pool/nsjail
SHA256
17
0
Fork 1
Code Issues Pull Requests Activity
29 Commits 3 Branches 0 Tags
factory
Commit Graph

15 Commits

Author SHA256 Message Date
Wolfgang Frisch
1a4e4a409f Accepting request 1172144 from home:mlin7442:rebuild_fails_156 
fix leap build

OBS-URL: https://build.opensuse.org/request/show/1172144
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=27
 2024-05-06 11:19:24 +00:00
Wolfgang Frisch
ab71b54ca4 Accepting request 1144235 from home:wfrisch:branches:security 
- Update to version 3.4+git14.b740dcf:
  * Improved cgroups2 support
  * Improved cgroups2 + docker interoperability
  * New configs: hexchat, telegram
  * Better support for clone3
  * New signals displayed: SIGPWR
  * Support for nvim+.clangd
  * Improved .clang-format rules
  * Print help to stdout if -h | --help was used

OBS-URL: https://build.opensuse.org/request/show/1144235
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=24
 2024-02-05 12:37:22 +00:00
Matthias Gerstner
c3f8f19ca9 Accepting request 1105443 from home:wfrisch:branches:security 
- Fixed Tumbleweed build error caused by an incompatible libprotobuf.
- Restore build on Leap 15.4 and older.
- Update to version 3.3+git14.8308b91:
  * subproc: mark cloneFunc as [[noreturn]]
  * subproc: support CLONE_CLEAR_SIGHAND
  * subproc: display additional clone3 flags
  * configs/: formatting
  * configs/telegram: telegram is 64 bit only
  * configs/telegram: a new config for the telegram-desktop
  * formatting fix
  * Better output formatting for --help
  * cgroup2.cc: improve note about using Docker
  * logs: respect getenv(NO_COLOR)
  * configs/hexchat: new config based on xchat
  * Mount read-only directly if mounting rw fails

OBS-URL: https://build.opensuse.org/request/show/1105443
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=22
 2023-08-23 09:15:56 +00:00
Johannes Segitz
dae556cb3d Accepting request 1056425 from home:amanzini:branches:security 
- drop obscpio file upon request

- Update to version 3.3+git1.5b48117:
  * configs/xchat: mount whole /tmp/.X11-unix
  * Setup cgroup.subtree_control controllers when necessary in cgroupsv2
  * Unset LDFLAGS for kafel
  * config/xchat: move original .xchat2 config dir to .config/
  * Update kafel
  * configs/bash: remove tmpfs mount over /dev as it makes /dev/null non-writeable
  * configs/firefox-with-net-wayland: x11 socket is not needed here
  * nsjail: use atomic in sighandlers
  * configs/xchat-with-net: use 8.8.8.8 in resolv.conf unconditionally
  * cpu: more debug messaging
  * mnt: quote paths in log messages
  * Switch C++ standard to C++14 - it'll allow to use new features, like std::quoted
  * mnt: remove unnecessary quote in a debug message
  * cpu/subproc: better debugging strings
  * cpu: even better LOG_Ds
  * cpu: Add more debugging messages
  * Make logs more efficient by avoiding argument evaluation for LOG* if it's not needed at the current level
  * When setting CPU affinity, take into consideration the current CPU affinity set. Use only CPU numbers, which exist in the current affinity set. Maybe fixes https://github.com/google/nsjail/issues/200
  * subproc: Allow killing subprocesses with different signal
  * Add `disable_tsc` option

OBS-URL: https://build.opensuse.org/request/show/1056425
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=20
 2023-01-09 07:56:33 +00:00
Johannes Segitz
6a54ff172b Accepting request 943928 from home:jsegitz:branches:security 
- Changed version string to 3.0+git72.dccf911 and adjusted
  service file. The previous version scheme results in version
  strings that are "lower" that e.g. 3.0.

OBS-URL: https://build.opensuse.org/request/show/943928
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=19
 2022-01-05 08:45:46 +00:00
Johannes Segitz
53bb54bfce Accepting request 943889 from home:firstyear:branches:security 
Update to latest git revision of nsjail, and include _service file
to make future updates easier. This also means that Kafel is included
in the git submodule sources so it's not needed as a tar.

OBS-URL: https://build.opensuse.org/request/show/943889
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=18
 2022-01-05 07:50:20 +00:00
Johannes Segitz
bb1f93002c Accepting request 823379 from home:polslinux:branches:security 
- Update to 3.0:
  * the TCP proxy mode is a socketpair proxy now
  * fixes for some configs/ (e.g. for xchat and for znc)
  * new clone option recognized (CLONE_NEWPID)
  * fixed max_conns_per_ip
  * clarification of units for cgroups_mem_max
- Remove remove_werror.patch

OBS-URL: https://build.opensuse.org/request/show/823379
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=16
 2020-07-29 13:09:44 +00:00
Johannes Segitz
733a71fb25 Accepting request 815758 from home:jsegitz:branches:security 
- Add remove_werror.patch to prevent build errors due to deprecation
  warnings. I expect this can be removed with 3.0

OBS-URL: https://build.opensuse.org/request/show/815758
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=14
 2020-06-18 14:32:12 +00:00
Johannes Segitz
5d09a8eb22 Accepting request 769581 from home:jsegitz:branches:security 
- Update to version 2.9. Notable changes:
  * improved configs for some tools
  * changed default RLIMIT_AS to 4GiB
  * rudimentary support for cgroups2
  * added option to ignore rlimits
  * fixed setcwd() w/o CLONE_NEWNS

OBS-URL: https://build.opensuse.org/request/show/769581
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=12
 2020-02-03 13:30:08 +00:00
Johannes Segitz
061fdfa19f Accepting request 760396 from home:cgiboudeaux:branches:security 
Disable lto to fix the factory build + cleanup.

OBS-URL: https://build.opensuse.org/request/show/760396
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=10
 2020-01-03 08:00:28 +00:00
Johannes Segitz
d3944db4e5 Accepting request 684097 from home:jsegitz:branches:security 
- Fixed ExclusiveArch: to correct architecture

OBS-URL: https://build.opensuse.org/request/show/684097
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=8
 2019-03-11 17:34:13 +00:00
Johannes Segitz
2248c7e862 Accepting request 681205 from home:jsegitz:branches:security 
- Ensure build only on 64 bit machines

OBS-URL: https://build.opensuse.org/request/show/681205
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=6
 2019-03-04 07:53:18 +00:00
Johannes Segitz
2bac2aa1d0 Accepting request 671899 from home:jsegitz:branches:security 
- Retire old $RPM_* shell vars and %__-type macro indirections.

OBS-URL: https://build.opensuse.org/request/show/671899
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=3
 2019-02-05 14:21:53 +00:00
Johannes Segitz
78d2ef96d2 Accepting request 671310 from home:jsegitz:branches:security 
- Update to version 2.8
  * ability to specify noexec/nodev/nosuid in mounts
  * added --macvlan_vs_ma option
  * better example configs
  * changed behavior of --env - empty var means passing it from parent
- Fixed requires for libnl3
- Removed format-truncation.patch, string handling was reworked

OBS-URL: https://build.opensuse.org/request/show/671310
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=2
 2019-02-05 07:54:29 +00:00
Marcus Meissner
bbd450cbb6 Accepting request 636896 from home:jsegitz 
initial submission

OBS-URL: https://build.opensuse.org/request/show/636896
OBS-URL: https://build.opensuse.org/package/show/security/nsjail?expand=0&rev=1
 2018-09-21 06:23:39 +00:00