Documentation
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
Package boot loads the kernel and runs a container.
|
Package boot loads the kernel and runs a container. |
|
filter
Package filter installs seccomp filters to prevent prohibited syscalls in case it's compromised.
|
Package filter installs seccomp filters to prevent prohibited syscalls in case it's compromised. |
|
filter/config
Package config defines all syscalls the sandbox is allowed to make to the host.
|
Package config defines all syscalls the sandbox is allowed to make to the host. |
|
filter/dumpfilter
dumpfilter dumps the seccomp-bpf program used by the Sentry.
|
dumpfilter dumps the seccomp-bpf program used by the Sentry. |
|
portforward
Package portforward holds the infrastructure to support the port forward command.
|
Package portforward holds the infrastructure to support the port forward command. |
|
pprof
Package pprof provides a stub to initialize custom profilers.
|
Package pprof provides a stub to initialize custom profilers. |
|
procfs
Package procfs holds utilities for getting procfs information for sandboxed processes.
|
Package procfs holds utilities for getting procfs information for sandboxed processes. |
|
Package cgroup provides an interface to read and write configuration to cgroup.
|
Package cgroup provides an interface to read and write configuration to cgroup. |
|
Package cli is the main entrypoint for runsc.
|
Package cli is the main entrypoint for runsc. |
|
Package cmd holds implementations of the runsc commands.
|
Package cmd holds implementations of the runsc commands. |
|
metricserver
The metricserver binary is a separate binary that implements the 'runsc metric-server' subcommand.
|
The metricserver binary is a separate binary that implements the 'runsc metric-server' subcommand. |
|
metricserver/metricservercmd
Package metricservercmd partially implements the 'metric-server' subcommand.
|
Package metricservercmd partially implements the 'metric-server' subcommand. |
|
nvproxy
Package nvproxy provides subcommands for the nvproxy command.
|
Package nvproxy provides subcommands for the nvproxy command. |
|
trace
Package trace provides subcommands for the trace command.
|
Package trace provides subcommands for the trace command. |
|
util
Package util groups a bunch of common helper functions used by commands.
|
Package util groups a bunch of common helper functions used by commands. |
|
Package config provides basic infrastructure to set configuration settings for runsc.
|
Package config provides basic infrastructure to set configuration settings for runsc. |
|
Package console contains utilities for working with pty consols in runsc.
|
Package console contains utilities for working with pty consols in runsc. |
|
Package container creates and manipulates containers.
|
Package container creates and manipulates containers. |
|
Package donation tracks files that are being donated to a child process and using flags to notified the child process where the FDs are.
|
Package donation tracks files that are being donated to a child process and using flags to notified the child process where the FDs are. |
|
Package flag wraps flag primitives.
|
Package flag wraps flag primitives. |
|
Package fsgofer provides a lisafs server implementation which gives access to local files.
|
Package fsgofer provides a lisafs server implementation which gives access to local files. |
|
filter
Package filter defines all syscalls the gofer is allowed to make, and installs seccomp filters to prevent prohibited syscalls in case it's compromised.
|
Package filter defines all syscalls the gofer is allowed to make, and installs seccomp filters to prevent prohibited syscalls in case it's compromised. |
|
Package hostsettings provides suggestions or adjustments for host kernel settings to improve runsc performance, stability, or security.
|
Package hostsettings provides suggestions or adjustments for host kernel settings to improve runsc performance, stability, or security. |
|
Package metricserver implements a Prometheus metric server for runsc data.
|
Package metricserver implements a Prometheus metric server for runsc data. |
|
containermetrics
Package containermetrics returns metrics and labels interesting to export about a container or sandbox.
|
Package containermetrics returns metrics and labels interesting to export about a container or sandbox. |
|
Package mitigate provides libraries for the mitigate command.
|
Package mitigate provides libraries for the mitigate command. |
|
Package profile contains profiling utils.
|
Package profile contains profiling utils. |
|
Package sandbox creates and manipulates sandboxes.
|
Package sandbox creates and manipulates sandboxes. |
|
bpf
Package bpf provides compiled bpf programs as byte slices.
|
Package bpf provides compiled bpf programs as byte slices. |
|
Package specutils contains utility functions for working with OCI runtime specs.
|
Package specutils contains utility functions for working with OCI runtime specs. |
|
safemount_test
safemount_runner is used to test the SafeMount function.
|
safemount_runner is used to test the SafeMount function. |
|
seccomp
Package seccomp implements some features of libseccomp in order to support OCI.
|
Package seccomp implements some features of libseccomp in order to support OCI. |
|
Package starttime holds the time the `runsc` command started.
|
Package starttime holds the time the `runsc` command started. |
|
Package version holds a string containing version information for runsc.
|
Package version holds a string containing version information for runsc. |
Click to show internal directories.
Click to hide internal directories.