sandboxed-api

StarMirror/sandboxed-api

Fork 0

mirror of https://github.com/google/sandboxed-api.git synced 2024-03-22 13:11:30 +08:00

Commit Graph

Author	SHA1	Message	Date
Wiktor Garbacz	abd3faf51b	monitor_unotify: Use eventfd instead of pipe for notifications PiperOrigin-RevId: 557479262 Change-Id: Ie03e4e8915950999ff0b47e8b08c50241e53a600	2023-08-16 07:29:11 -07:00
Wiktor Garbacz	0d3d5d4bcb	Seccomp_unotify based monitor Unotify based monitor should bring big performance wins if the sandboxee heavily uses threading or signals. Some of the features are not supported in that mode: - execveat is always allowed instead of just the initial one - stack traces are not collected on normal exit or if the process is terminated by signal PiperOrigin-RevId: 515040101 Change-Id: Ia5574d34b4ff7e91e3601edb8c9cb913e011fbf6	2023-03-08 08:09:34 -08:00

Author

SHA1

Message

Date

Wiktor Garbacz

abd3faf51b

monitor_unotify: Use eventfd instead of pipe for notifications

PiperOrigin-RevId: 557479262
Change-Id: Ie03e4e8915950999ff0b47e8b08c50241e53a600

2023-08-16 07:29:11 -07:00

Wiktor Garbacz

0d3d5d4bcb

Seccomp_unotify based monitor

Unotify based monitor should bring big performance wins
if the sandboxee heavily uses threading or signals.
Some of the features are not supported in that mode:
- execveat is always allowed instead of just the initial one
- stack traces are not collected on normal exit or if the process is terminated by signal

PiperOrigin-RevId: 515040101
Change-Id: Ia5574d34b4ff7e91e3601edb8c9cb913e011fbf6

2023-03-08 08:09:34 -08:00

2 Commits