Skip to content
Permalink
Branch: master
Commits on Jun 14, 2019
  1. devtool: added libc build option

    dhrgit authored and dianpopa committed Jun 13, 2019
    Added a new option, to allow specifying the libc used when building with
    `devtool build`. I.e. musl or gnu.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Mar 13, 2019
  1. docs: rootfs and kernel img guide

    dhrgit authored and acatangiu committed Mar 11, 2019
    Added a short guide on creating uncompressed kernel and rootfs images
    that can be used with Firecracker.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Feb 25, 2019
  1. Cargo.lock: updated Firecracker version

    dhrgit authored and aghecenco committed Feb 25, 2019
    Updated the the Firecracker / jailer versions in Cargo.lock.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  2. Fixed the API swagger definition

    dhrgit authored and aghecenco committed Feb 25, 2019
    Fixed a few errors in the swagger definition, that were causing parsers
    to reject out yaml.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  3. Dev container upgrade: v5

    dhrgit authored and aghecenco committed Feb 22, 2019
    Removed paramiko as a dependency, since it was yielding a bunch of
    Python deprecation warnings when used with the latest Python
    version available from the Ubuntu repos.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Feb 22, 2019
  1. Documenting PATCH /network-interfaces/

    dhrgit authored and aghecenco committed Feb 22, 2019
    Added a doc providing details about the usage of the new API call for
    post-boot updating the net rate limiters.
    Added a CHANGELOG entry mentioning this new API call.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  2. Unit tests for PATCH /network-interfaces/

    dhrgit authored and aghecenco committed Feb 19, 2019
    Added unit tests for the new code that enables support for post-boot
    updating of the network interface rate limiters.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  3. rate_limiter: removed custom deserialization logic

    dhrgit authored and aghecenco committed Feb 19, 2019
    Removed the RateLimiter partial serialization logic, removing a de-facto
    dependency on the VMM / custom Firecracker logic. Also changed the VMM
    code that relied on the RateLimiter serialization.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  4. rate_limiter: always create timer_fd

    dhrgit authored and aghecenco committed Feb 18, 2019
    RateLimiter::timer_fd is now always created by RateLimiter::new(), since
    rate limiters can now be added after setting up seccomp.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  5. Integration tests for PATCH /network-interfaces

    dhrgit authored and aghecenco committed Feb 15, 2019
    Added integration tests for updating the net rate limiters via PATCH
    /network-interfaces.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  6. New API call: PATCH /network-interfaces

    dhrgit authored and aghecenco committed Feb 8, 2019
    Added support for updating a network device, both pre- and post-boot.
    This is implemented via a PATCH API request.
    Currently, the only properties supported for update are the RX and TX
    rate limiters.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Feb 15, 2019
  1. devtool prepare_release: fix for macOS/BSD

    dhrgit authored and aghecenco committed Jan 31, 2019
    Added a few minor adjustments to make `devtool prepare_release` work
    with the macOS/BSD tools and environment. Tested on macOS only, but it's
    nice to say "BSD". BSD.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Feb 13, 2019
  1. Added guest mac spoofing detection

    dhrgit authored and aghecenco committed Feb 8, 2019
    Added a new metric (net.tx_spoofed_mac_count), to count the number of
    egress packets, having a spoofed MAC (i.e. different from the one set
    via PUT /network-interfaces, if one was provided).
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Feb 6, 2019
  1. New API action: SendCtrlAltDel

    dhrgit authored and alexandruag committed Dec 6, 2018
    Added a new API action to send CTRL+ALT+DEL to the guest. This can be used
    to trigger a graceful shutdown of the microVM, if the guest has support
    for i8042 and AT Keyboard.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  2. Update to Rust 1.32

    dhrgit authored and alexandruag committed Feb 5, 2019
    - Updated dev container to Rust 1.32
    - Added brk() to the seccomp whitelist (needed to support Rust 1.32)
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Feb 4, 2019
  1. virtio-blk: fixed some bound checks

    dhrgit authored and aghecenco committed Jan 28, 2019
    Added a few bound check fixes to the virtio-blk device model.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  2. virtio-blk: Fix flush support

    dhrgit authored and aghecenco committed Jan 28, 2019
    Flush requests weren't handled properly by the virtio-blk device model.
    Specifically, our old code would fail to parse flush requests that
    didn't provide a data buffer (as per the VirtIO spec, a data buffer may
    or may not be present, but shouldn't be).
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Dec 13, 2018
  1. Applied Rust 1.31 rustfmt

    dhrgit authored and acatangiu committed Dec 12, 2018
    All the changes in this commit were made by rustfmt, via:
    `cargo fmt --all`
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  2. devtool: new command - `devtool fmt`

    dhrgit authored and acatangiu committed Dec 11, 2018
    Addded a devtool wrapper over `rustfmt`. I.e. `devtool fmt` will invoke
    `cargo fmt --all`, to ensure the rust style test passes.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  3. Updated dev container to Rust 1.31 (Rust 2018)

    dhrgit authored and acatangiu committed Dec 10, 2018
    - Updated dev container toolchain to Rust 1.31
    - Updated container version to v2
    - Updated devtool to force the use of a specific version of dev
      container. This is another step on our way to supporting reproducible
      builds.
    - Removed the `update` devtool command - it doesn't make sense anymore,
      when using versioned containers.
    - Added rustfmt to dev container
    - Removed `rustfmt-preview` installation from test_style.py
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Dec 1, 2018
  1. getting-started: Warn on nested virtualization

    dhrgit authored and acatangiu committed Nov 30, 2018
    The BASH snippet recommended for checking the host requirements was issuing
    an ERROR if it detected a nested virtualization environment. Downgraded
    that to a warning, since reports came in that Firecracker was successfully
    run on GCE, with L2 KVM.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Nov 29, 2018
  1. getting-started: Host requirements check

    dhrgit authored and acatangiu committed Nov 28, 2018
    Added a BASH script snippet that can check if the host system meets the
    basic requirements to run Firecracker.
    Also removed the kernel version check from the KVM access setup
    appendix, since it was both out of scope and wrong (yielding false
    positives).
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Nov 23, 2018
  1. Firecracker release v0.11.0

    dhrgit committed Nov 23, 2018
    Updated changelog and version to v0.11.0.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Nov 22, 2018
  1. devtool: removed unused AWS code

    dhrgit authored and aghecenco committed Nov 22, 2018
    Removed some unsed code dealing with AWS credentials, left behind by
    mistake during the private to public image/container migration.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  2. devtool: removed S3 image bucket override

    dhrgit authored and andreeaflorescu committed Nov 22, 2018
    `devtool` used to force the use of the minified image bucket. That is no
    longer needed, since that bucket is now the default in s3fetcher.py.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  3. devtool: switched to public Docker Hub container

    dhrgit authored and andreeaflorescu committed Nov 21, 2018
    Replaced the temporary private container (hosted on ECR) with a public
    container hosted on Docker Hub.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  4. tests s3fetcher.py: enabled anonymous access to S3

    dhrgit authored and andreeaflorescu committed Nov 21, 2018
    Anonymous access to S3 needed to be expressly enabled in boto3; the
    integration tests were failing to run without a set of AWS credentials,
    being unable to fetch the test microVM images from S3.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Nov 19, 2018
  1. docs: added a getting-started guide

    dhrgit committed Nov 13, 2018
    Added a new doc, detailing the steps needed to get started with
    building, testing and running Firecracker, using devtool and the
    development container.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Nov 14, 2018
  1. devtool: Fix test_shut_down.py hang

    dhrgit authored and andreeaflorescu committed Nov 14, 2018
    The Docker container was being launched without a default init process
    to reap all zombie processes inside the container. This caused the
    firecracker process to hang around in a defunct state, which, in turn,
    caused test_shut_down.py to timeout, waiting for the firecracker PID to
    disappear.
    Fix: now launching Docker with a default init process (`docker run
    --init`).
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  2. devtool: handle not running in a terminal

    dhrgit authored and andreeaflorescu committed Nov 13, 2018
    devtool was not handling not running in a terminal properly (e.g. when
    using input/output/error pipes). Fixes:
    - don't ask for user confirmation if STDIN is not attached to a
      terminal (i.e. fail unless -y/--unattended was specified);
    - don't use colors if STDOUT is not attached to a terminal;
    - don't use colors in error messages if STDERR is not attached to a
      terminal;
    - properly pass (or don't pass) the terminal endpoints to the docker
      container.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Nov 12, 2018
  1. dev container: going (silently) public

    dhrgit authored and andreeaflorescu committed Nov 9, 2018
    Anonymized some names/string in the microvm image bucket and the dev
    container name, since the image bucket is now public, and the container
    has ECR anonymous access enabled. Still not open-source yet.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  2. Added tools/devtool - a dev container helper tool

    dhrgit authored and andreeaflorescu committed Nov 7, 2018
    Added a multi-purpose development helper tool. It uses a Docker
    container to build, test, and run Firecracker. The container is
    transparent to the user.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
  3. A bunch of minor fixes to the testing system

    dhrgit authored and andreeaflorescu committed Nov 7, 2018
    s3fetcher.py: fixed crash due to extra files in the microVM bucket
    test_coverage.py: ignore build/ dir.
    test_style.py: ignore build/dir; fixed pydocstyle test; disabled
    pydocstyle test temporarily (this test only used to pass because it was
    broken).
    pytest.ini: moved .pytest_cache to build/pytest_cache to reduce source
    tree littering.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Nov 9, 2018
  1. integ tests: use external clone() tool

    dhrgit committed Nov 8, 2018
    Python's ctypes libc interface appears to be broken, causing a
    deadlock in the process of cloning into the jailer. Fixed this by adding
    a clone/exec tool, written in C, to the testing system.
    Warning: two new issues remain to be solved:
    1. memory_cop now needs to handle the case where the jailer process
    exists first, and
    2. test_shutdown now needs to watch the jailer PID via some other method
    than waitpid(), since the jailer is no longer a direct child.
    
    Signed-off-by: Dan Horobeanu <dhr@amazon.com>
Commits on Oct 19, 2018
  1. test_boottime.py: fixed time extraction regex

    dhrgit authored and andreeaflorescu committed Oct 18, 2018
    The regex used to find the boot time in the log was failing for boot
    times lower than 100ms. Fixed it.
Older
You can’t perform that action at this time.