go
/
gvisor
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
gvisor/pkg/sentry/socket
History
Kevin Krakauer 8cc1c35bbd Write simple ACCEPT rules to the filter table. 
This gets us closer to passing the iptables tests and opens up iptables
so it can be worked on by multiple people.

A few restrictions are enforced for security (i.e. we don't want to let
users write a bunch of iptables rules and then just not enforce them):

- Only the filter table is writable.
- Only ACCEPT rules with no matching criteria can be added.
 		2020-01-08 10:08:14 -08:00
..
control Automated rollback of changelist 287029703 2019-12-26 13:05:52 -08:00
hostinet Deduplicate and simplify control message processing for recvmsg and sendmsg. 2019-12-10 19:27:42 -08:00
netfilter Write simple ACCEPT rules to the filter table. 2020-01-08 10:08:14 -08:00
netlink Add NETLINK_KOBJECT_UEVENT socket support 2019-11-04 10:07:52 -08:00
netstack Write simple ACCEPT rules to the filter table. 2020-01-08 10:08:14 -08:00
rpcinet Remove TODO for obsolete bug. 2019-12-03 10:23:19 -08:00
unix unix: allow to bind unix sockets only to AF_UNIX addresses 2019-12-12 11:08:56 -08:00
BUILD Reorder BUILD license and load functions in gvisor. 2019-10-16 16:40:30 -07:00
socket.go Let socket.ControlMessages Release() the underlying transport.ControlMessages. 2019-12-10 11:36:08 -08:00