google/gvisor
1
18.0k
Fork 0
mirror of https://github.com/google/gvisor.git synced 2026-04-03 23:18:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 9ca1678bc6 Implement filesystem-only checkpointing. Jamie Liu 2026-03-18 19:42:27 -07:00
  • 2b089051af build(deps): bump the go_modules group across 1 directory with 2 updates dependabot/go_modules/go_modules-9c7899a44c dependabot[bot] 2026-03-19 02:12:40 +00:00
  • ac8ff8fd1a Fix more printf findings Michael Pratt 2026-03-18 14:55:27 -07:00
  • 819d058fd6 Remove unsupported %w Michael Pratt 2026-03-18 13:54:02 -07:00
  • 15f3bdc57d nogo: plumb SDK version as language version release-20260316.0 Michael Pratt 2026-03-18 09:18:56 -07:00
  • f7324fa64c signals: Fix races that prevent a SIGCONT from aborting a SIGSTOP Shailend Chand 2026-03-17 17:17:43 -07:00
  • 8baf482e99 nogo: pass complete std set to FilterStdPackages Michael Pratt 2026-03-17 13:52:26 -07:00
  • 2c1c4a5516 Implement renameat2. Jing Chen 2026-03-17 13:40:54 -07:00
  • 05e776d3b8 nogo: initialize go/types.Info.FileVersions Michael Pratt 2026-03-17 13:05:43 -07:00
  • 70fb1c0d2c Fix the data race for mm.(*MemoryManager).as. Jing Chen 2026-03-17 12:06:41 -07:00
  • 4e19db0e31 nogo: remove ErrSkip Michael Pratt 2026-03-17 11:42:17 -07:00
  • 5ab05d7e95 devpts: Correct minor issues with TCGETS2 support gVisor bot 2026-03-17 10:38:10 -07:00
  • d648498f70 Merge release-20260309.0-23-g3e5f1519f (automated) gVisor bot 2026-03-17 16:41:53 +00:00
  • 3e5f1519f1 nogo: add optional addition of extra proto dependencies Michael Pratt 2026-03-17 09:25:59 -07:00
  • c7907727f5 Automated rollback of changelist 879883699 Ayush Ranjan 2026-03-16 15:46:47 -07:00
  • 52fca0e39c nogo: add note about setting appropriate build environment vars Michael Pratt 2026-03-16 12:07:17 -07:00
  • feee4b1b69 nogo: disable cgo Michael Pratt 2026-03-16 11:08:01 -07:00
  • 927034fc37 Restrict the UVM ioctl operations to the owner process when UVM_INIT_FLAGS_MULTI_PROCESS_SHARING_MODE is not set by the application. test/cl883239824 AnilAltinay 2026-03-13 10:51:53 -07:00
  • 440e98807a nogo: stdlib vendoring support Michael Pratt 2026-03-16 10:32:21 -07:00
  • 327dad62cc Adds Blackwell video encoder classes Luis Capelo 2026-03-14 17:22:17 -04:00
  • df21591966 [tests] Remove direct dependency on linux_capability_util Jeff Martin 2026-03-16 08:41:01 -07:00
  • 4ca8aa0b28 Restrict the UVM ioctl operations to the owner process when UVM_INIT_FLAGS_MULTI_PROCESS_SHARING_MODE is not set by the application. test/cl884288466 AnilAltinay 2026-03-16 01:36:20 -07:00
  • 9355540207 Merge pull request #12589 from jbms:tcgets2 gVisor bot 2026-03-14 21:39:36 -07:00
  • 7115280528 Symbolize and desymbolize the stacktrace in beforeSave and afterLoad. Nayana Bidari 2026-03-13 16:24:20 -07:00
  • 03202e559d Add sentry_entry_point metric. Lucas Manning 2026-03-13 16:07:27 -07:00
  • 868d165cb0 nogo: only analyze exported stdlib packages and their dependencies Michael Pratt 2026-03-13 15:38:15 -07:00
  • b4cec0ebce signals: Fix WaitStatus.Signaled() to exclude stops Shailend Chand 2026-03-13 12:33:08 -07:00
  • 0542486157 nogo: clean up unnecessary func vars Michael Pratt 2026-03-13 12:24:39 -07:00
  • 30b20d1a73 Move vfs.RestoreID to checkpoint.ResourceID. Jamie Liu 2026-03-13 12:01:20 -07:00
  • e8a5075fec nogo: remove stdlib subcommand Michael Pratt 2026-03-12 15:51:58 -07:00
  • d8b6072338 Internal change. Jeff Martin 2026-03-12 14:57:55 -07:00
  • b4724f2443 Merge release-20260309.0-7-g8fb8dca77 (automated) gVisor bot 2026-03-12 21:12:31 +00:00
  • 8fb8dca779 Merge pull request #12694 from Cossack9989:support_va_bits_39_and_52_under_systrap gVisor bot 2026-03-12 13:59:27 -07:00
  • 293707e850 Merge pull request #12686 from a7i:fix/iptables-restore-ipt-so-set-replace-12685 gVisor bot 2026-03-11 18:48:06 -07:00
  • b0ef58d8fb Restrict the UVM ioctl operations to the owner process when UVM_INIT_FLAGS_MULTI_PROCESS_SHARING_MODE is not set by the application. test/cl882145075 AnilAltinay 2026-03-11 12:39:30 -07:00
  • 08e8adec82 Fix nil pointer dereference in netstack.Stack. release-20260309.0 Jing Chen 2026-03-11 14:57:03 -07:00
  • 209337ec63 Do not create profile/trace files if they are not set. Ayush Ranjan 2026-03-11 14:44:39 -07:00
  • dc0c2393ac Internal change. gVisor bot 2026-03-11 21:27:16 +00:00
  • f3f3086cd2 Deflake //test/syscalls:packet_mmap_test_native. Ayush Ranjan 2026-03-10 13:39:29 -07:00
  • b0a49e6ee0 Merge release-20260302.0-23-g0acfd7fd0 (automated) gVisor bot 2026-03-10 17:09:25 +00:00
  • 0acfd7fd00 Internal change AnilAltinay 2026-03-10 09:54:35 -07:00
  • d743225d62 Sync maxMmapRand64 and minMmapRand64 from 2bdc95b. Remove unused AddressSpaceConfig and duplicated ConfigureAddressSpace C0ss4ck 2026-03-10 14:35:00 +08:00
  • df5a6cd88c Refactor ARM64 address space tuning into arch.ConfigureAddressSpace(taskSize), with explicit presets for 39/48/52-bit VA layouts and validation for unknown task sizes. Simplify systrap initialization to pass linux.TaskSize directly, and make KVM explicitly select 48-bit VA to avoid relying on implicit defaults. C0ss4ck 2026-03-10 13:46:16 +08:00
  • de4d560299 Use arm64 stack randomization mask for MaxStackRand C0ss4ck 2026-03-09 02:12:28 +08:00
  • c24f753787 Configure ARM64 systrap address space by VA width C0ss4ck 2026-03-09 00:28:34 +08:00
  • c9735035b4 Update Have[RawIP/Packet]SocketCapability() to open raw/packet sockets. Ayush Ranjan 2026-03-09 15:31:26 -07:00
  • 0c47aeece3 Merge pull request #12656 from nblintao:arm64-64k-pagesize gVisor bot 2026-03-09 12:34:22 -07:00
  • d9188f9aa6 sentry/tmpfs: Allow read-only shared mappings on write-sealed memfds Ayush Ranjan 2026-03-09 12:03:56 -07:00
  • 498c3ed97f Merge pull request #12689 from KevinZhao:fix/nvproxy-size-validation gVisor bot 2026-03-09 12:03:10 -07:00
  • c0d2dea90a nvproxy: add missing size validation for control commands Kevin Zhao 2026-03-08 14:25:48 +00:00
  • 4b78644672 fix(setsockopt): increase maxOptLen from 8KB to 32KB Amir Alavi 2026-03-07 16:24:14 -05:00
  • 527012b63c Internal change. gVisor bot 2026-03-06 17:02:37 -08:00
  • 56114d1c6c compressio: Handle zero-length non-nil key. Ayush Ranjan 2026-03-06 15:44:49 -08:00
  • 8e713b88a0 Replace github.com/kr/pty with github.com/creack/pty. Jing Chen 2026-03-05 14:56:12 -08:00
  • ee243caffc Update gVisor image to test dockerd v28 in gVisor. Jing Chen 2026-03-05 10:55:38 -08:00
  • 0841f58d18 Add --per-pod-flag-override to gvisor-k8s-tool install. Etienne Perot 2026-03-04 20:21:14 -08:00
  • 591955b9bd gvisor_k8s_tool: Add --runsc-flags to the install command. Etienne Perot 2026-03-04 19:16:59 -08:00
  • a3913e999c Add a general AGENTS.md for gVisor. Jing Chen 2026-03-04 14:36:27 -08:00
  • 9783ff367e Add _arm64_4k to Go suffix list for stateify Tao Lin 2026-03-04 13:51:32 -08:00
  • a33284739e Add save/restore checks for non-4K page sizes Tao Lin 2026-03-04 12:47:24 -08:00
  • 3ecb19131b Address review feedback Tao Lin 2026-02-27 15:26:47 -08:00
  • 2bdc95b3c1 Add 64K page size support for ARM64 Tao Lin 2026-02-27 15:26:39 -08:00
  • 0a1bb90575 Internal change Jing Chen 2026-03-04 13:00:08 -08:00
  • 4e233fa6bc Internal change. Jamie Liu 2026-03-03 15:10:47 -08:00
  • 9042a160d1 Fix new sandbox_options proto build. Lucas Manning 2026-03-03 10:23:23 -08:00
  • d68b68cd0e Fix runsc log and profile file handling. Ayush Ranjan 2026-03-02 22:54:17 -08:00
  • b04ac7b240 SECURITY.md: Distinguish in-sandbox arbitrary reads vs arbitrary execution. Etienne Perot 2026-03-02 17:39:21 -08:00
  • ec013ff364 Create initial sandbox configuration spec. Lucas Manning 2026-03-02 16:16:59 -08:00
  • 7529362db3 Bump actions/upload-artifact from 4 to 7 dependabot/github_actions/actions/upload-artifact-7 dependabot[bot] 2026-03-02 22:18:42 +00:00
  • a12250c829 nvproxy: keep uvmFDMemmapFile.pfm refcount up to date release-20260302.0 Jamie Liu 2026-02-27 15:17:01 -08:00
  • 140594155b Update gVisor SECURITY.md policy for vulnerability disclosure. Etienne Perot 2026-02-27 15:10:53 -08:00
  • 44df3f8de3 Fix cos_gpu_compatibility_test Zach Koopmans 2026-02-27 14:49:56 -08:00
  • d9691a1d60 Merge pull request #12653 from tianyuzhou95:albert/exec-fix gVisor bot 2026-02-27 13:05:55 -08:00
  • d5a453ca03 Merge pull request #12447 from danielnorberg:fix-bind-mount-type-validation gVisor bot 2026-02-27 12:44:04 -08:00
  • d676cf1324 nvproxy: Add support for 590.48.01. Ayush Ranjan 2026-02-26 21:54:24 -08:00
  • 49696ef022 cmd/exec: fix failure in detach mode when --pid-file is not provided Tianyu Zhou 2026-02-26 10:27:56 +08:00
  • cb92b43f23 Inplace Restore test/cl875364011 Nayana Bidari 2026-02-25 15:25:25 -08:00
  • 6ee74522ca Add more shim grouping tests. release-20260223.0 Nayana Bidari 2026-02-25 14:29:06 -08:00
  • f5386d7ddc overlayfs: Allow identity rename for nonempty dirs too test/cl873037550 Shailend Chand 2026-02-20 12:56:13 -08:00
  • e7b87edeb2 Translate StartSubcontainer to RestoreSubcontainer on a restoring sandbox. Ayush Ranjan 2026-02-25 13:19:19 -08:00
  • 07778f33eb Enable runsc shim grouping. Nayana Bidari 2026-02-25 13:03:36 -08:00
  • a8ce0282b2 Fix flaky fuse save_resume tests Shailend Chand 2026-02-25 11:21:17 -08:00
  • 117277404a nogo: Fix more analyzer findings. Konstantin Bogomolov 2026-02-25 11:05:48 -08:00
  • b8a4f24561 devpts: Support TCGETS2, TCSETS2, TCSETSW2, TCSETSF2 Jeremy Maitin-Shepard 2026-02-05 22:05:54 -08:00
  • 573d5e7127 Merge release-20260216.0-52-gc58e543f3 (automated) gVisor bot 2026-02-24 22:51:40 +00:00
  • c58e543f3d Reject unsupported file types in directfs. Ayush Ranjan 2026-02-24 14:35:36 -08:00
  • 794768df21 Get go version for nogo from a helper function. Konstantin Bogomolov 2026-02-24 11:36:01 -08:00
  • 7b92379c2d Merge release-20260216.0-50-ge41477ffa (automated) gVisor bot 2026-02-24 08:14:18 +00:00
  • e41477ffa9 Internal change. Konstantin Bogomolov 2026-02-23 23:52:33 -08:00
  • a5a5ff0144 Add the flag allow-rootfs-tar-annotation. Jing Chen 2026-02-23 12:40:03 -08:00
  • 7551ab05d9 runsc metric-server: Tag metrics as per-sandbox vs process-wide. Etienne Perot 2026-02-23 11:47:57 -08:00
  • ad1babccfc vfs: validate source/target type match in BindAt Daniel Norberg 2026-01-07 00:31:28 +01:00
  • 4c7c190851 Preserve xattrs in rootfs-upper tar serialization Daniel Norberg 2026-02-22 07:36:21 +00:00
  • eac475ffdc Add regression test for opaque xattr preservation in rootfs-upper tar Daniel Norberg 2026-02-22 07:36:17 +00:00
  • c8e5cd9da5 Internal change test/cl873105605 Etienne Perot 2026-02-20 15:46:19 -08:00
  • fe30adbe8e Merge release-20260216.0-47-geb261c614 (automated) gVisor bot 2026-02-20 23:14:12 +00:00
  • eb261c6145 gofer: Improve restore failure messages. Ayush Ranjan 2026-02-20 14:57:59 -08:00
  • 098a186797 Merge release-20260216.0-46-gc50105dcf (automated) gVisor bot 2026-02-20 20:10:25 +00:00
  • c50105dcfe nvproxy: Add size check for NV0000_CTRL_CMD_SYSTEM_GET_BUILD_VERSION. Ayush Ranjan 2026-02-20 11:54:59 -08:00
  • 2ba75b93bf Merge pull request #12598 from tamird:nogo-more-checks gVisor bot 2026-02-20 11:35:37 -08:00