aljaz/kata-containers
1
0
Fork 0
mirror of https://github.com/aljazceru/kata-containers.git synced 2026-01-02 14:04:22 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
4f80ea196287d318e52e58097a2f4b2a0f49dee7
kata-containers/src/runtime/virtcontainers/persist
History
Liang Zhou ef925d40ce runtime: enable sandbox feature on qemu 
Enable "-sandbox on" in qemu can introduce another protect layer
on the host, to make the secure container more secure.

The default option is disable because this feature may introduce some
performance cost, even though user can enable
/proc/sys/net/core/bpf_jit_enable to reduce the impact.

Fixes: #2266

Signed-off-by: Feng Wang <feng.wang@databricks.com>
2022-06-17 15:30:46 -07:00
..
api
runtime: enable sandbox feature on qemu
2022-06-17 15:30:46 -07:00
fs
runtime: Allock mockfs storage to be placed in any directory
2022-04-22 14:47:59 +10:00
plugin
runtime: move all code to src/runtime
2020-04-27 19:39:25 -07:00
manager_test.go
runtime: Move mockfs control global into mockfs.go
2022-04-22 14:23:36 +10:00
manager.go
runtime: Move mockfs control global into mockfs.go
2022-04-22 14:23:36 +10:00