go
/
gvisor
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
gvisor/pkg/sentry
History
Kevin Krakauer 8cc1c35bbd Write simple ACCEPT rules to the filter table. 
This gets us closer to passing the iptables tests and opens up iptables
so it can be worked on by multiple people.

A few restrictions are enforced for security (i.e. we don't want to let
users write a bunch of iptables rules and then just not enforce them):

- Only the filter table is writable.
- Only ACCEPT rules with no matching criteria can be added.
 		2020-01-08 10:08:14 -08:00
..
arch Implement rseq(2) 2020-01-06 11:42:44 -08:00
context Add context to state. 2019-10-31 18:03:24 -07:00
control runsc/debug: add an option to list all processes 2019-12-11 11:05:41 -08:00
device Reorder BUILD license and load functions in gvisor. 2019-10-16 16:40:30 -07:00
fs fs/splice: don't report a partialResult error if there is no data loss 2020-01-07 23:54:14 -08:00
fsimpl Convert memfs into proto-tmpfs. 2020-01-06 12:52:55 -08:00
hostcpu Enable pkg/sentry/hostcpu support on arm64. 2019-09-18 23:51:42 +00:00
hostmm Update canonical repository. 2019-06-13 16:50:15 -07:00
inet Add endpoint tracking to the stack. 2019-10-29 16:14:51 -07:00
kernel Implement rseq(2) 2020-01-06 11:42:44 -08:00
limits Reorder BUILD license and load functions in gvisor. 2019-10-16 16:40:30 -07:00
loader Document ELF PT_LOAD difference from Linux 2019-12-06 08:37:14 -08:00
memmap Implement memmap.MappingIdentity for vfs.FileDescription. 2019-12-12 13:19:33 -08:00
mm Remove FIXME comments to close old bug. 2020-01-03 17:47:29 -08:00
pgalloc Add context to state. 2019-10-31 18:03:24 -07:00
platform platform/syscall: use syscall + int3 to execute a system call in a stub process 2020-01-06 15:54:53 -08:00
safemem Remove go_test from go_stateify and go_marshal 2019-09-12 15:10:17 -07:00
sighandling Bump up Go 1.13 as minimum requirement 2019-12-06 23:10:15 -08:00
socket Write simple ACCEPT rules to the filter table. 2020-01-08 10:08:14 -08:00
state netstack: Don't start endpoint goroutines too soon on restore. 2019-08-08 12:33:11 -07:00
strace Check for valid nfds before copying in an fd set. 2019-12-20 08:44:53 -08:00
syscalls Implement rseq(2) 2020-01-06 11:42:44 -08:00
time Import and structure cleanup. 2019-11-21 11:41:30 -08:00
unimpl internal BUILD file cleanup. 2019-09-23 08:25:13 -07:00
uniqueid Update canonical repository. 2019-06-13 16:50:15 -07:00
usage Reorder BUILD license and load functions in gvisor. 2019-10-16 16:40:30 -07:00
usermem Avoid unnecessary slice allocation in usermem.BytesIO.blocksFromAddrRanges(). 2019-11-14 14:04:58 -08:00
vfs Add VFS2 support for device special files. 2019-12-30 11:36:41 -08:00
watchdog Remove watchdog TODO 2019-12-03 13:44:06 -08:00
BUILD Internal change. 2019-11-25 11:20:30 -08:00