go
/
gvisor
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
614 Commits 2 Branches 96 Tags 81 MiB
Commit Graph

6 Commits

Author SHA1 Message Date
Adin Scannell 6cfb5cd56d Add additional sanity checks for walk. 
PiperOrigin-RevId: 212058684
Change-Id: I319709b9ffcfccb3231bac98df345d2a20eca24b
 2018-09-07 16:53:12 -07:00
Fabricio Voznika a81a4402a2 Add option to panic gofer if writes are attempted over RO mounts 
This is used when '--overlay=true' to guarantee writes are not sent to gofer.

PiperOrigin-RevId: 210116288
Change-Id: I7616008c4c0e8d3668e07a205207f46e2144bf30
 2018-08-24 10:17:42 -07:00
Fabricio Voznika 19a0e83b50 Make fsgofer attach more strict 
Refuse to mount paths with "." and ".." in the path to prevent
a compromised Sentry to mount "../../secrets". Only allow
Attach to be called once per mount point.

PiperOrigin-RevId: 199225929
Change-Id: I2a3eb7ea0b23f22eb8dde2e383e32563ec003bd5
 2018-06-04 18:04:54 -07:00
Fabricio Voznika 5a509c47a2 Open file as read-write when mount points to a file 
This is to allow files mapped directly, like /etc/hosts, to be writable.
Closes #40

PiperOrigin-RevId: 196155920
Change-Id: Id2027e421cef5f94a0951c3e18b398a77c285bbd
 2018-05-10 12:38:36 -07:00
Ian Gudger f47174f06b Run gofmt -s on everything 
PiperOrigin-RevId: 195469901
Change-Id: I66d5c7a334bbb8b47e40d266a2661291c2d91c7f
 2018-05-04 14:16:11 -07:00
Googler d02b74a5dc Check in gVisor. 
PiperOrigin-RevId: 194583126
Change-Id: Ica1d8821a90f74e7e745962d71801c598c652463
 2018-04-28 01:44:26 -04:00