Jump to content

Main menu Navigation ●Main page ●Contents ●Current events ●Random article ●About Wikipedia ●Contact us ●Donate Contribute ●Help ●Learn to edit ●Community portal ●Recent changes ●Upload file

●Create account ●Log in ●Create account ● Log in Pages for logged out editors learn more ●Contributions ●Talk

(Top) 1 References

gVisor

●日本語 Edit links ●Article ●Talk ●Read ●Edit ●View history Tools Actions ●Read ●Edit ●View history General ●What links here ●Related changes ●Upload file ●Special pages ●Permanent link ●Page information ●Cite this page ●Get shortened URL ●Download QR code ●Wikidata item Print/export ●Download as PDF ●Printable version Appearance From Wikipedia, the free encyclopedia

gVisor

Developer(s)	Google
Initial release	2 May 2018; 6 years ago (2018-05-02)
Repository	github.com/google/gvisor
Written in	Go
Operating system	Linux
License	Apache License 2.0
Website	gvisor.dev

gVisor is a container sandbox developed by Google that focuses on security, efficiency and ease of use.^[1]^[2] gVisor implements around 200 of the Linux system callsinuserspace, for additional security compared to Docker containers that run directly on top of the Linux kernel and are isolated with namespaces.^[3]^[4] Unlike the Linux kernel, gVisor is written in the memory-safe programming language Go to prevent common pitfalls which frequently occur in software written in C.^[5]

According to Google^[6] and Brad Fitzpatrick,^[7] gVisor is used in Google's production environment including the App Engine standard environment, Cloud Functions, Cloud ML Engine and Google Cloud Run.^[8] Most recently, gVisor was integrated with Google Kubernetes Engine, allowing users to sandbox their Kubernetes pods for use cases like SaaS and multitenancy.^[9]

References[edit]

^ Google Cloud Platform: Open-sourcing gVisor, a sandboxed container runtime

^ "gvisor.dev". gvisor.dev. Retrieved 2019-05-28.

^ "Updates in container isolation". LWN.net. Retrieved 18 February 2019.

^ "Sandboxing with gVisor". 17 June 2018. Retrieved 18 February 2019 – via Medium.

^ Cutler, Cody; Kaashoek, M. Frans; Morris, Robert T. (2018). The benefits and costs of writing a POSIX kernel in a high-level language. pp. 89–105. ISBN 978-1-939133-08-3.

^ "GKE Sandbox: Bring defense in depth to your pods". Google Cloud Blog. Retrieved 2019-05-28.

^ "Brad Fitzpatrick Twitter". Retrieved 18 February 2019 – via Twitter.

^ "Container runtime contract | Cloud Run". Google Cloud. Retrieved 2019-04-10.

^ "GKE Sandbox". Google Cloud. Retrieved 2019-05-28.

Google free and open-source software

Software

Applications	Chromium Gemma OpenRefine Tesseract
Programming languages	Carbon Dart Go Sawzall
Frameworks and development tools	AMP Angular AngularJS Beam Bazel Blockly Closure Tools Cpplint FlatBuffers Flutter Gears Gerrit Guava gRPC Gson Guetzli Guice gVisor Kubernetes LevelDB libvpx NaCl OR-Tools Polymer Protocol Buffers TensorFlow V8
Operating systems	AOSP ChromiumOS Fuchsia gLinux Goobuntu

This Google-related article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=GVisor&oldid=1191411381" Categories: ●Google software ●Free software programmed in Go ●Linux APIs ●Software using the Apache license ●Google stubs Hidden categories: ●Articles with short description ●Short description matches Wikidata ●All stub articles ●This page was last edited on 23 December 2023, at 11:07 (UTC). ●Text is available under the Creative Commons Attribution-ShareAlike License 4.0; additional terms may apply. By using this site, you agree to the Terms of Use and Privacy Policy. Wikipedia® is a registered trademark of the Wikimedia Foundation, Inc., a non-profit organization. ●Privacy policy ●About Wikipedia ●Disclaimers ●Contact Wikipedia ●Code of Conduct ●Developers ●Statistics ●Cookie statement ●Mobile view