| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2021-10-04 | Merge release-20210927.0-28-g6c1237da0 (automated) | gVisor bot | |
| 2021-10-04 | Reply to invalid ACKs even when accept queue is full | Arthur Sfez | |
| Before checking if there is space in the accept queue, the listener should verify that the cookie is valid. If it is not, instead of silently dropping the packet, reply with an RST. Fixes #6683 PiperOrigin-RevId: 400807346 | |||
| 2021-10-04 | Merge release-20210921.0-59-g429821b0a (automated) | gVisor bot | |
| 2021-10-04 | Test listener receiving an invalid ACK while the accept queue is full | Arthur Sfez | |
| Updates #6683 PiperOrigin-RevId: 400745768 | |||
| 2021-10-02 | Merge release-20210921.0-58-g3bab5e566 (automated) | gVisor bot | |
| 2021-10-01 | Read lock when getting connections | Ghanan Gowripalan | |
| We should avoid taking the write lock to avoid contention when looking for a packet's tracked connection. No need to reap timed out connections when looking for connections as the reaper (which runs periodically) will handle that. PiperOrigin-RevId: 400322514 | |||
| 2021-10-01 | Merge release-20210921.0-57-g51c4fbb84 (automated) | gVisor bot | |
| 2021-10-01 | Drop ConnTrack.handlePacket | Ghanan Gowripalan | |
| Move the hook specific logic to the IPTables hook functions. This lets us avoid having to perform checks on the hook to determine what action to take. Later changes will drop the need for handlePacket's return value, reducing the value of this function that all hooks call into. PiperOrigin-RevId: 400298023 | |||
| 2021-10-01 | Merge release-20210921.0-56-g6e83c4b75 (automated) | gVisor bot | |
| 2021-10-01 | Drop conn.tcbHook | Ghanan Gowripalan | |
| ...as the packet's direction gives us the information that tcbHook is used to derive. PiperOrigin-RevId: 400280102 | |||
| 2021-10-01 | Merge release-20210921.0-55-g8603cce51 (automated) | gVisor bot | |
| 2021-10-01 | Annotate checklocks on mutex protected fields | Ghanan Gowripalan | |
| ...to catch lock-related bugs in nogo tests. Updates #6566. PiperOrigin-RevId: 400265818 | |||
| 2021-10-01 | Merge release-20210921.0-54-geac4d9ab2 (automated) | gVisor bot | |
| 2021-10-01 | Merge pull request #6551 from sudo-sturbia:msgqueue/procfs | gVisor bot | |
| PiperOrigin-RevId: 400258924 | |||
| 2021-10-01 | Merge release-20210921.0-52-g788bbc290 (automated) | gVisor bot | |
| 2021-10-01 | Drop IPTables.checkPackets | Ghanan Gowripalan | |
| ...and have `CheckOutputPackets`, `CheckPostroutingPackets` call their equivalent methods that operate on a single packet buffer directly. This is so that the `Check{Output, Postrouting}Packets` methods may leverage any hook-specific work that `Check{Output, Postrouting}` may perform. Note: Later changes will add hook-specific logic to the `Check{Output, Postrouting}` methods. PiperOrigin-RevId: 400255651 | |||
| 2021-10-01 | Merge release-20210921.0-51-g807337000 (automated) | gVisor bot | |
| 2021-10-01 | Let connection handle tracked packets | Ghanan Gowripalan | |
| ...to save a call to `ConnTrack.connFor` when callers already have a reference to the ConnTrack entry. PiperOrigin-RevId: 400244955 | |||
| 2021-10-01 | Merge release-20210921.0-50-g9d2d2f759 (automated) | gVisor bot | |
| 2021-10-01 | [bm-dashboard] Upgrade vulnerable node packages. | Zach Koopmans | |
| Note: this code is auto generated using npm update. PiperOrigin-RevId: 400227038 | |||
| 2021-10-01 | Merge release-20210921.0-49-g94623ccf5 (automated) | gVisor bot | |
| 2021-10-01 | Use root context to mount volumes | Fabricio Voznika | |
| Fixes #6643 PiperOrigin-RevId: 400218778 | |||
| 2021-10-01 | Merge release-20210921.0-48-g0db2ab932 (automated) | gVisor bot | |
| 2021-10-01 | Move pendingEndpoints to acceptQueue | Tamir Duberstein | |
| This obsoletes the need for the pendingMu and pending, since they are redundant with acceptMu and pendingAccepted. Fixes #6671. PiperOrigin-RevId: 400162391 | |||
| 2021-10-01 | Merge release-20210921.0-47-g84f1578e9 (automated) | gVisor bot | |
| 2021-09-30 | Test syn and accept queue behavior on shutdown | Tamir Duberstein | |
| Enhance the backlog test to exercise the syn queue. Updates #6671. PiperOrigin-RevId: 400094530 | |||
| 2021-09-30 | Merge release-20210921.0-46-g9fff9469a (automated) | gVisor bot | |
| 2021-09-30 | kernel: print PID in addition to TID in task log messages | Andrei Vagin | |
| For multithreads processes, it is hard to read logs without knowing task pids. And let's print a decimal return codeo for syscalls. A hex return code are usefull for system calls that return addresses. For other syscalls, the decimal form is more readable. PiperOrigin-RevId: 400035449 | |||
| 2021-09-30 | Merge release-20210921.0-45-gc12266354 (automated) | gVisor bot | |
| 2021-09-30 | Skip analysis of standard library packages using generics | Michael Pratt | |
| The upstream analysis packages we depend on do not yet support analysis of code using Go 1.18 type parameter features, making analysis of the Go tip standard library choke and crash. Skip these packages for now. PiperOrigin-RevId: 400030256 | |||
| 2021-09-30 | Merge release-20210921.0-44-gb4d4f4bd8 (automated) | gVisor bot | |
| 2021-09-30 | Add timer_create and timer_settime to filters | Michael Pratt | |
| Go 1.18 (as of golang.org/cl/324129) uses per-thread timers created and set with timer_create/timer_settime for more accurate CPU pprof profiling. Add these syscalls to the allowed syscall filters. PiperOrigin-RevId: 399941561 | |||
| 2021-09-30 | Merge release-20210921.0-43-gdb88937ab (automated) | gVisor bot | |
| 2021-09-29 | Setup sniffer teardown earlier | Tamir Duberstein | |
| This prevents an iptables failure from deadlocking the test. PiperOrigin-RevId: 399822238 | |||
| 2021-09-29 | Merge release-20210921.0-42-gf4340b0c9 (automated) | gVisor bot | |
| 2021-09-29 | Avoid comparisons to zero value of acceptQueue | Tamir Duberstein | |
| PiperOrigin-RevId: 399765414 | |||
| 2021-09-29 | Merge release-20210921.0-41-g36b36a8a7 (automated) | gVisor bot | |
| 2021-09-29 | Rename accepted -> acceptQueue | Tamir Duberstein | |
| Rename cap -> capacity to avoid collision with the builtin. PiperOrigin-RevId: 399753630 | |||
| 2021-09-29 | Merge release-20210921.0-40-g5aa37994c (automated) | gVisor bot | |
| 2021-09-29 | Remove syncRcvdCount | Tamir Duberstein | |
| This is redundant with listenContext.pendingEndpoints PiperOrigin-RevId: 399722472 | |||
| 2021-09-29 | Merge release-20210921.0-39-g65698b627 (automated) | gVisor bot | |
| 2021-09-28 | Move `safecopy.ReplaceSignalHandler` into `sighandling` package. | Etienne Perot | |
| PiperOrigin-RevId: 399560357 | |||
| 2021-09-28 | Merge release-20210921.0-38-gfa4c30c63 (automated) | gVisor bot | |
| 2021-09-28 | Inline handleSynSegment | Tamir Duberstein | |
| This function has only one caller. Remove segment reference count manipulation since it is only used synchronously. PiperOrigin-RevId: 399525343 | |||
| 2021-09-28 | Merge release-20210921.0-37-ged083bac4 (automated) | gVisor bot | |
| 2021-09-28 | Support naive Masquerade NAT target | Ghanan Gowripalan | |
| * Does not accept a port range (Issue #5772). * Does not support checking for tuple conflits (Issue #5773). PiperOrigin-RevId: 399524088 | |||
| 2021-09-27 | Merge release-20210921.0-36-ge251f6cc5 (automated) | gVisor bot | |
| 2021-09-27 | Move `sighandling` package out of `sentry`. | Etienne Perot | |
| PiperOrigin-RevId: 399295737 | |||
| 2021-09-27 | Merge release-20210921.0-35-gdc64617d5 (automated) | gVisor bot | |
| 2021-09-27 | Implement S/R for Stats | Tamir Duberstein | |
| PiperOrigin-RevId: 399276940 | |||
 |
index : gvisor | |
| Container Runtime Sandbox |
| summaryrefslogtreecommitdiffhomepage |