archive-gh-me/gitpod
1
0
Fork 0
mirror of https://github.com/gitpod-io/gitpod.git synced 2025-12-08 17:36:30 +00:00
Code Issues Projects Releases Wiki Activity
6,273 Commits 1,231 Branches 1,883 Tags
Commit Graph

127 Commits

Author SHA1 Message Date
Manuel Alejandro de Brito Fontes
438ffab694 Update k8s dependencies to v0.24.4 2022-08-23 08:18:39 +02:00
Manuel Alejandro de Brito Fontes
7b4a885ee3 Update k8s dependencies to v0.24.3 2022-08-23 08:18:39 +02:00
Andrew Farries
c4363513a5 Run gofmt 
gofmt -w .

From the repository root.
 2022-08-08 10:54:52 -03:00
Pavel Tumik
3005ea04b7 fix unhelpful log messages 2022-07-13 04:06:59 +02:00
Pudong Zheng
51b4e1b01c [workspacekit] fix mount when use ubuntu docker image 2022-07-12 17:47:59 +02:00
Manuel Alejandro de Brito Fontes
ea6ade104f Update containerd and docker dependencies 2022-07-06 13:31:53 +05:30
JenTing Hsiao
856371178d Revert "Update k8s dependencies to v0.24.2" 
This reverts commit 2911bc3283c2b79aacde0d16bce056de62eb696b.
 2022-07-05 11:11:01 +02:00
utam0k
8acb3ae6a0 seccomp: add handling of ENOENT. 2022-07-05 05:33:52 +05:30
utam0k
dcba777c86 workspacekit: Update libseccomp 2022-07-05 05:33:52 +05:30
utam0k
79525bf037 seccomp: support for parallel system calls. 2022-07-05 05:33:52 +05:30
utam0k
3ada54994e seccomp: path the workspace id for logging. 2022-07-05 05:33:52 +05:30
utam0k
06a4dba7c5 seccomp: fix typo for the log 2022-07-05 05:33:52 +05:30
Manuel Alejandro de Brito Fontes
2911bc3283 Update k8s dependencies to v0.24.2 2022-07-05 03:37:52 +05:30
Thomas Schubart
da3de1691e [workspacekit] Expose workspace info 2022-06-28 22:45:37 +05:30
Pavel Tumik
26c17da071 call prestophook.sh from ring1 directly 2022-06-21 12:36:30 +05:30
JenTing Hsiao
9631a0b57b Remove deprecated function 
The function grpc.WithInsecure() is deprecated, use
grpc.WithTransportCredentials(insecure.NewCredentials()) instead.

Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-06-15 13:07:24 +05:30
utam0k
99bb9442a3 workspackit: put the workspace id into seccomp handler's log to trace. 2022-06-03 01:07:51 +05:30
utam0k
f5b1475e7c workspackit: put the workspace id into log to trace. 2022-06-03 01:07:51 +05:30
utam0k
3486caa40b seccomp notify: correction of system call name in log. 2022-05-19 07:27:33 +05:30
utam0k
6b5f345e2d workspacekit: Record the errors of connecting to ws-daemon. 2022-05-16 11:56:31 +05:30
Pavel Tumik
791163b5cc [workspacekit] improve logging when not able to connect to daemon 2022-05-12 11:23:27 +05:30
utam0k
a766836727 workspacekitp: Remove slirp4netns codes where it affects the supervisor. 2022-05-10 00:35:25 +05:30
Pavel Tumik
0ffc77d16a PR feedback fixes 2022-05-04 03:08:19 +05:30
Pavel Tumik
301190db53 Add persistent volume support for workspaces 
fix
 2022-05-04 03:08:19 +05:30
Christian Weichel
314833cdc2 [common-go] Add keyed gRPC rate limits 2022-04-29 16:01:15 +05:30
Manuel Alejandro de Brito Fontes
21e549d2ba [workspacekit] Increase rin0 ws-daemon socket timeout 2022-04-26 18:10:38 +05:30
Manuel Alejandro de Brito Fontes
1b88c8058e Update go modules 2022-04-25 15:52:37 +05:30
utam0k
fa49f33dfa Use veth instead of slirp4netns while preventing impact on supervisor. 2022-04-11 16:07:24 +05:30
utam0k
f046782319 ws-dameon: implement the SetupPairVeths function. 2022-04-11 16:07:24 +05:30
Anton Kosyakov
b3ea6db43e Revert "ws-dameon: implement the SetupPairVeths function." 
This reverts commit a960121dce48a80c3e5919f4fe7f056781ef9504.
 2022-04-08 18:19:21 +05:30
Anton Kosyakov
5bdf47767e Revert "ws-daemon: Use a pair of veths instead of slirp4netns" 
This reverts commit 4fef102695684ad3e98ed90c7f368d79aa1e304d.
 2022-04-08 18:19:21 +05:30
utam0k
4fef102695 ws-daemon: Use a pair of veths instead of slirp4netns 
Pod Network Namespace(ring1)
+------------------------------------------------+
|                                                |
|       Workspace Network Namesapce(ring2)       |
| +--------------------------------------------+ |
| |                                            | |
| |              default via veth0             | |
| |                                            | |
| |                                            | |
| |     +------+  +--------------+             | |
| |     |  lo  |  |    ceth0     | 10.0.2.2/24 | |
| |     +------+  +--^--------+--+             | |
| |                  |        |                | |
| +------------------+--------+----------------+ |
|                    |        |                  |
|                 +--+--------v--+               |
|   +-----------> |    veth0     | 10.0.2.1/24   |
|   |             +-----------+--+               |
|   |                         |                  |
|   |          +--------------v-----+            |
|   |          |                    |            |
|   |          |      nftables      |            |
|   |          |   (ip masquerade)  |            |
|   |          +--------------+-----+            |
|   |                         |                  |
|   |   +------+  +-----------v--+               |
|   |   |  lo  |  |     eth0     |               |
|   |   +------+  +--^--------+--+               |
|   |                |        |                  |
|   |          +-----+--------v-----+            |
|   |          |                    |            |
|   +----------+      nftables      |            |
| if with port | (port redirecter)  |            |
|              +-----^--------+-----+            |
|                    |        |                  |
+--------------------+--------+------------------+
                     |        |
                     |        |
                     |        v
                    o u t s i d e
 2022-04-08 13:41:21 +05:30
utam0k
a960121dce ws-dameon: implement the SetupPairVeths function. 2022-04-08 13:41:21 +05:30
Christian Weichel
01c257f1e8 [supervisor] Mount custom CA in ring2 
if it exists
 2022-04-05 21:28:19 +05:30
Thomas Schubart
948080914e Discard log output from slirp4netns 2022-03-16 16:44:23 +05:30
Christian Weichel
4085202362 [workspacekit] Establish ring1 cgroup namespace 2022-03-04 04:08:11 +05:30
Manuel Alejandro de Brito Fontes
a563242ef3 Update go dependencies 2022-03-03 18:46:10 +05:30
Thomas Schubart
bf1100bc2a Update readme 2022-02-15 19:57:55 +01:00
Thomas Schubart
4f9e294b8a Add overview of namespaces 2022-02-15 19:57:55 +01:00
utam0k
9b630550a6 docs: Add a diagram of the worksapce architecture to the README.md 2022-02-15 19:57:55 +01:00
Thomas Schubart
4af0e0dfb4 Ensure docker in workspace works with fuse 2022-02-14 10:14:35 +01:00
utam0k
149ca15a1a workspacekit: Enable scmpid check. 2022-02-10 14:13:31 +01:00
Pudong Zheng
0c31ecd7a8 modify supervisor entry to init 2022-02-09 17:35:31 +01:00
mustard
877e8b7fa9 [workspacekit] make /etc/hosts modifiable 2022-02-08 13:28:29 +01:00
Mads Hartmann
dd8b5b728a Remove OWNERS related files 
Fixes https://github.com/gitpod-io/ops/issues/844
 2022-02-08 09:15:30 +01:00
Thomas Schubart
4eefd2ab71 Switch to our own libseccomp bindings 2022-02-04 08:46:26 +01:00
Christian Weichel
af763f2254 Revert "Bump libseccomp-golang" 
This reverts commit bc182ae63aec4be329e40fb4217177cebbeb78ea.
 2022-01-20 12:12:12 +01:00
Pavel Tumik
a1505511f3 improve error logging for receiveSeccmpFd 
Fixes #7696
 2022-01-20 10:49:12 +01:00
Christian Weichel
bc182ae63a Bump libseccomp-golang 2022-01-18 15:07:11 +01:00
Christian Weichel
3fd571bc2a [workspacekit] Don't shadow /.supervisor 2021-12-10 17:11:35 +01:00