runc
runc copied to clipboard
opencontainers
CLI tool for spawning and running containers according to the OCI specification
Although `getNetworkInterfaceStats(interfaceName string)` was implemented in runc, containerd does not transfer the interface name to runc. So we still can’t get the network stats from libcontainer’s Stats(). Because in a...
`runc kill --help` says: `--all, -a send the specified signal to all processes inside the container` But if we use shared cgroup path to create 2 containers a & b....
If container b joins container a's pid namespace, once delete container b, it may cause leakage of process in containerb. For example: Use busybox image as rootfs, with start arg...
Signed-off-by: lifubang I think #2032 fixed the problem on disabled SELinux Machines. But on enabled SELinux Machines with some old kernels, it still be fail when `selinuxLabel` is empty. So,...
Because the `/run` folder in all my linux cloud server have `noexec` mount flag. So if cloned_binary fallback to temp file copy, there will be `nsenter: could not ensure we...
Kubernetes invoke runc to delete container Cgroup , now when delete error , just return path which remove fail, not contains fail reason, so add the fail reason
At that time, if there is no user defined CgroupsPath, we use container's name as cgroup path. It will cause cgroup rewrite by different containers with the same id in...
In a Kubernetes cluster with a large number of services (>5000, causing a large amount of environment variables for the container) with guaranteed pods, the `runc init` process can take...
The first process launched in the container should set Init flag to true. otherwise the process won't be contained to configured namespace
Metadata
Owner
Metadata
CLI tool for spawning and running containers according to the OCI specification