-
I'm running `vopono` as a root service, which works pretty well (despite this issue: https://github.com/jamesmcm/vopono/issues/84?). But it would be nicer if the service can be notified when the names…
musjj updated
6 months ago
-
When a packet is sent from a pod netns to a remote host netns in the tunneling mode, the packet is masqueraded and sent directly over a native device instead of being encapsulated and sent over a tunn…
-
Wouldn't it be more efficient to just create the listening socket in one of the network namespaces and then accept() and connect() in the same thread? It is not necessary to change the network namespa…
-
This is an example proof of concept that uses veth interfaces instead of complicated filters and rules. I don't know if this
would be better than how libreqos works today, and not faster (I think), …
dtaht updated
2 months ago
-
The server currently has three dependencies: Containerd, Buildkitd and Nerdctl. It also must run as root because Nerdctl fails to create a bridge device in rootless mode (possibly due to detach netns …
-
The `auto_netns` option for NDB is nice, but why does it handle the attributes `target` and `netns` other than it is done when adding an netns manually by using `ndb.sources.add(netns='mynetns')`?
…
-
## CVE-2024-35910 - Medium Severity Vulnerability
Vulnerable Libraries - linuxlinux-4.19.30, linuxlinux-4.19.30
Vulnerability Details
In the Linux kernel, the following vulnerability has…
-
Placeholder for a known flake wherein network namespaces are being leaked at the end of a system test run, even when all tests pass:
```
# +netns-UUID
#
# ^^^^^ Leaks f…
-
Hi. This is a bit peculiar so feel free to convert this to a discussion, but I feel like issues would get more visibility if someone looks for this in the future, as I think it'll take a while to get …
-
The following lines from `netns@.service` can be replaced with the single command `ip netns attach %I {pid}` (using any pid in the service's network namespace) whenever it's safe to depend on iproute2…