-
gVisor fails in unintuitive ways when run on an older version of Linux. We should print a warning or simply fail if he version of Linux used is less than the currently supported version.
-
It would be awesome to have some docs describing the default security stance and threat model of the earthly tool as well as ways to harden it e.g. by using podman #760, or container runtimes like [gV…
-
The endpoint returned by `udp.ForwarderRequest.CreateEndpoint` doesn't have `effectiveNetProtos` filled (it's `nil`).
Maybe I'm missing something and I should do some initialization by hand?
T…
-
TUN generally requires an IP stack - in go I've used lwIP and gvisor, AFAIK lwIP is also supported in Rust ( at least Rust embedded).
It is possible to use Tun without root - by setting the owner o…
-
### 操作系统
Windows
### 系统版本
10 LTSC
### 安装类型
宣传使用 sing-box 的第三方图形客户端程序 (Windows)
### 如果您使用图形客户端程序,请提供该程序版本。
V2RayN V6.55
### 版本
```shell
Environment: go1.22.6 windows/amd64
Tags: with_gvisor,w…
1F357 updated
1 month ago
-
**Is this a BUG REPORT or FEATURE REQUEST? (leave only one on its own line)**
/kind bug
**Description**
Podman machine on MacOS does not forward IPv6 TCP traffic.
Regardless of limitat…
-
### Description
I'm interested in implementing `/proc/sys/kernel/pid_max`, and I'm looking to get some feedback before I go about implementing it. If the team would accept a simple PR adding a static…
-
### Description
This is unfortunately not a reproduction as I have not even been able to reproduce this behavior outside of our production environment. But I've gathered some information which I'm sh…
-
https://github.com/opencontainers/runtime-spec/blob/master/config.md#process
Many process fields are already used (e.g. env, args, user, capabilities, etc.) Need to identify remaining fields that n…
-
While it is fast and a good test of the gVisor network stack these tests would also be useful for conformance comparisons with Linux and Fuchsia. To be able to do that they should be ported to Packeti…