| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2020-01-09 | Merge release-20191213.0-84-g290908f (automated) | gVisor bot | |
| 2020-01-09 | Add test to check iptables redirect port rule | Nayana Bidari | |
| 2020-01-09 | Configure issue reviver to run with Kokoro | Fabricio Voznika | |
| PiperOrigin-RevId: 288921032 | |||
| 2020-01-09 | Avoid panic when c.PCIDs is nil | Lai Jiangshan | |
| When PCID is disabled, there would throw a panic when dropPageTables() access to c.PCID without check. Signed-off-by: Lai Jiangshan <eag0628@gmail.com> | |||
| 2020-01-08 | It works! It drops some packets. | Kevin Krakauer | |
| 2020-01-08 | Merge branch 'iptables-write' into iptables-write-input-drop | Kevin Krakauer | |
| 2020-01-09 | Merge release-20191213.0-83-gd057871 (automated) | gVisor bot | |
| 2020-01-08 | CancellableTimer to encapsulate the work of safely stopping timers | Ghanan Gowripalan | |
| Add a new CancellableTimer type to encapsulate the work of safely stopping timers when it fires at the same time some "related work" is being handled. The term "related work" is some work that needs to be done while having obtained some common lock (L). Example: Say we have an invalidation timer that may be extended or cancelled by some event. Creating a normal timer and simply cancelling may not be sufficient as the timer may have already fired when the event handler attemps to cancel it. Even if the timer and event handler obtains L before doing work, once the event handler releases L, the timer will eventually obtain L and do some unwanted work. To prevent the timer from doing unwanted work, it checks if it should early return instead of doing the normal work after obtaining L. When stopping the timer callers must have L locked so the timer can be safely informed that it should early return. Test: Tests that CancellableTimer fires and resets properly. Test to make sure the timer fn is not called after being stopped within the lock L. PiperOrigin-RevId: 288806984 | |||
| 2020-01-09 | Merge release-20191213.0-82-gfbb2c00 (automated) | gVisor bot | |
| 2020-01-08 | More GH comments. | Kevin Krakauer | |
| 2020-01-08 | Return correct length with MSG_TRUNC for unix sockets. | Ian Lewis | |
| This change calls a new Truncate method on the EndpointReader in RecvMsg for both netlink and unix sockets. This allows readers such as sockets to peek at the length of data without actually reading it to a buffer. Fixes #993 #1240 PiperOrigin-RevId: 288800167 | |||
| 2020-01-09 | Merge release-20191213.0-81-g565b641 (automated) | gVisor bot | |
| 2020-01-08 | Define sizes for extent headers and entries separately to improve clarity. | Dean Deng | |
| PiperOrigin-RevId: 288799694 | |||
| 2020-01-09 | Merge release-20191213.0-80-gb3ae8a6 (automated) | gVisor bot | |
| 2020-01-08 | Addressed GH comments | Kevin Krakauer | |
| 2020-01-08 | Fix slice bounds out of range panic in parsing socket control message. | Ting-Yu Wang | |
| Panic found by syzakller. PiperOrigin-RevId: 288799046 | |||
| 2020-01-09 | Merge release-20191213.0-79-g1c24201 (automated) | gVisor bot | |
| 2020-01-08 | Github bug reviver | Fabricio Voznika | |
| For everyone's joy, this is a tool that reopens issues that have been closed, but are still referenced by TODOs in the code. The idea is to run it in Kokoro nightly. Kokoro changes are coming up next. PiperOrigin-RevId: 288789560 | |||
| 2020-01-08 | Getting a panic when running tests. For some reason the filter table is | Kevin Krakauer | |
| ending up with the wrong chains and is indexing -1 into rules. | |||
| 2020-01-08 | Merge release-20191213.0-78-gd530df2 (automated) | gVisor bot | |
| 2020-01-08 | Introduce tcpip.SockOptBool | Tamir Duberstein | |
| ...and port V6OnlyOption to it. PiperOrigin-RevId: 288789451 | |||
| 2020-01-08 | Merge release-20191213.0-77-ge21c584 (automated) | gVisor bot | |
| 2020-01-08 | Combine various Create*NIC methods into CreateNICWithOptions. | Bert Muthalaly | |
| PiperOrigin-RevId: 288779416 | |||
| 2020-01-08 | Built dead-simple traversal, but now getting depedency cycle error :'( | Kevin Krakauer | |
| 2020-01-08 | Merge release-20191213.0-76-ga271bcc (automated) | gVisor bot | |
| 2020-01-08 | Rename tcpip.SockOpt{,Int} | Tamir Duberstein | |
| PiperOrigin-RevId: 288772878 | |||
| 2020-01-08 | Merge release-20191213.0-75-gd01240d (automated) | gVisor bot | |
| 2020-01-08 | Take addresses as const | Tamir Duberstein | |
| PiperOrigin-RevId: 288767927 | |||
| 2020-01-08 | Added test for unconditional DROP on the filter INPUT chain | Kevin Krakauer | |
| 2020-01-08 | First commit -- re-adding DROP | Kevin Krakauer | |
| 2020-01-08 | Merge release-20191213.0-74-gbb96f52 (automated) | gVisor bot | |
| 2020-01-08 | Merge pull request #1273 from lubinszARM:pr_ring_3 | gVisor bot | |
| PiperOrigin-RevId: 288743614 | |||
| 2020-01-08 | Revert go.mod and go.sum | Kevin Krakauer | |
| 2020-01-08 | Comment cleanup. | Kevin Krakauer | |
| 2020-01-08 | Newline | Kevin Krakauer | |
| 2020-01-08 | Revert filter_input change | Kevin Krakauer | |
| 2020-01-08 | Minor fixes to comments and logging | Kevin Krakauer | |
| 2020-01-08 | Merge release-20191213.0-72-gdb376e1 (automated) | gVisor bot | |
| 2020-01-08 | Make /proc/[pid] offset start at TGID_OFFSET | Fabricio Voznika | |
| Updates #1195 PiperOrigin-RevId: 288725745 | |||
| 2020-01-08 | Merge release-20191213.0-71-g9df0187 (automated) | gVisor bot | |
| 2020-01-08 | Remove redundant function argument | Tamir Duberstein | |
| PacketLooping is already a member on the passed Route. PiperOrigin-RevId: 288721500 | |||
| 2020-01-08 | Write simple ACCEPT rules to the filter table. | Kevin Krakauer | |
| This gets us closer to passing the iptables tests and opens up iptables so it can be worked on by multiple people. A few restrictions are enforced for security (i.e. we don't want to let users write a bunch of iptables rules and then just not enforce them): - Only the filter table is writable. - Only ACCEPT rules with no matching criteria can be added. | |||
| 2020-01-08 | Merge release-20191213.0-70-g0cc1e74 (automated) | gVisor bot | |
| 2020-01-08 | Add NIC.isLoopback() | Bert Muthalaly | |
| ...enabling us to remove the "CreateNamedLoopbackNIC" variant of CreateNIC and all the plumbing to connect it through to where the value is read in FindRoute. PiperOrigin-RevId: 288713093 | |||
| 2020-01-08 | Fix #1522 - implement silly window sydrome protection on rx side | Marek Majkowski | |
| Before, each of small read()'s that raises window either from zero or above threshold of aMSS, would generate an ACK. In a classic silly-window-syndrome scenario, we can imagine a pessimistic case when small read()'s generate a stream of ACKs. This PR fixes that, essentially treating window size < aMSS as zero. We send ACK exactly in a moment when window increases to >= aMSS or half of receive buffer size (whichever smaller). | |||
| 2020-01-08 | Merge release-20191213.0-69-ga53ac73 (automated) | gVisor bot | |
| 2020-01-07 | fs/splice: don't report a partialResult error if there is no data loss | Andrei Vagin | |
| PiperOrigin-RevId: 288642552 | |||
| 2020-01-08 | Merge release-20191213.0-68-ge77ad57 (automated) | gVisor bot | |
| 2020-01-07 | Fix partial_bad_buffer write tests. | Adin Scannell | |
| The write tests are fitted to Linux-specific behavior, but it is not well-specified. Tweak the tests to allow for both acceptable outcomes. PiperOrigin-RevId: 288606386 | |||
| 2020-01-07 | Merge release-20191213.0-67-g4e19d16 (automated) | gVisor bot | |
 |
index : gvisor | |
| Container Runtime Sandbox |
| summaryrefslogtreecommitdiffhomepage |