netbird/gvisor
0
0
Fork 0
mirror of https://github.com/netbirdio/gvisor.git synced 2026-05-22 17:12:49 -07:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • fe8ca76c22 Implement Subnet removal Tamir Duberstein 2018-09-05 17:05:09 -07:00
  • b3b66dbd1f Enable constructing a Prependable from a View without allocating. Bert Muthalaly 2018-09-05 16:46:47 -07:00
  • 12aef686af Enabled bind mounts in sub-containers Fabricio Voznika 2018-09-05 14:28:52 -07:00
  • 0c7cfca0da Running container should have a valid sandbox Fabricio Voznika 2018-09-05 14:01:25 -07:00
  • 4b57fd920d Add MADVISE to fsgofer seccomp profile Fabricio Voznika 2018-09-05 13:16:49 -07:00
  • 1d22d87fdc Move multi-container test to a single file Fabricio Voznika 2018-09-05 13:12:15 -07:00
  • f96b33c73c runsc: Promote getExecutablePathInternal to getExecutablePath. Nicolas Lacasse 2018-09-05 13:00:08 -07:00
  • bc5e18c9d1 Implement TCP keepalives Tamir Duberstein 2018-09-05 11:47:21 -07:00
  • 2b8dae0bc5 Open(2) isn't honoring O_NOFOLLOW Brian Geffon 2018-09-05 09:20:18 -07:00
  • 0a9a40abcd runsc: Run sandbox as user nobody. Nicolas Lacasse 2018-09-04 20:31:52 -07:00
  • ad8648c634 runsc: Pass log and config files to sandbox process by FD. Nicolas Lacasse 2018-09-04 20:08:41 -07:00
  • 2cff07381a Automated rollback of changelist 211156845 Bhasker Hariharan 2018-09-04 14:30:15 -07:00
  • 9ae4e28f75 runsc: fix container rootfs path. Lantao Liu 2018-09-04 13:36:26 -07:00
  • 3944cb41cb /proc/PID/mounts is not tab-delimited Michael Pratt 2018-09-04 13:28:37 -07:00
  • ab7174611c Remove epoll_wait from filters Michael Pratt 2018-09-04 13:08:59 -07:00
  • 3794cb6bff Expose TCP RTT Tamir Duberstein 2018-09-04 12:38:31 -07:00
  • c09f9acd7c Distinguish Element and Linker for ilist. Adin Scannell 2018-09-04 09:18:00 -07:00
  • 66c03b3dd7 Mounting over '/tmp' may fail Fabricio Voznika 2018-08-31 16:11:07 -07:00
  • f0d8817654 Automated rollback of changelist 211103930 Googler 2018-08-31 15:47:49 -07:00
  • f8ccfbbed4 Document more task-goroutine-owned fields in kernel.Task. Jamie Liu 2018-08-31 15:43:32 -07:00
  • 7713e2cb75 Remove not used deps Fabricio Voznika 2018-08-31 14:46:29 -07:00
  • b935311e23 Do not use fs.FileOwnerFromContext in fs/proc.file.UnstableAttr(). Jamie Liu 2018-08-31 14:16:36 -07:00
  • 098046ba19 Disintegrate kernel.TaskResources. Jamie Liu 2018-08-31 13:57:02 -07:00
  • b1c1afa3cc Delete the long-obsolete kernel.TaskMaybe interface. Jamie Liu 2018-08-31 13:06:16 -07:00
  • 7e18f158b2 Automated rollback of changelist 210995199 Fabricio Voznika 2018-08-31 11:29:36 -07:00
  • be9f454eb6 runsc: Set volume mount rslave. Lantao Liu 2018-08-31 11:01:57 -07:00
  • 625edb9f28 ipv6: ICMP support Tamir Duberstein 2018-08-31 10:22:06 -07:00
  • 08bfb5643c Add other missing dep Michael Pratt 2018-08-31 10:21:02 -07:00
  • e669697241 Fix RunAsRoot arguments forwarding Fabricio Voznika 2018-08-31 09:44:31 -07:00
  • 3f04bd68b2 Add missing import Tamir Duberstein 2018-08-31 08:06:58 -07:00
  • 3e493adf7a Add seccomp filter to fsgofer Fabricio Voznika 2018-08-30 17:29:14 -07:00
  • 5ade9350ad runsc: Pass log and config files to sandbox process by FD. Nicolas Lacasse 2018-08-30 15:46:12 -07:00
  • 8bfb5fa919 fs: Add empty dir at /sys/class/power_supply. Nicolas Lacasse 2018-08-30 12:00:27 -07:00
  • 313d4af52d ping: update comment about UDP Ian Gudger 2018-08-29 14:14:32 -07:00
  • 956fe64ad6 fs: Fix renameMu lock recursion. Nicolas Lacasse 2018-08-29 11:45:23 -07:00
  • 1893247616 fs: Drop reference to over-written file before renaming over it. Nicolas Lacasse 2018-08-29 11:21:21 -07:00
  • 52e6714146 fasync: don't keep mutex after return Ian Gudger 2018-08-28 17:25:13 -07:00
  • 30c025f3ef Add argument checks to seccomp Fabricio Voznika 2018-08-28 17:08:49 -07:00
  • 3b11769c77 fs: Don't bother saving negative dirents. Nicolas Lacasse 2018-08-28 15:17:32 -07:00
  • 515d9bf43b fs: Add tests for dirent ref counting with an overlay. Nicolas Lacasse 2018-08-28 15:08:15 -07:00
  • d724863a31 sentry: optimize dirent weakref map save / restore. Zhaozhong Ni 2018-08-28 13:20:54 -07:00
  • ea113a4380 Drop support for Go 1.10 Michael Pratt 2018-08-28 12:55:11 -07:00
  • d8f0db9bcf runsc: unmount volume mounts when destroy container. Lantao Liu 2018-08-28 11:52:56 -07:00
  • f7366e4e64 Consolidate image tests into a single file Fabricio Voznika 2018-08-28 11:29:53 -07:00
  • 25a8e13a78 Bump to Go 1.11 Michael Pratt 2018-08-28 09:20:17 -07:00
  • d08ccdaaad sentry: avoid double counting map objects in save / restore stats. Zhaozhong Ni 2018-08-28 09:20:05 -07:00
  • ae648bafda Add command-line parameter to trigger panic on signal Fabricio Voznika 2018-08-27 20:35:00 -07:00
  • a4529c1b5b runsc: Fix readonly filesystem causing failure to create containers. Kevin Krakauer 2018-08-27 20:33:38 -07:00
  • f0492d45aa Add /proc/sys/kernel/shm[all,max,mni]. Brian Geffon 2018-08-27 17:20:36 -07:00
  • 0923bcf06b Add various statistics Tamir Duberstein 2018-08-27 15:28:38 -07:00
  • 0b3bfe2ea3 fs: Fix remote-revalidate cache policy. Nicolas Lacasse 2018-08-27 14:25:21 -07:00
  • 5999767d53 runsc: fsgofer should return a unique QID.Path for each file. Nicolas Lacasse 2018-08-27 13:50:50 -07:00
  • b9ded9bf39 Add runsc-race target. Adin Scannell 2018-08-27 13:35:50 -07:00
  • bd01816c87 sentry: mark fsutil.DirFileOperations as savable. Zhaozhong Ni 2018-08-27 11:54:15 -07:00
  • db81c0b02f Put fsgofer inside chroot Fabricio Voznika 2018-08-27 11:09:06 -07:00
  • 2524111fc6 runsc: Terminal resizing support. Kevin Krakauer 2018-08-27 10:48:02 -07:00
  • b17e80ef5a Upstreaming DHCP changes from Fuchsia Tamir Duberstein 2018-08-25 06:16:34 -07:00
  • 106de2182d runsc: Terminal support for "docker exec -ti". Nicolas Lacasse 2018-08-24 17:42:30 -07:00
  • c48708a041 fs: Drop unused WaitGroup in Dirent.destroy. Nicolas Lacasse 2018-08-24 17:14:38 -07:00
  • a6b00502b0 compressio: support optional hashing and eliminate hashio. Zhaozhong Ni 2018-08-24 14:52:23 -07:00
  • 02dfceab6d runsc: Allow runsc to properly search the PATH for executable name. Kevin Krakauer 2018-08-24 14:41:38 -07:00
  • 7b0dfb0cdb SyscallRules merge and add were dropping AllowAny rules Fabricio Voznika 2018-08-24 11:38:12 -07:00
  • a81a4402a2 Add option to panic gofer if writes are attempted over RO mounts Fabricio Voznika 2018-08-24 10:16:38 -07:00
  • 64403265a0 Implement POSIX per-process interval timers. Jamie Liu 2018-08-23 16:31:25 -07:00
  • e855e9cebc netstack: make listening tcp socket close state setting and cleanup atomic. Zhaozhong Ni 2018-08-23 16:13:22 -07:00
  • ba8f6ba8c8 sentry: mark idMapSeqHandle as savable. Zhaozhong Ni 2018-08-23 13:57:30 -07:00
  • 001a4c2493 Clean up syscall filters Fabricio Voznika 2018-08-23 11:14:02 -07:00
  • abe7764928 Encapsulate netstack metrics Ian Gudger 2018-08-23 08:54:09 -07:00
  • a78df1d874 runsc: De-flakes container_test TestMultiContainerSanity. Kevin Krakauer 2018-08-22 17:54:18 -07:00
  • a7a8d07d7d Add separate Recycle method for allocator. Adin Scannell 2018-08-22 14:14:32 -07:00
  • bbee911179 Allow building on !linux Googler 2018-08-22 13:29:57 -07:00
  • 6b9133ba96 sentry: mark S/R stating errors as save rejections / fs corruptions. Zhaozhong Ni 2018-08-22 13:18:21 -07:00
  • 545ea7ab3f Always add AT_BASE even if there is no interpreter. Brian Geffon 2018-08-22 12:35:40 -07:00
  • 23ca133657 Fix typo Fabricio Voznika 2018-08-22 10:34:12 -07:00
  • 8d318aac55 fs: Hold Dirent.mu when calling Dirent.flush(). Nicolas Lacasse 2018-08-22 10:05:56 -07:00
  • 3c5ec25f1c Mark postgres as not supported Fabricio Voznika 2018-08-22 09:47:20 -07:00
  • e2ab7ec39e Fix TestUnixDomainSockets failure when path is too large Fabricio Voznika 2018-08-21 23:06:11 -07:00
  • 8bb50dab79 sentry: do not release gofer inode file state loading lock upon error. Zhaozhong Ni 2018-08-21 16:51:08 -07:00
  • e29a02239e binary: append slices Ian Gudger 2018-08-21 16:25:00 -07:00
  • ae68e9e751 Temporarily skip multi-container tests in container_test until deflaked. Kevin Krakauer 2018-08-21 16:19:59 -07:00
  • a316f83977 Expose route table Googler 2018-08-21 15:25:50 -07:00
  • 19ef2ad1fe nonExclusiveFS is causing timeout with --race Fabricio Voznika 2018-08-21 14:34:00 -07:00
  • a854678bc3 Move container_test to the container package Fabricio Voznika 2018-08-21 14:01:14 -07:00
  • 45e759a1fa Build PCAP file with atomic blocking writes Ian Gudger 2018-08-21 13:48:10 -07:00
  • d6d165cb0b Initial change for multi-gofer support Fabricio Voznika 2018-08-21 13:13:34 -07:00
  • 9c407382b0 Fix races in kernel.(*Task).Value() Ian Gudger 2018-08-21 11:15:15 -07:00
  • 47d5a12ce5 Fix handling of abstract Unix socket addresses Ian Gudger 2018-08-20 16:08:32 -07:00
  • 1501400d9c getdents should return type=DT_DIR for SpecialDirectories. Nicolas Lacasse 2018-08-20 11:58:46 -07:00
  • 0fc7b30695 Standardize mounts in tests Fabricio Voznika 2018-08-20 11:25:42 -07:00
  • 0050e3e71c sysfs: Add (empty) cpu directories for each cpu in /sys/devices/system/cpu. Nicolas Lacasse 2018-08-20 11:18:06 -07:00
  • 11800311a5 Add nonExclusiveFS dimension to more tests Fabricio Voznika 2018-08-17 13:05:59 -07:00
  • aeec7a4c00 fs: Support possible and online knobs for cpu Chenggang Qin 2018-08-16 16:27:14 -07:00
  • fbd5df9c6f Internal change. Googler 2018-08-16 15:32:42 -07:00
  • da087e66cc Combine functions to search for file under one common function Fabricio Voznika 2018-08-16 10:54:21 -07:00
  • eacbe6a678 Remove obsolete comment about panicking Ian Gudger 2018-08-15 17:00:54 -07:00
  • 635b0c4593 runsc fsgofer: Support dynamic serving of filesystems. Kevin Krakauer 2018-08-15 16:24:07 -07:00
  • 2033f61aae runsc: Fix instances of file access "proxy". Nicolas Lacasse 2018-08-15 09:33:19 -07:00
  • a620bea045 Reduce map lookups in syserr Ian Gudger 2018-08-14 19:02:36 -07:00
  • e8a4f2e133 runsc: Change cache policy for root fs and volume mounts. Nicolas Lacasse 2018-08-14 16:24:46 -07:00
  • d4939f6dc2 TTY: Fix data race where calls into tty.queue's waiter were not synchronized. Kevin Krakauer 2018-08-14 16:21:38 -07:00