gVisor Users [Public]

Hi Jonathon, I think this is a gVisor specific issue. I have responded to the GH issue in mountpoint-

I will respond on https://github.com/google/gvisor/issues/10316. It is an issue in gVisor. The first

Hi Alan, sorry for the late reply. There's no prebuilt feature to support this, but it looks like

It seems the reason is we're running createRuntime inside the newly created user namespace, I

Hi gVisor users and developers! I am thrilled to announce a new tool by the vHive serverless

Searching for the "Could not handshake: Error in the pull function" error online shows that

Consider trying IntelliJ/Goland with the Bazel plugin. It supports cross references in Bazel projects

The specific way containers/processes get memory depends on the platform (systrap or KVM), but

Zach and Etienne, Thanks much for your response. I wanted to see some perf data like what is listed

Thanks, Andrei. Currently, I am interested in bare metal. So, looks like KVM is the choice there. In

You will need to provide more details than that in order to figure out the problem. Please see the

Hi, IIUC, containerd delegates the checkpoint/restore work to the underlying container runtime (like

I didn't look in detail, but most likely this is due to a difference in implementation as to how

If you want to avoid syscalls entirely, you can try creating a packet socket on a loopback device

Hello, gVisor performance is a complex topic and the results vary a lot depending on many factors.

Thanks, all good! On Monday, October 9, 2023 at 10:58:12 PM UTC-4 Ayush Ranjan wrote: Hi Jonathon,

Do you happen to know if the Nvidia's kernel-mode driver apply any checks on the DMA? Is there a

You can check runsc logs, it will include general configuration information, like platform. Runsc

I think I know how it works after reading the source code: The sentry in host ring3 maps itself into

So the reason that it was broken was because we limit the amount of processes that can be made within

So, this does not work? https://devopstales.github.io/kubernetes/gvisor-cri-o/ Fabricio Voznika

I was working lately on optimizing startup times for our gvisor/ptrace-based platform and now I am

gVisor is fine. You probably are using the runtime that caches random numbers. I can suggest not

Hi Aurelien, I don't think there's any Gentoo/ebuild specific packaging of gVisor. The

Hi Prason, It is hard to tell exactly what is going wrong from the error message. In /etc/docker/

https://www.gvisor.dev should work now (and redirect to the non-"www." domain). Thanks

Hello, For Kubernetes, gVisor only supports containerd at the moment. We'd be happy to accept

This feature has been made the default in runsc after https://github.com/google/gvisor/commit/

Hi Anvitha, > I have installed kubernetes 1.21 version with docker as a container manager Just to

Thank you for both answers. This helped out a ton. On Tuesday, 18 April 2023 at 00:28:18 UTC+2