| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-10-15 | Merge release-20190806.1-271-ga295616 (automated) | gVisor bot | |
| 2019-10-15 | Make Attach no longer a special snowflake | Michael Pratt | |
| fsgofer.attachPoint.Attach has a bunch of funky special logic to create a RW file or connect a socket rather than creating a standard control file like localFile.Walk. This is unecessary and error-prone, as the attach point still has to go through Open or Connect which will properly convert the control file to something usable. As such, switch the logic to be equivalent to a simple Walk. Updates #235 PiperOrigin-RevId: 274827872 | |||
| 2019-10-15 | Merge release-20190806.1-270-gbfa0bb2 (automated) | gVisor bot | |
| 2019-10-14 | Merge pull request #997 from dvrkps:patch-1 | gVisor bot | |
| PiperOrigin-RevId: 274675428 | |||
| 2019-10-11 | Set base to root | Davor Kapsa | |
| 2019-10-10 | Merge release-20190806.1-261-g0653391 (automated) | gVisor bot | |
| 2019-10-10 | Update TODO for OCI seccomp support. | Ian Lewis | |
| PiperOrigin-RevId: 274042343 | |||
| 2019-10-10 | Remove unnecessary assignment to path | Davor Kapsa | |
| 2019-10-10 | Merge release-20190806.1-260-ga5170fd (automated) | gVisor bot | |
| 2019-10-10 | Allow rt_sigreturn in runsc gofer | Michael Pratt | |
| rt_sigreturn is required for signal handling (e.g., SIGSEGV for nil-pointer dereference). Before this, nil-pointer dereferences cause a syscall violation instead of a panic. PiperOrigin-RevId: 274028767 | |||
| 2019-10-08 | Merge release-20190806.1-250-ga357fe4 (automated) | gVisor bot | |
| 2019-10-08 | Remove stale TODO | Fabricio Voznika | |
| PiperOrigin-RevId: 273630282 | |||
| 2019-10-08 | Merge release-20190806.1-249-gb9cdbc2 (automated) | gVisor bot | |
| 2019-10-08 | Ignore mount options that are not supported in shared mounts | Fabricio Voznika | |
| Options that do not change mount behavior inside the Sentry are irrelevant and should not be used when looking for possible incompatibilities between master and slave mounts. PiperOrigin-RevId: 273593486 | |||
| 2019-10-08 | Merge release-20190806.1-247-g7c1587e (automated) | gVisor bot | |
| 2019-10-07 | Implement IP_TTL. | Ian Gudger | |
| Also change the default TTL to 64 to match Linux. PiperOrigin-RevId: 273430341 | |||
| 2019-10-07 | Add tests for $HOME | Ian Lewis | |
| Adds two tests. One to make sure that $HOME is set when starting a container via 'docker run' and one to make sure that $HOME is set for each container in a multi-container sandbox. Issue #701 PiperOrigin-RevId: 273395763 | |||
| 2019-10-07 | Merge release-20190806.1-244-g6a98237 (automated) | gVisor bot | |
| 2019-10-07 | Rename epsocket to netstack. | Kevin Krakauer | |
| PiperOrigin-RevId: 273365058 | |||
| 2019-10-01 | runsc: remove todo from the build file | Andrei Vagin | |
| b/135475885 was fixed by cl/271434565. PiperOrigin-RevId: 272320178 | |||
| 2019-10-01 | Merge release-20190806.1-220-g90e908f (automated) | gVisor bot | |
| 2019-10-01 | Merge pull request #917 from KentaTada:fix-clone-flags | gVisor bot | |
| PiperOrigin-RevId: 272262368 | |||
| 2019-10-01 | Merge release-20190806.1-218-g0b02c3d (automated) | gVisor bot | |
| 2019-10-01 | Prevent CAP_NET_RAW from appearing in exec | Fabricio Voznika | |
| 'docker exec' was getting CAP_NET_RAW even when --net-raw=false because it was not filtered out from when copying container's capabilities. PiperOrigin-RevId: 272260451 | |||
| 2019-09-27 | bazel: use rules_pkg from https://github.com/bazelbuild/ | Andrei Vagin | |
| BUILD:85:1: in _pkg_deb rule //runsc:runsc-debian: target '//runsc:runsc-debian' depends on deprecated target '@bazel_tools//tools/build_defs/pkg:make_deb': The internal version of make_deb is deprecated. Please use the replacement for pkg_deb from https://github.com/bazelbuild/rules_pkg/blob/master/pkg. PiperOrigin-RevId: 271590386 | |||
| 2019-09-27 | Merge release-20190806.1-198-g8337e4f (automated) | gVisor bot | |
| 2019-09-26 | Disallow opening of sockets if --fsgofer-host-uds=false | Fabricio Voznika | |
| Updates #235 PiperOrigin-RevId: 271475319 | |||
| 2019-09-26 | runsc: add the clone flag of cgroup namespace | Kenta Tada | |
| Signed-off-by: Kenta Tada <Kenta.Tada@sony.com> | |||
| 2019-09-25 | Merge release-20190806.1-195-gdd0e5ee (automated) | gVisor bot | |
| 2019-09-25 | Merge pull request #765 from trailofbits:uds_support | gVisor bot | |
| PiperOrigin-RevId: 271235134 | |||
| 2019-09-25 | Merge release-20190806.1-184-g129c67d (automated) | gVisor bot | |
| 2019-09-25 | Fix runsc log collection in kokoro | Fabricio Voznika | |
| PiperOrigin-RevId: 271207152 | |||
| 2019-09-25 | Merge release-20190806.1-183-g59ccbb1 (automated) | gVisor bot | |
| 2019-09-25 | Remove centralized registration of protocols. | Kevin Krakauer | |
| Also removes the need for protocol names. PiperOrigin-RevId: 271186030 | |||
| 2019-09-24 | Remove unecessary seccomp permission. | Robert Tonic | |
| This removes the F_DUPFD_CLOEXEC support for the gofer, previously required when depending on the STL net package. | |||
| 2019-09-24 | Refactor command line options and remove the allowed terminology for uds | Robert Tonic | |
| 2019-09-24 | Merge release-20190806.1-176-g91abeb1 (automated) | gVisor bot | |
| 2019-09-24 | Merge pull request #812 from lubinszARM:pr_dup3_arm | gVisor bot | |
| PiperOrigin-RevId: 270957224 | |||
| 2019-09-24 | Merge release-20190806.1-172-gf2ea8e6 (automated) | gVisor bot | |
| 2019-09-23 | Always set HOME env var with `runsc exec`. | Nicolas Lacasse | |
| We already do this for `runsc run`, but need to do the same for `runsc exec`. PiperOrigin-RevId: 270793459 | |||
| 2019-09-19 | Update InstallUDSFilters documentation to be accurate to functionality. | Robert Tonic | |
| 2019-09-19 | Fix documentation, clean up seccomp filter installation, rename helpers. | Robert Tonic | |
| Filter installation has been streamlined and functions renamed. Documentation has been fixed to be standards compliant, and missing documentation added. gofmt has also been applied to modified files. | |||
| 2019-09-19 | Place the host UDS mounting behind --fsgofer-host-uds-allowed. | Robert Tonic | |
| This commit allows the use of the `--fsgofer-host-uds-allowed` flag to enable mounting sockets and add the appropriate seccomp filters. | |||
| 2019-09-18 | Shard the runtime tests. | Nicolas Lacasse | |
| Default of 20 shards was arbitrary and will need fine-tuning in later CLs. PiperOrigin-RevId: 269922871 | |||
| 2019-09-16 | Merge release-20190806.1-146-g010b093 (automated) | gVisor bot | |
| 2019-09-16 | Bring back to life features lost in recent refactor | Fabricio Voznika | |
| - Sandbox logs are generated when running tests - Kokoro uploads the sandbox logs - Supports multiple parallel runs - Revive script to install locally built runsc with docker PiperOrigin-RevId: 269337274 | |||
| 2019-09-13 | Merge release-20190806.1-143-ga8834fc (automated) | gVisor bot | |
| 2019-09-12 | Update p9 to support flipcall. | Adin Scannell | |
| PiperOrigin-RevId: 268845090 | |||
| 2019-09-12 | Merge release-20190806.1-140-g78cfbbd (automated) | gVisor bot | |
| 2019-09-12 | Merge pull request #843 from nlacasse:version | gVisor bot | |
| PiperOrigin-RevId: 268772451 | |||
 |
index : gvisor | |
| Container Runtime Sandbox |
| summaryrefslogtreecommitdiffhomepage |