blob: 6e3b1b2c0f69091e28f4b25e5142523c173e2588 (
plain)
1
2
3
4
5
|
gVisor is a user-space kernel, written in Go, that implements a substantial
portion of the Linux system surface. It includes an Open Container Initiative
(OCI) runtime called runsc that provides an isolation boundary between the
application and the host kernel. The runsc runtime integrates with Docker and
Kubernetes, making it simple to run sandboxed containers.
|