Age | Commit message (Collapse) | Author | |
---|---|---|---|
2020-09-01 | Merge release-20200818.0-99-g71589b7f7 (automated) | gVisor bot | |
2020-09-01 | Merge release-20200818.0-98-g0eae08bc9 (automated) | gVisor bot | |
2020-09-01 | Merge release-20200818.0-97-gf4be726fd (automated) | gVisor bot | |
2020-09-01 | Merge release-20200818.0-96-g674843849 (automated) | gVisor bot | |
2020-09-01 | Merge release-20200818.0-95-g101c97d6f (automated) | gVisor bot | |
2020-08-31 | Merge release-20200818.0-94-g170560cec (automated) | gVisor bot | |
2020-08-31 | Merge release-20200818.0-93-g6cdfa4fee (automated) | gVisor bot | |
2020-08-31 | Don't use read-only host FD for writable gofer dentries in VFS2. | Jamie Liu | |
As documented for gofer.dentry.hostFD. PiperOrigin-RevId: 329372319 | |||
2020-08-31 | Merge release-20200818.0-92-g9d0d82088 (automated) | gVisor bot | |
2020-08-31 | Implement walk in gvisor verity fs | gVisor bot | |
Implement walk directories in gvisor verity file system. For each step, the child dentry is verified against a verified parent root hash. PiperOrigin-RevId: 329358747 | |||
2020-08-31 | Merge release-20200818.0-89-ga3d189301 (automated) | gVisor bot | |
2020-08-29 | Merge release-20200818.0-88-g3bee863ae (automated) | gVisor bot | |
2020-08-29 | Merge release-20200818.0-87-gf6ddcbefa (automated) | gVisor bot | |
2020-08-28 | Merge release-20200818.0-86-gd3057717d (automated) | gVisor bot | |
2020-08-28 | Merge release-20200818.0-85-gd5787f628 (automated) | gVisor bot | |
2020-08-28 | Merge release-20200818.0-84-gb4820e598 (automated) | gVisor bot | |
2020-08-28 | Implement StatFS for various VFS2 filesystems. | Rahat Mahmood | |
This mainly involved enabling kernfs' client filesystems to provide a StatFS implementation. Fixes #3411, #3515. PiperOrigin-RevId: 329009864 | |||
2020-08-28 | Merge release-20200818.0-83-gbdd5996a7 (automated) | gVisor bot | |
2020-08-28 | Merge release-20200818.0-80-g7bc9f9b47 (automated) | gVisor bot | |
2020-08-28 | Merge release-20200818.0-79-g8ae0ab722 (automated) | gVisor bot | |
2020-08-28 | Merge release-20200818.0-78-g421e35020 (automated) | gVisor bot | |
2020-08-28 | Merge release-20200818.0-77-g84f04909c (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-76-gdc008fbbc (automated) | gVisor bot | |
2020-08-27 | unix: return ECONNREFUSE if a socket file exists but a socket isn't bound to it | Andrei Vagin | |
PiperOrigin-RevId: 328843560 | |||
2020-08-27 | Merge release-20200818.0-75-g57877b420 (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-74-g6f8fb7e0d (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-73-g29d528399 (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-71-g26c588f06 (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-69-gdc81eb9c3 (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-68-g01a35a2f1 (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-67-g140ffb600 (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-66-g32e7a54f7 (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-65-ga4b1c6f5a (automated) | gVisor bot | |
2020-08-27 | Merge release-20200818.0-63-g38895db3a (automated) | gVisor bot | |
2020-08-26 | Merge release-20200818.0-61-g983a55aa0 (automated) | gVisor bot | |
2020-08-26 | Merge release-20200818.0-60-g366f1a8f1 (automated) | gVisor bot | |
2020-08-26 | Remove spurious fd.IncRef(). | Nicolas Lacasse | |
PiperOrigin-RevId: 328583461 | |||
2020-08-26 | Merge release-20200818.0-59-gb03e0ee80 (automated) | gVisor bot | |
2020-08-26 | Merge release-20200818.0-58-g83a8b309e (automated) | gVisor bot | |
2020-08-26 | tmpfs: Allow xattrs in the trusted namespace if creds has CAP_SYS_ADMIN. | Nicolas Lacasse | |
This is needed to support the overlay opaque attribute. PiperOrigin-RevId: 328552985 | |||
2020-08-26 | Merge release-20200818.0-56-gdf3c105f4 (automated) | gVisor bot | |
2020-08-25 | Use new reference count utility throughout gvisor. | Dean Deng | |
This uses the refs_vfs2 template in vfs2 as well as objects common to vfs1 and vfs2. Note that vfs1-only refcounts are not replaced, since vfs1 will be deleted soon anyway. The following structs now use the new tool, with leak check enabled: devpts:rootInode fuse:inode kernfs:Dentry kernfs:dir kernfs:readonlyDir kernfs:StaticDirectory proc:fdDirInode proc:fdInfoDirInode proc:subtasksInode proc:taskInode proc:tasksInode vfs:FileDescription vfs:MountNamespace vfs:Filesystem sys:dir kernel:FSContext kernel:ProcessGroup kernel:Session shm:Shm mm:aioMappable mm:SpecialMappable transport:queue And the following use the template, but because they currently are not leak checked, a TODO is left instead of enabling leak check in this patch: kernel:FDTable tun:tunEndpoint Updates #1486. PiperOrigin-RevId: 328460377 | |||
2020-08-25 | Merge release-20200818.0-55-g247dcd62d (automated) | gVisor bot | |
2020-08-25 | Return non-zero size for tmpfs statfs(2). | Jamie Liu | |
This does not implement accepting or enforcing any size limit, which will be more complex and has performance implications; it just returns a fixed non-zero size. Updates #1936 PiperOrigin-RevId: 328428588 | |||
2020-08-25 | Merge release-20200818.0-54-gcb573c8e0 (automated) | gVisor bot | |
2020-08-25 | Expose basic coverage information to userspace through kcov interface. | Dean Deng | |
In Linux, a kernel configuration is set that compiles the kernel with a custom function that is called at the beginning of every basic block, which updates the memory-mapped coverage information. The Go coverage tool does not allow us to inject arbitrary instructions into basic blocks, but it does provide data that we can convert to a kcov-like format and transfer them to userspace through a memory mapping. Note that this is not a strict implementation of kcov, which is especially tricky to do because we do not have the same coverage tools available in Go that that are available for the actual Linux kernel. In Linux, a kernel configuration is set that compiles the kernel with a custom function that is called at the beginning of every basic block to write program counters to the kcov memory mapping. In Go, however, coverage tools only give us a count of basic blocks as they are executed. Every time we return to userspace, we collect the coverage information and write out PCs for each block that was executed, providing userspace with the illusion that the kcov data is always up to date. For convenience, we also generate a unique synthetic PC for each block instead of using actual PCs. Finally, we do not provide thread-specific coverage data (each kcov instance only contains PCs executed by the thread owning it); instead, we will supply data for any file specified by -- instrumentation_filter. Also, fix issue in nogo that was causing pkg/coverage:coverage_nogo compilation to fail. PiperOrigin-RevId: 328426526 | |||
2020-08-25 | Merge release-20200818.0-52-g430487c9e (automated) | gVisor bot | |
2020-08-25 | [go-marshal] Enable auto-marshalling for host tty. | Ayush Ranjan | |
PiperOrigin-RevId: 328415633 | |||
2020-08-25 | Merge release-20200818.0-51-gbee07a2d6 (automated) | gVisor bot | |
2020-08-25 | Merge release-20200818.0-50-gc28bbee99 (automated) | gVisor bot | |