linuxkit

mirror of https://github.com/linuxkit/linuxkit.git synced 2025-07-29 13:38:00 +00:00

Author	SHA1	Message	Date
Rolf Neugebauer	f8c53db413	init: don't start docker on 0.0.0.0:2375 on DfM/DfW Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>	2016-07-12 14:08:55 +01:00
Rolf Neugebauer	6c95bff567	init: don't start transfused on Windows Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>	2016-07-12 14:04:08 +01:00
Justin Cormack	17406ab88b	Merge pull request #270 from justincormack/fixscript clean up moby script, add undo option	2016-07-12 13:35:24 +01:00
Justin Cormack	da374fb13a	clean up moby script, add undo option Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-12 13:34:49 +01:00
Justin Cormack	a022934760	Merge pull request #269 from rneugeba/kernel-up kernel: Update to 4.4.15	2016-07-12 10:42:59 +01:00
Rolf Neugebauer	2171a2e471	kernel: Update to 4.4.15 patches from: https://github.com/rneugeba/linux-stable/tree/v4.4.15-moby Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>	2016-07-12 10:36:57 +01:00
Justin Cormack	78b6fe84d6	Merge pull request #268 from djs55/iptables-for-master Add the piñata-ga iptables wrapper	2016-07-12 10:28:16 +01:00
David Scott	4f205ed9b2	iptables: log to /var/log/... rather than /var/run/log Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
David Scott	f6a85c0592	iptables: only open host ports if native/port-forwarding=true in the db Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
David Scott	9762094fbb	iptables: add a TODO Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
David Scott	b6fb908ae5	iptables: remove the pid file after sending SIGTERM Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
David Scott	9e441356b5	proxy: add a -no-local-ip option docker itself seems to bind to the port globally inside Moby, so we get an EADDRINUSE if we try to do it too. Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
David Scott	5726f2b2c3	iptables: get the `kill` arguments the right way round Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
David Scott	a97d9b92bc	iptables: close all the fds we inherit from docker Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
David Scott	dba37b747c	/etc/init.d/docker: prepend /usr/local/sbin to the $PATH This is where the iptables wrapper lives. Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
David Scott	b672ec9bdd	Add primitive iptables wrapper which can set up port forwards Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-12 10:26:42 +01:00
Ian Campbell	70514d09b3	Simple build system for ocaml-based iptables Signed-off-by: Ian Campbell <ian.campbell@docker.com>	2016-07-12 10:26:39 +01:00
Justin Cormack	c3fd109bc9	Merge pull request #265 from dsheets/transfused-mknod-reg transfused: add mknod reg file event actuation message	2016-07-12 10:18:29 +01:00
David Sheets	ef98586c22	transfused: add mknod reg file event actuation message Signed-off-by: David Sheets <dsheets@docker.com>	2016-07-11 16:26:00 -07:00
Justin Cormack	906bbe75b1	Merge pull request #264 from dsheets/sysctl-inotify-watches sysctl: set a large fs.inotify.max_user_watches limit	2016-07-11 22:38:47 +01:00
David Sheets	d376e85e47	sysctl: set a large fs.inotify.max_user_watches limit Needed by Ruby guard and Dropbox. See https://forums.docker.com/t/running-guard-with-docker-compose-fails-due-to-inotify-limit/17096 Signed-off-by: David Sheets <dsheets@docker.com>	2016-07-11 14:37:52 -07:00
Justin Cormack	c55d6a0269	Merge pull request #262 from dsheets/linux-module-unload linux: allow kernel module unloading	2016-07-11 19:53:21 +01:00
David Sheets	dcfe76be64	linux: allow kernel module unloading The ability to unload kernel modules helps with rapid development of kernel modules or Moby-integrated functionality. It has no negative side effects as far as I am aware. Signed-off-by: David Sheets <dsheets@docker.com>	2016-07-11 11:48:46 -07:00
Justin Cormack	4afe7ec9ae	Merge pull request #260 from justincormack/userns Fix user namespace support	2016-07-11 14:58:55 +01:00
Justin Cormack	5d86bfcfe0	Fix user namespace support fix #153 For now, just create the default remap user, rather than trying to fix the command emulation. The existing code in docker is not ideal, as it is GNU specific, try to find a better option for 1.13. Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-11 14:47:23 +01:00
Justin Cormack	049f3ff9a6	remove syslog fix, as now upstream Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-11 14:31:25 +01:00
Justin Cormack	b7eec4c824	Merge pull request #258 from dsheets/remove-slash-Mac Remove /Mac in docker init and transfused init	2016-07-11 12:29:06 +01:00
David Sheets	11f965ce7b	Remove /Mac in docker init and transfused init Replace /Mac with /host_docker_app and replace driverDir with just driver. Signed-off-by: David Sheets <dsheets@docker.com>	2016-07-08 14:36:26 -07:00
Justin Cormack	f6b9c74450	Merge pull request #257 from justincormack/sysctl Add a custom sysctl file	2016-07-08 18:18:29 +01:00
Justin Cormack	e771c02218	Add a custom sysctl file This increases resource limits that have been generally requested. See #232 Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-08 18:16:05 +01:00
Justin Cormack	baaf857c9d	Merge pull request #256 from justincormack/tests Add some more docker tests, including running image	2016-07-08 16:57:34 +01:00
Justin Cormack	f349515701	Add some more docker tests, including running image Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-08 16:54:18 +01:00
Justin Cormack	e6f4364f07	Merge pull request #251 from dsheets/transfused-export-suitability transfused: distinguish export requests from mount requests	2016-07-08 16:30:04 +01:00
Justin Cormack	ab365e38a0	Merge pull request #255 from justincormack/e1000 add e1000 drivers, allows qemu default setup to find an ethernet, and…	2016-07-08 16:28:24 +01:00
Justin Cormack	6f2755c32d	Merge pull request #254 from rneugeba/patches-up linux: properly update kernel patches to v4.4.14	2016-07-08 16:28:16 +01:00
Justin Cormack	7d605926f0	add e1000 drivers, allows qemu default setup to find an ethernet, and used frequently in emulated environments Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-08 16:26:16 +01:00
Rolf Neugebauer	6125e66e5c	linux: properly update kernel patches to v4.4.14 When we updated from 4.4.10 to 4.4.14 we copied the patches over. This changeset properly updates the patches so that they apply cleanly. 0039-VSOCK-do-not-disconnect-socket-when-peer-has-shutdow.patch was removed as it made it into 4.4.14 already. Compile tested only For reference the patches were generated from: https://github.com/rneugeba/linux-stable/tree/v4.4.14-moby Signed-off-by: Rolf Neugebauer <rolf.neugebauer@docker.com>	2016-07-08 16:10:51 +01:00
Justin Cormack	da60050917	Merge pull request #253 from justincormack/test Initial test hooks	2016-07-08 15:47:15 +01:00
Justin Cormack	ede5a0ea6f	Initial test hooks Beginning of a proper test suite, using qemu. Test just runs docker for now, will add further integration tests. Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-08 15:44:04 +01:00
Justin Cormack	95f6ca9f70	Merge pull request #250 from djs55/vsock-ulimit proxy-vsockd: bump the max number of file descriptors	2016-07-06 14:52:01 +01:00
Ian Campbell	3547fb21cf	Merge pull request #241 from ijc25/logging-over-vsock mac: Redirect syslog over vsock	2016-07-05 17:54:30 +01:00
Ian Campbell	125e3de03b	Merge pull request #207 from ijc25/ntp-from-dhcp [Post Dockercon] Use $ntpsrv from DHCP to configure chrony	2016-07-05 14:23:49 +01:00
David Sheets	fbcba85f0e	transfused: distinguish export requests from mount requests We distinguish export suitability requests from bind mount suitability requests in the transfuse control protocol. This distinction allows us to permit both bind mounts of empty directories and export mounts onto empty directories. Addresses docker/pinata#4213. Signed-off-by: David Sheets <dsheets@docker.com>	2016-07-04 18:53:05 -07:00
Justin Cormack	bc4e41cc80	Merge pull request #249 from justincormack/nomodules Updated kernel config	2016-07-05 01:19:38 +01:00
David Scott	e32a516406	proxy-vsockd: bump the max number of file descriptors Signed-off-by: David Scott <dave.scott@docker.com>	2016-07-04 21:49:17 +01:00
Justin Cormack	cdad79e916	Updated kernel config Remove one module, Xen ones not removeable. Make oldconfig. Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-04 17:03:10 +01:00
Justin Cormack	6ad074f65b	Merge pull request #246 from ijc25/populate-lib-modules Populate /lib/modules/`uname -r`	2016-07-04 15:48:53 +01:00
Justin Cormack	683f627e9a	Merge pull request #247 from justincormack/ulimit use cat not sysctl for reading sysctl values	2016-07-04 15:48:20 +01:00
Justin Cormack	18b933e81b	use cat not sysctl for reading sysctl values Signed-off-by: Justin Cormack <justin.cormack@docker.com>	2016-07-04 15:47:46 +01:00
Ian Campbell	209dd754bc	Populate /lib/modules/`uname -r` This is less to do with installing modules (which we generally don't expect to use in Moby) but to populate /lib/modules/`uname -r`/modules.builtin which turns: moby:~# modprobe ip_vs modprobe: FATAL: Module ip_vs not found in directory /lib/modules/4.4.14-moby moby:~# modprobe nf_nat modprobe: FATAL: Module nf_nat not found in directory /lib/modules/4.4.14-moby moby:~# into: moby:~# modprobe ip_vs moby:~# modprobe nf_nat moby:~# which reduces the amount noise in the logs, e.g. in docker.log: time="2016-07-04T11:21:58Z" level=warning msg="Running modprobe nf_nat failed with message: `modprobe: WARNING: Module nf_nat not found in directory /lib/modules/4.4.14-moby`, error: exit status 1" A fair number of these appear in the logs. This also stops various tools logging about /lib/modules/`uname -r` not existing (there was one in the boot log until recently I think) Signed-off-by: Ian Campbell <ian.campbell@docker.com>	2016-07-04 15:44:48 +01:00

... 2 3 4 5 6 ...

1032 Commits