sentry/

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

Links

Open Source Insights

Directories ¶

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL

Path	Synopsis
arch Package arch provides abstractions around architecture-dependent details, such as syscall calling conventions, native types, etc.	Package arch provides abstractions around architecture-dependent details, such as syscall calling conventions, native types, etc.
fpu Package fpu provides basic floating point helpers.	Package fpu provides basic floating point helpers.
registers_go_proto
control Package control contains types that expose control server methods, and can be used to configure and interact with a running sandbox process.	Package control contains types that expose control server methods, and can be used to configure and interact with a running sandbox process.
control_go_proto
devices
accel Package accel implements proxying for hardware accelerators.	Package accel implements proxying for hardware accelerators.
memdev Package memdev implements "mem" character devices, as implemented in Linux by drivers/char/mem.c and drivers/char/random.c.	Package memdev implements "mem" character devices, as implemented in Linux by drivers/char/mem.c and drivers/char/random.c.
nvproxy Package nvproxy implements proxying for the Nvidia GPU Linux kernel driver: https://github.com/NVIDIA/open-gpu-kernel-modules.	Package nvproxy implements proxying for the Nvidia GPU Linux kernel driver: https://github.com/NVIDIA/open-gpu-kernel-modules.
ttydev Package ttydev implements an unopenable vfs.Device for /dev/tty.	Package ttydev implements an unopenable vfs.Device for /dev/tty.
tundev Package tundev implements the /dev/net/tun device.	Package tundev implements the /dev/net/tun device.
fdimport Package fdimport provides the Import function.	Package fdimport provides the Import function.
fsimpl
cgroupfs Package cgroupfs implements cgroupfs.	Package cgroupfs implements cgroupfs.
devpts Package devpts provides a filesystem implementation that behaves like devpts.	Package devpts provides a filesystem implementation that behaves like devpts.
devtmpfs Package devtmpfs provides an implementation of /dev based on tmpfs, analogous to Linux's devtmpfs.	Package devtmpfs provides an implementation of /dev based on tmpfs, analogous to Linux's devtmpfs.
eventfd Package eventfd implements event fds.	Package eventfd implements event fds.
fuse Package fuse implements fusefs.	Package fuse implements fusefs.
gofer Package gofer provides a filesystem implementation that is backed by a 9p server, interchangably referred to as "gofers" throughout this package.	Package gofer provides a filesystem implementation that is backed by a 9p server, interchangably referred to as "gofers" throughout this package.
host Package host provides a filesystem implementation for host files imported as file descriptors.	Package host provides a filesystem implementation for host files imported as file descriptors.
iouringfs Package iouringfs provides a filesystem implementation for IO_URING basing it on anonfs.	Package iouringfs provides a filesystem implementation for IO_URING basing it on anonfs.
kernfs Package kernfs provides the tools to implement inode-based filesystems.	Package kernfs provides the tools to implement inode-based filesystems.
lock Package lock is the API for POSIX-style advisory regional file locks and BSD-style full file locks.	Package lock is the API for POSIX-style advisory regional file locks and BSD-style full file locks.
mqfs Package mqfs provides a filesystem implementation to back POSIX message queues.	Package mqfs provides a filesystem implementation to back POSIX message queues.
nsfs Package nsfs provides the filesystem implementation backing Kernel.NsfsMount.	Package nsfs provides the filesystem implementation backing Kernel.NsfsMount.
overlay Package overlay provides an overlay filesystem implementation, which synthesizes a filesystem by composing one or more immutable filesystems ("lower layers") with an optional mutable filesystem ("upper layer").	Package overlay provides an overlay filesystem implementation, which synthesizes a filesystem by composing one or more immutable filesystems ("lower layers") with an optional mutable filesystem ("upper layer").
pipefs Package pipefs provides the filesystem implementation backing Kernel.PipeMount.	Package pipefs provides the filesystem implementation backing Kernel.PipeMount.
proc Package proc implements a partial in-memory file system for procfs.	Package proc implements a partial in-memory file system for procfs.
signalfd Package signalfd provides basic signalfd file implementations.	Package signalfd provides basic signalfd file implementations.
sockfs Package sockfs provides a filesystem implementation for anonymous sockets.	Package sockfs provides a filesystem implementation for anonymous sockets.
sys Package sys implements sysfs.	Package sys implements sysfs.
timerfd Package timerfd implements timer fds.	Package timerfd implements timer fds.
tmpfs Package tmpfs provides an in-memory filesystem whose contents are application-mutable, consistent with Linux's tmpfs.	Package tmpfs provides an in-memory filesystem whose contents are application-mutable, consistent with Linux's tmpfs.
user Package user contains methods for resolving filesystem paths based on the user and their environment.	Package user contains methods for resolving filesystem paths based on the user and their environment.
fsmetric Package fsmetric defines filesystem metrics.	Package fsmetric defines filesystem metrics.
fsutil Package fsutil provides utilities for implementing vfs.FileDescriptionImpl and vfs.FilesystemImpl.	Package fsutil provides utilities for implementing vfs.FileDescriptionImpl and vfs.FilesystemImpl.
hostcpu Package hostcpu provides utilities for working with CPU information provided by a host Linux kernel.	Package hostcpu provides utilities for working with CPU information provided by a host Linux kernel.
hostfd Package hostfd provides efficient I/O with host file descriptors.	Package hostfd provides efficient I/O with host file descriptors.
hostmm Package hostmm provides tools for interacting with the host Linux kernel's virtual memory management subsystem.	Package hostmm provides tools for interacting with the host Linux kernel's virtual memory management subsystem.
inet Package inet defines semantics for IP stacks.	Package inet defines semantics for IP stacks.
kernel Package kernel provides an emulation of the Linux kernel.	Package kernel provides an emulation of the Linux kernel.
auth Package auth implements an access control model that is a subset of Linux's.	Package auth implements an access control model that is a subset of Linux's.
fasync Package fasync provides FIOASYNC related functionality.	Package fasync provides FIOASYNC related functionality.
futex Package futex provides an implementation of the futex interface as found in the Linux kernel.	Package futex provides an implementation of the futex interface as found in the Linux kernel.
ipc Package ipc defines functionality and utilities common to sysvipc mechanisms.	Package ipc defines functionality and utilities common to sysvipc mechanisms.
memevent Package memevent implements the memory usage events controller, which periodically emits events via the eventchannel.	Package memevent implements the memory usage events controller, which periodically emits events via the eventchannel.
memevent/memory_events_go_proto
mq Package mq provides an implementation for POSIX message queues.	Package mq provides an implementation for POSIX message queues.
msgqueue Package msgqueue implements System V message queues.	Package msgqueue implements System V message queues.
pipe Package pipe provides a pipe implementation.	Package pipe provides a pipe implementation.
sched Package sched implements scheduler related features.	Package sched implements scheduler related features.
semaphore Package semaphore implements System V semaphores.	Package semaphore implements System V semaphores.
shm Package shm implements sysv shared memory segments.	Package shm implements sysv shared memory segments.
time Package time defines the Timer type, which provides a periodic timer that works by sampling a user-provided clock.	Package time defines the Timer type, which provides a periodic timer that works by sampling a user-provided clock.
uncaught_signal_go_proto
limits Package limits provides resource limits.	Package limits provides resource limits.
loader Package loader loads an executable file into a MemoryManager.	Package loader loads an executable file into a MemoryManager.
vdsodata Package vdsodata contains a compiled VDSO object.	Package vdsodata contains a compiled VDSO object.
memmap Package memmap defines semantics for memory mappings.	Package memmap defines semantics for memory mappings.
mm Package mm provides a memory management subsystem.	Package mm provides a memory management subsystem.
pgalloc Package pgalloc contains the page allocator subsystem, which manages memory that may be mapped into application address spaces.	Package pgalloc contains the page allocator subsystem, which manages memory that may be mapped into application address spaces.
platform Package platform provides a Platform abstraction.	Package platform provides a Platform abstraction.
interrupt Package interrupt provides an interrupt helper.	Package interrupt provides an interrupt helper.
kvm Package kvm provides a kvm-based implementation of the platform interface.	Package kvm provides a kvm-based implementation of the platform interface.
ptrace Package ptrace provides a ptrace-based implementation of the platform interface.	Package ptrace provides a ptrace-based implementation of the platform interface.
systrap Package systrap provides a seccomp-based implementation of the platform interface.	Package systrap provides a seccomp-based implementation of the platform interface.
systrap/sysmsg
systrap/usertrap Package usertrap implements the library to replace syscall instructions with function calls.	Package usertrap implements the library to replace syscall instructions with function calls.
seccheck Package seccheck defines a structure for dynamically-configured security checks in the sentry.	Package seccheck defines a structure for dynamically-configured security checks in the sentry.
points/points_go_proto
sinks/null Package null defines a seccheck.Sink that does nothing with the trace points, akin to /dev/null.	Package null defines a seccheck.Sink that does nothing with the trace points, akin to /dev/null.
sinks/remote Package remote defines a seccheck.Sink that serializes points to a remote process.	Package remote defines a seccheck.Sink that serializes points to a remote process.
sinks/remote/wire Package wire defines structs used in the wire format for the remote checker.	Package wire defines structs used in the wire format for the remote checker.
socket Package socket provides the interfaces that need to be provided by socket implementations and providers, as well as per family demultiplexing of socket creation.	Package socket provides the interfaces that need to be provided by socket implementations and providers, as well as per family demultiplexing of socket creation.
control Package control provides internal representations of socket control messages.	Package control provides internal representations of socket control messages.
hostinet Package hostinet implements AF_INET and AF_INET6 sockets using the host's network stack.	Package hostinet implements AF_INET and AF_INET6 sockets using the host's network stack.
netfilter Package netfilter helps the sentry interact with netstack's netfilter capabilities.	Package netfilter helps the sentry interact with netstack's netfilter capabilities.
netlink Package netlink provides core functionality for netlink sockets.	Package netlink provides core functionality for netlink sockets.
netlink/port Package port provides port ID allocation for netlink sockets.	Package port provides port ID allocation for netlink sockets.
netlink/route Package route provides a NETLINK_ROUTE socket protocol.	Package route provides a NETLINK_ROUTE socket protocol.
netlink/uevent Package uevent provides a NETLINK_KOBJECT_UEVENT socket protocol.	Package uevent provides a NETLINK_KOBJECT_UEVENT socket protocol.
netstack Package netstack provides an implementation of the socket.Socket interface that is backed by a tcpip.Endpoint.	Package netstack provides an implementation of the socket.Socket interface that is backed by a tcpip.Endpoint.
unix Package unix provides an implementation of the socket.Socket interface for the AF_UNIX protocol family.	Package unix provides an implementation of the socket.Socket interface for the AF_UNIX protocol family.
unix/transport Package transport contains the implementation of Unix endpoints.	Package transport contains the implementation of Unix endpoints.
state Package state provides high-level state wrappers.	Package state provides high-level state wrappers.
strace Package strace implements the logic to print out the input and the return value of each traced syscall.	Package strace implements the logic to print out the input and the return value of each traced syscall.
strace_go_proto
syscalls Package syscalls is the interface from the application to the kernel.	Package syscalls is the interface from the application to the kernel.
linux Package linux provides syscall tables for amd64 and arm64 Linux.	Package linux provides syscall tables for amd64 and arm64 Linux.
time Package time provides a calibrated clock synchronized to a system reference clock.	Package time provides a calibrated clock synchronized to a system reference clock.
unimpl Package unimpl contains interface to emit events about unimplemented features.	Package unimpl contains interface to emit events about unimplemented features.
unimplemented_syscall_go_proto
uniqueid Package uniqueid defines context.Context keys for obtaining system-wide unique identifiers.	Package uniqueid defines context.Context keys for obtaining system-wide unique identifiers.
usage Package usage provides representations of resource usage.	Package usage provides representations of resource usage.
vfs Package vfs implements a virtual filesystem layer.	Package vfs implements a virtual filesystem layer.
events_go_proto
memxattr Package memxattr provides a default, in-memory extended attribute implementation.	Package memxattr provides a default, in-memory extended attribute implementation.
watchdog Package watchdog is responsible for monitoring the sentry for tasks that may potentially be stuck or looping inderterminally causing hard to debug hungs in the untrusted app.	Package watchdog is responsible for monitoring the sentry for tasks that may potentially be stuck or looping inderterminally causing hard to debug hungs in the untrusted app.