go
/
gvisor
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
gvisor/runsc/cmd
History
Fabricio Voznika 356d1be140 Allow 'runsc do' to run without root 
'--rootless' flag lets a non-root user execute 'runsc do'.
The drawback is that the sandbox and gofer processes will
run as root inside a user namespace that is mapped to the
caller's user, intead of nobody. And network is defaulted
to '--network=host' inside the root network namespace. On
the bright side, it's very convenient for testing:

runsc --rootless do ls
runsc --rootless do curl www.google.com

PiperOrigin-RevId: 252840970
 		2019-06-12 09:41:50 -07:00
..
BUILD Add introspection for Linux/AMD64 syscalls 2019-06-10 23:38:36 -07:00
boot.go Allow 'runsc do' to run without root 2019-06-12 09:41:50 -07:00
capability.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
capability_test.go Allow 'runsc do' to run without root 2019-06-12 09:41:50 -07:00
checkpoint.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
chroot.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
cmd.go Send error message to docker/kubectl exec on failure 2019-06-06 10:49:43 -07:00
create.go Allow 'runsc do' to run without root 2019-06-12 09:41:50 -07:00
debug.go Add support for collecting execution trace to runsc. 2019-05-30 12:07:11 -07:00
delete.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
delete_test.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
do.go Allow 'runsc do' to run without root 2019-06-12 09:41:50 -07:00
error.go Send error message to docker/kubectl exec on failure 2019-06-06 10:49:43 -07:00
events.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
exec.go Send error message to docker/kubectl exec on failure 2019-06-06 10:49:43 -07:00
exec_test.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
gofer.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
gofer_test.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
help.go Add introspection for Linux/AMD64 syscalls 2019-06-10 23:38:36 -07:00
kill.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
list.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
path.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
pause.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
ps.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
restore.go Allow 'runsc do' to run without root 2019-06-12 09:41:50 -07:00
resume.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
run.go Allow 'runsc do' to run without root 2019-06-12 09:41:50 -07:00
spec.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
start.go Send error message to docker/kubectl exec on failure 2019-06-06 10:49:43 -07:00
state.go Change copyright notice to "The gVisor Authors" 2019-04-29 14:26:23 -07:00
syscalls.go Add introspection for Linux/AMD64 syscalls 2019-06-10 23:38:36 -07:00
wait.go Remove 'clearStatus' option from container.Wait*PID() 2019-06-03 18:16:09 -07:00