-
Notifications
You must be signed in to change notification settings - Fork 1.4k
Insights: google/gvisor
Overview
Could not load contribution data
Please try again later
54 Pull requests merged by 7 people
-
Add tests that run docker exec command in gvisor.
#11849 merged
Jul 10, 2025 -
Make nccl and sr tests work on ARM
#11908 merged
Jul 9, 2025 -
fix: copy route MTU when creating interfaces and routes from net namespace
#11857 merged
Jul 9, 2025 -
fix: copy route MTU when creating interfaces and routes from net namespace
#11907 merged
Jul 9, 2025 -
Make GPU smoke tests work on ARM
#11876 merged
Jul 9, 2025 -
Make env flag for runsc exec non idempotent.
#11902 merged
Jul 9, 2025 -
Update driver installer for ARM64 compatibility
#11846 merged
Jul 8, 2025 -
checklocks: correctly document field-level
checklocksignore
#11886 merged
Jul 8, 2025 -
Remove bazel benchmark from benchmarks for which profiles are collected.
#11896 merged
Jul 8, 2025 -
Update how
runsc exec
sets env variables.#11897 merged
Jul 8, 2025 -
Fix duplicate "dev.gvisor" in AnnotationsContainerNameRemapIgnored test.
#11893 merged
Jul 7, 2025 -
Wait for main MF loading to start before writing to it during restore.
#11848 merged
Jul 7, 2025 -
netstack: remove timed-out endpoints from pendingEndpoints queue.
#11557 merged
Jul 2, 2025 -
netstack: remove timed-out endpoints from pendingEndpoints queue.
#11882 merged
Jul 2, 2025 -
Docker tests and benchmarks: Remove use of exposed ports.
#11881 merged
Jul 2, 2025 -
chore: fix some minor issues in the comments
#11878 merged
Jul 1, 2025 -
chore: fix some minor issues in the comments
#11880 merged
Jul 1, 2025 -
gofer: Ensure mount flags are applied for bind mounts
#11866 merged
Jul 1, 2025 -
Check for fatal signals and reset watchdog during MM.mapASLocked().
#11825 merged
Jun 30, 2025 -
Check MS_RDONLY for O_TRUNC before doing file truncation.
#11874 merged
Jun 30, 2025 -
sentry/kernel: don't use Task.mu to protect Task.creds
#11873 merged
Jun 30, 2025 -
sentry/kernel: allow pending signal sets to be read without locking
#11832 merged
Jun 28, 2025 -
Fix lock order inversion between taskMutex and kernfs.ancestryRWMutex.
#11860 merged
Jun 27, 2025 -
Make instruction how to contact security more clear
#11868 merged
Jun 27, 2025 -
Make instruction how to contact security more clear
#11869 merged
Jun 27, 2025 -
Update runsc profiles for PGO (profile-guided optimizations), 2025-06-26.
#11863 merged
Jun 27, 2025 -
Update runsc profiles for PGO (profile-guided optimizations), 2025-06-26.
#11854 merged
Jun 27, 2025 -
Use gVisor test alpine image for docker tests.
#11872 merged
Jun 27, 2025 -
Run more benchmarks for PGO profiling.
#11862 merged
Jun 27, 2025 -
Add test coverage for docker build command in gVisor.
#11845 merged
Jun 26, 2025 -
Updated nftables package to return syserr.Error (POSIX) errors
#11859 merged
Jun 26, 2025 -
Implement setns for pid namespaces
#11839 merged
Jun 26, 2025 -
PGO: Create profile data for KVM platform as well.
#11853 merged
Jun 26, 2025 -
testcluster
: Support overwriting runtime selection on a pod.#11847 merged
Jun 26, 2025 -
Move PGO profile data to
runsc/profiles/data
.#11852 merged
Jun 26, 2025 -
state: Maintain a separate list with leaf nodes for objectDecodeState.
#11835 merged
Jun 24, 2025 -
Netlink_Netfilter process message implementation for adding and getting tables.
#11818 merged
Jun 24, 2025 -
seccomp: set seccompNotifyIsSupported
#11840 merged
Jun 24, 2025 -
Internal change.
#11831 merged
Jun 24, 2025 -
PGO update: Only skip when there is no change in
runsc/profiles
.#11834 merged
Jun 21, 2025 -
Typo fix.
#11829 merged
Jun 20, 2025 -
PGO: Don't re-run benchmarks if their results will be discarded.
#11828 merged
Jun 18, 2025 -
Update runsc profiles for PGO (profile-guided optimizations), 2025-06-17.
#11824 merged
Jun 17, 2025 -
Update runsc profiles for PGO (profile-guided optimizations), 2025-06-17.
#11822 merged
Jun 17, 2025 -
PGO: Skip PGO update branch creation if it already exists.
#11826 merged
Jun 17, 2025 -
Delete most of pkg/p9.
#11816 merged
Jun 17, 2025 -
PGO profile update: Fix non-interactive PR creation.
#11823 merged
Jun 17, 2025 -
Create PGO pull requests non-interactively.
#11821 merged
Jun 17, 2025 -
PGO: Change
pgo/
branch naming scheme to matchtest/
naming scheme.#11817 merged
Jun 16, 2025 -
PGO update script: Connect to GitHub over HTTPS rather than SSH.
#11814 merged
Jun 16, 2025 -
Isolate NETLINK_NETFILTER socket behavior behind the nftables flag in runsc.
#11815 merged
Jun 14, 2025 -
Move PGO git logistics to a dedicated script.
#11813 merged
Jun 13, 2025 -
Refactor nftables package and exposed it to tcpip/stack/
#11804 merged
Jun 13, 2025 -
Reduce max thread count in nginx and wordpress benchmarks.
#11811 merged
Jun 13, 2025
24 Pull requests opened by 6 people
-
Isolate NETLINK_NETFILTER socket behavior behind the nftables flag in runsc.
#11812 opened
Jun 13, 2025 -
Added fields to Nftable struct for better NFT_TABLE_NEW and GET functionality.
#11833 opened
Jun 20, 2025 -
Drop sched_getaffinity from sentry syscall filters
#11838 opened
Jun 23, 2025 -
gofer: Support restore of deleted directories whose original path is occupied.
#11843 opened
Jun 24, 2025 -
Allow not handled packets for UDP Forwarder
#11850 opened
Jun 25, 2025 -
Add a non-gpu workload test for pod snapshots.
#11858 opened
Jun 26, 2025 -
[exec] Write trailing newline to -pid-file and -internal-pid-file
#11861 opened
Jun 27, 2025 -
Check MS_RDONLY for O_TRUNC before doing file truncation.
#11870 opened
Jun 27, 2025 -
runsc: Make identity user mapping work for filesystem
#11875 opened
Jun 29, 2025 -
Allow not handled packets for UDP Forwarder
#11879 opened
Jul 1, 2025 -
Drop unnecessary size checks and corrections for Netlink attributes.
#11888 opened
Jul 7, 2025 -
Nftables New Chain implementation
#11889 opened
Jul 7, 2025 -
Add mutex locking to netfilter socket operations with nftables.
#11891 opened
Jul 7, 2025 -
Support and document testing on macOS with CLT
#11899 opened
Jul 8, 2025 -
Implement functionality for Nftables GetChain message.
#11900 opened
Jul 8, 2025 -
[exec] Write trailing newline to -pid-file and -internal-pid-file
#11901 opened
Jul 8, 2025 -
Follow symlinks in MkdirAllAt
#11911 opened
Jul 10, 2025 -
Follow symlinks in MkdirAllAt
#11912 opened
Jul 10, 2025 -
Update netfilter protocol address family checks.
#11913 opened
Jul 10, 2025 -
Add functionality to serialize rootfs upper layer to a tar archive.
#11914 opened
Jul 11, 2025 -
Add test for workdir being a symlink to another folder
#11915 opened
Jul 11, 2025 -
Create a small DSL for streamlining nftables request creation for tests.
#11916 opened
Jul 11, 2025 -
NFtables testing cleanup
#11917 opened
Jul 11, 2025 -
kvm: Enhance debugging of unexpected vCPU exits
#11918 opened
Jul 11, 2025
7 Issues closed by 5 people
-
Missing MTU value in routes created in the sandox
#11856 closed
Jul 9, 2025 -
Booting a NixOS container with gVisor fails
#11904 closed
Jul 9, 2025 -
[checklocks] false positive inference on `promauto.NewXXX`
#11887 closed
Jul 8, 2025 -
`runsc exec -env` doesn't work when environment variable has a comma
#11885 closed
Jul 8, 2025 -
Increased rate of checkpoint restore failures on newer gVisor versions
#11842 closed
Jul 7, 2025 -
Report about bug or maybe security issue
#11867 closed
Jul 1, 2025 -
Installation
#11830 closed
Jun 23, 2025
15 Issues opened by 15 people
-
Starting container does not work if cwd is a symlink to another folder
#11910 opened
Jul 10, 2025 -
Run docker in gVisor with GPU
#11909 opened
Jul 9, 2025 -
Support running systemd in the containers
#11906 opened
Jul 9, 2025 -
Error Using Runtime Monitoring
#11905 opened
Jul 9, 2025 -
Checkpoint failed with directfs: "failed to open read handle for deleted file"
#11903 opened
Jul 9, 2025 -
`docker pull bitnami/redis:7.0` fails with EPERM
#11894 opened
Jul 7, 2025 -
Manually restore filesystem overlay view from overlay backing host file
#11892 opened
Jul 7, 2025 -
Running docker in gvisor quickstart not working with --bridge=none
#11883 opened
Jul 2, 2025 -
'unable to get systemd version' when using systemd cgroup driver
#11877 opened
Jul 1, 2025 -
IpVlan support with sandboxed networking
#11855 opened
Jun 26, 2025 -
exec -internal-pid-file cannot be used reliably
#11851 opened
Jun 25, 2025 -
Compilable for Windows platform for gvisor@go
#11841 opened
Jun 24, 2025 -
allow tuning of highest impact tcp parameters in netstack to support higher-throughput services
#11837 opened
Jun 23, 2025 -
runsc does not block SIGKILL to PID 1
#11836 opened
Jun 22, 2025 -
Support checkpoint in the containerd-shim
#11810 opened
Jun 12, 2025
10 Unresolved conversations
Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.
-
tools/checklocks: Generics support
#11671 commented on
Jun 23, 2025 • 0 new comments -
runsc install -> panic: Only 4K page size is supported on arm64!
#8196 commented on
Jun 25, 2025 • 0 new comments -
gVisor unprivileged user can't access file in rootless mode
#9918 commented on
Jun 29, 2025 • 0 new comments -
Debugging with dlv inside gvisor with systrap faults
#11649 commented on
Jul 8, 2025 • 0 new comments -
strace sendmsg(): errno=22 (invalid argument)
#11650 commented on
Jul 8, 2025 • 0 new comments -
Error: OCI runtime error: runsc: creating container: systemd error: Interactive authentication required.
#11543 commented on
Jul 9, 2025 • 0 new comments -
Add support for O_TMPFILE
#11143 commented on
Jul 9, 2025 • 0 new comments -
gVisor CNI tutorial is not working as expected
#10750 commented on
Jul 11, 2025 • 0 new comments -
add support to control CPU features exposed to user apps
#11498 commented on
Jul 3, 2025 • 0 new comments -
Hard links Support Phase 1: Gofer Client dentry/inode refactor
#11734 commented on
Jun 27, 2025 • 0 new comments