Changelog:
===========
- bug fix: CVE-2026-41163
- enhancement : New build option -Dsupport_setuid, which if set to false (which
is the default) disables the support for setuid.
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
(cherry picked from commit 8cb0926b53)
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
Bug fixes:
=========
* Reset disposition of 'SIGCHLD', restoring normal subprocess management
if bwrap was run from a process that was ignoring that signal,
such as Erlang or volumeicon
* Don't ignore '--userns 0', '--userns2 0' or '--pidns 0' if used
Note that using a fd number >= 3 for these purposes is still
preferred, to avoid confusion with the stdin, stdout, stderr
that will be inherited by the command inside the container.
* Fix grammar in an error message
* Fix a broken link in the documentation
Internal changes:
==================
* Enable user namespaces in Github Actions configuration, fixing a CI
regression with newer Ubuntu
* Clarify comments
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
Changelog:
===========
- Fix a double-close on error reading from --args, --seccomp or --add-seccomp-fd argument
- Improve memory allocation behaviour
- Silence various compiler warnings
- Silence an Automake warning
- Fix a test failure when running as uid 0 in a container
- Fix a test failure when /mnt is a symlink
- Fix a test failure on NixOS
- Add --argv0
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Wang Mingyu
Gyorgy Sarvari
mark.yang
Markus Volk