go
/
gvisor
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
1,107 Commits 2 Branches 96 Tags 81 MiB
Commit Graph

4 Commits

Author SHA1 Message Date
Andrei Vagin 4e695adcd0 gvisor/gofer: Use pivot_root instead of chroot 
PiperOrigin-RevId: 231864273
Change-Id: I8545b72b615f5c2945df374b801b80be64ec3e13
 2019-01-31 15:19:04 -08:00
Andrei Vagin 5f08f8fd81 Don't bind-mount runsc into a sandbox mntns 
PiperOrigin-RevId: 230437407
Change-Id: Id9d8ceeb018aad2fe317407c78c6ee0f4b47aa2b
 2019-01-22 16:46:42 -08:00
Andrei Vagin c063a1350f runsc: create a new proc mount if the sandbox process is running in a new pidns 
PiperOrigin-RevId: 229971902
Change-Id: Ief4fac731e839ef092175908de9375d725eaa3aa
 2019-01-18 12:17:34 -08:00
Andrei Vagin a46b6d453d runsc: set up a minimal chroot from the sandbox process 
In this case, new mounts are not created in the host mount namspaces, so
tearDownChroot isn't needed, because chroot will be destroyed with a
sandbox mount namespace.

In additional, pivot_root can't be called instead of chroot.

PiperOrigin-RevId: 229250871
Change-Id: I765bdb587d0b8287a6a8efda8747639d37c7e7b6
 2019-01-14 14:08:19 -08:00