| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2021-10-06 | Merge release-20210927.0-38-g36a90f10f (automated) | gVisor bot | |
| 2021-10-06 | Clarify incorrect behavior on gVisor | Tamir Duberstein | |
| Linux prevents setting `IP_MULTICAST_IF` to a device when `SO_BINDTODEVICE` is set to another device. gVsior allows this. PiperOrigin-RevId: 401267471 | |||
| 2021-10-06 | Merge release-20210927.0-37-g7d52f6df6 (automated) | gVisor bot | |
| 2021-10-06 | Clarify incorrect behavior on gVisor | Tamir Duberstein | |
| gVisor is a strong host, preventing packets from being sent from a device using the another device's address as the source. Linux is a weak host which allows this. Updates #6686. PiperOrigin-RevId: 401260128 | |||
| 2021-10-06 | Merge release-20210927.0-36-g158372f04 (automated) | gVisor bot | |
| 2021-10-06 | Do not skip IPv6 tests when we don't have IPv4 | Tamir Duberstein | |
| PiperOrigin-RevId: 401251635 | |||
| 2021-10-06 | Merge release-20210927.0-35-ge104c1c47 (automated) | gVisor bot | |
| 2021-10-05 | Merge pull request #6687 from zchee:atomicbitops-nosplit | gVisor bot | |
| PiperOrigin-RevId: 401152818 | |||
| 2021-10-06 | Merge release-20210927.0-33-g5db00ecd9 (automated) | gVisor bot | |
| 2021-10-05 | Centralize skip logic | Tamir Duberstein | |
| - Inline `IfAddrHelper` into its sole user - Implement pretty-printing `sockaddr_ll` - Make test class members private, add const accessors - Log all interface addresses on SetUp for b/137899561 Simplify some things while I'm here. PiperOrigin-RevId: 401112402 | |||
| 2021-10-05 | Merge release-20210927.0-32-g84063e88c (automated) | gVisor bot | |
| 2021-10-05 | Add server implementation for sharedmem endpoints. | Bhasker Hariharan | |
| PiperOrigin-RevId: 401088040 | |||
| 2021-10-05 | Merge release-20210927.0-31-g6f6cf522e (automated) | gVisor bot | |
| 2021-10-05 | Merge pull request #6689 from avagin:bazel-update | gVisor bot | |
| PiperOrigin-RevId: 401053179 | |||
| 2021-10-05 | Merge release-20210927.0-29-g499a1033d (automated) | gVisor bot | |
| 2021-10-05 | Enable passing syscall tests | Tamir Duberstein | |
| PiperOrigin-RevId: 400952164 | |||
| 2021-10-04 | Update bazel packages | Andrei Vagin | |
| 2021-10-04 | Merge release-20210927.0-28-g6c1237da0 (automated) | gVisor bot | |
| 2021-10-04 | Reply to invalid ACKs even when accept queue is full | Arthur Sfez | |
| Before checking if there is space in the accept queue, the listener should verify that the cookie is valid. If it is not, instead of silently dropping the packet, reply with an RST. Fixes #6683 PiperOrigin-RevId: 400807346 | |||
| 2021-10-04 | Merge release-20210921.0-59-g429821b0a (automated) | gVisor bot | |
| 2021-10-04 | Test listener receiving an invalid ACK while the accept queue is full | Arthur Sfez | |
| Updates #6683 PiperOrigin-RevId: 400745768 | |||
| 2021-10-04 | No split to assembly and noasm functions on atomicbitops package | Koichi Shiraishi | |
| Signed-off-by: Koichi Shiraishi <zchee.io@gmail.com> | |||
| 2021-10-02 | Merge release-20210921.0-58-g3bab5e566 (automated) | gVisor bot | |
| 2021-10-01 | Read lock when getting connections | Ghanan Gowripalan | |
| We should avoid taking the write lock to avoid contention when looking for a packet's tracked connection. No need to reap timed out connections when looking for connections as the reaper (which runs periodically) will handle that. PiperOrigin-RevId: 400322514 | |||
| 2021-10-01 | Merge release-20210921.0-57-g51c4fbb84 (automated) | gVisor bot | |
| 2021-10-01 | Drop ConnTrack.handlePacket | Ghanan Gowripalan | |
| Move the hook specific logic to the IPTables hook functions. This lets us avoid having to perform checks on the hook to determine what action to take. Later changes will drop the need for handlePacket's return value, reducing the value of this function that all hooks call into. PiperOrigin-RevId: 400298023 | |||
| 2021-10-01 | Merge release-20210921.0-56-g6e83c4b75 (automated) | gVisor bot | |
| 2021-10-01 | Drop conn.tcbHook | Ghanan Gowripalan | |
| ...as the packet's direction gives us the information that tcbHook is used to derive. PiperOrigin-RevId: 400280102 | |||
| 2021-10-01 | Merge release-20210921.0-55-g8603cce51 (automated) | gVisor bot | |
| 2021-10-01 | Annotate checklocks on mutex protected fields | Ghanan Gowripalan | |
| ...to catch lock-related bugs in nogo tests. Updates #6566. PiperOrigin-RevId: 400265818 | |||
| 2021-10-01 | Merge release-20210921.0-54-geac4d9ab2 (automated) | gVisor bot | |
| 2021-10-01 | Merge pull request #6551 from sudo-sturbia:msgqueue/procfs | gVisor bot | |
| PiperOrigin-RevId: 400258924 | |||
| 2021-10-01 | Merge release-20210921.0-52-g788bbc290 (automated) | gVisor bot | |
| 2021-10-01 | Drop IPTables.checkPackets | Ghanan Gowripalan | |
| ...and have `CheckOutputPackets`, `CheckPostroutingPackets` call their equivalent methods that operate on a single packet buffer directly. This is so that the `Check{Output, Postrouting}Packets` methods may leverage any hook-specific work that `Check{Output, Postrouting}` may perform. Note: Later changes will add hook-specific logic to the `Check{Output, Postrouting}` methods. PiperOrigin-RevId: 400255651 | |||
| 2021-10-01 | Merge release-20210921.0-51-g807337000 (automated) | gVisor bot | |
| 2021-10-01 | Let connection handle tracked packets | Ghanan Gowripalan | |
| ...to save a call to `ConnTrack.connFor` when callers already have a reference to the ConnTrack entry. PiperOrigin-RevId: 400244955 | |||
| 2021-10-01 | Merge release-20210921.0-50-g9d2d2f759 (automated) | gVisor bot | |
| 2021-10-01 | [bm-dashboard] Upgrade vulnerable node packages. | Zach Koopmans | |
| Note: this code is auto generated using npm update. PiperOrigin-RevId: 400227038 | |||
| 2021-10-01 | Merge release-20210921.0-49-g94623ccf5 (automated) | gVisor bot | |
| 2021-10-01 | Use root context to mount volumes | Fabricio Voznika | |
| Fixes #6643 PiperOrigin-RevId: 400218778 | |||
| 2021-10-01 | Merge release-20210921.0-48-g0db2ab932 (automated) | gVisor bot | |
| 2021-10-01 | Move pendingEndpoints to acceptQueue | Tamir Duberstein | |
| This obsoletes the need for the pendingMu and pending, since they are redundant with acceptMu and pendingAccepted. Fixes #6671. PiperOrigin-RevId: 400162391 | |||
| 2021-10-01 | Merge release-20210921.0-47-g84f1578e9 (automated) | gVisor bot | |
| 2021-09-30 | Test syn and accept queue behavior on shutdown | Tamir Duberstein | |
| Enhance the backlog test to exercise the syn queue. Updates #6671. PiperOrigin-RevId: 400094530 | |||
| 2021-09-30 | Merge release-20210921.0-46-g9fff9469a (automated) | gVisor bot | |
| 2021-09-30 | kernel: print PID in addition to TID in task log messages | Andrei Vagin | |
| For multithreads processes, it is hard to read logs without knowing task pids. And let's print a decimal return codeo for syscalls. A hex return code are usefull for system calls that return addresses. For other syscalls, the decimal form is more readable. PiperOrigin-RevId: 400035449 | |||
| 2021-09-30 | Merge release-20210921.0-45-gc12266354 (automated) | gVisor bot | |
| 2021-09-30 | Skip analysis of standard library packages using generics | Michael Pratt | |
| The upstream analysis packages we depend on do not yet support analysis of code using Go 1.18 type parameter features, making analysis of the Go tip standard library choke and crash. Skip these packages for now. PiperOrigin-RevId: 400030256 | |||
| 2021-09-30 | Merge release-20210921.0-44-gb4d4f4bd8 (automated) | gVisor bot | |
| 2021-09-30 | Add timer_create and timer_settime to filters | Michael Pratt | |
| Go 1.18 (as of golang.org/cl/324129) uses per-thread timers created and set with timer_create/timer_settime for more accurate CPU pprof profiling. Add these syscalls to the allowed syscall filters. PiperOrigin-RevId: 399941561 | |||
 |
index : gvisor | |
| Container Runtime Sandbox |
| summaryrefslogtreecommitdiffhomepage |