aboutgitcodebugslistschat
Commit message (Expand)AuthorAgeFilesLines
* apparmor: Allow read-only access to uid_mapStefano Brivio2023-09-071-0/+2
* apparmor: Explicitly pass options we use while remounting root filesystemStefano Brivio2023-09-071-1/+1
* apparmor: Use abstractions/nameservice to deal with symlinked resolv.confStefano Brivio2023-09-061-2/+1
* pasta: Strip RTA_PREFSRC when copying routes to the namespace2023_08_23.a7e4bfbDavid Gibson2023-08-231-1/+14
* netlink: Set IFA_ADDRESS, not just IFA_LOCAL, while adding IPv4 addressesStefano Brivio2023-08-231-0/+1
* tcp: Remove broken pressure calculations for tcp_defer_handler()David Gibson2023-08-223-13/+0
* inany: Add missing double include guard to inany.hDavid Gibson2023-08-221-0/+5
* tcp: Move in_epoll flag out of common connection structureDavid Gibson2023-08-223-7/+9
* tcp, udp: Don't pre-fill IPv4 destination address in headersDavid Gibson2023-08-228-32/+15
* tcp, udp: Don't include destination address in partially precomputed csumsDavid Gibson2023-08-223-52/+27
* tcp: Consistent usage of ports in tcp_seq_init()David Gibson2023-08-221-2/+2
* tcp: More precise terms for addresses and portsDavid Gibson2023-08-222-52/+53
* tap: Pass source address to protocol handler functionsDavid Gibson2023-08-227-32/+48
* tap: Don't clobber source address in tap6_handler()David Gibson2023-08-221-2/+0
* selinux: Fix domain transitions for typical commands pasta might run2023_08_18.0af928eStefano Brivio2023-08-181-1/+18
* selinux: Allow pasta_t to read nsfs entriesStefano Brivio2023-08-181-0/+2
* selinux: Add rules for sysctl and /proc/net accessesStefano Brivio2023-08-182-0/+4
* selinux: Update policy to fix user/group settingsStefano Brivio2023-08-182-4/+13
* selinux: Fix user namespace creation after breaking kernel changeStefano Brivio2023-08-182-0/+4
* selinux: Use explicit paths for binaries in file contextStefano Brivio2023-08-182-2/+4
* fedora: Install pasta as hard link to ensure SELinux file context matchStefano Brivio2023-08-181-0/+7
* tap: Fix format specifier in tap4_is_fragment() warningStefano Brivio2023-08-161-1/+2
* netlink: Don't propagate host address expiry to the containerDavid Gibson2023-08-161-1/+3
* netlink: Correctly calculate attribute length for address messagesDavid Gibson2023-08-161-2/+2
* netlink: Remove redundant check on nlmsg_typeDavid Gibson2023-08-161-3/+0
* conf: Demote overlapping port ranges error to a warningDavid Gibson2023-08-131-4/+3
* epoll: Use different epoll types for passt and pasta tap fdsDavid Gibson2023-08-134-30/+30
* epoll: Split listening Unix domain socket into its own typeDavid Gibson2023-08-134-16/+15
* epoll: Split handling of listening TCP sockets into their own handlerDavid Gibson2023-08-137-45/+55
* epoll: Split handling of TCP timerfds into its own handler functionDavid Gibson2023-08-134-14/+12
* epoll: Tiny cleanup to udp_sock_handler()David Gibson2023-08-132-3/+2
* epoll: Split handling of ICMP and ICMPv6 socketsDavid Gibson2023-08-133-56/+70
* epoll: Fold sock_handler into general switch on epoll event fdDavid Gibson2023-08-131-27/+27
* epoll: Always use epoll_ref for the epoll data variableDavid Gibson2023-08-134-12/+29
* epoll: Generalize epoll_ref to cover things other than socketsDavid Gibson2023-08-138-56/+86
* tap: Fold reset handling into tap_handler_passt()David Gibson2023-08-131-36/+32
* tap: Fold reset handling into tap_handler_pasta()David Gibson2023-08-131-15/+15
* tap: Clean up behaviour for errors on listening Unix socketDavid Gibson2023-08-131-4/+8
* tap: Clean up tap reset pathDavid Gibson2023-08-131-23/+29
* tap: fix seq->p.count limitLaurent Vivier2023-08-131-6/+6
* netlink: Propagate errors for "dup" operationsDavid Gibson2023-08-043-26/+43
* netlink: Propagate errors for "dump" operationsDavid Gibson2023-08-043-22/+70
* netlink: Always process all responses to a netlink requestDavid Gibson2023-08-041-24/+22
* netlink: Propagate errors for "set" operationsDavid Gibson2023-08-043-24/+62
* netlink: Add nl_foreach_oftype to filter response message typesDavid Gibson2023-08-041-15/+14
* netlink: Split nl_req() to allow processing multiple response datagramsDavid Gibson2023-08-041-68/+113
* netlink: Clearer reasoning about the netlink response buffer sizeDavid Gibson2023-08-041-1/+8
* netlink: Add nl_do() helper for simple operations with error checkingDavid Gibson2023-08-041-12/+47
* netlink: Fill in netlink header fields from nl_req()David Gibson2023-08-041-84/+42
* netlink: Treat send() or recv() errors as fatalDavid Gibson2023-08-041-19/+17