]
Setting tag lxctools-0.9-3
lxcsu to propagate its forked process's return code