| commit | 6605b2399471417b85447927247832e3aaa85b5c | [log] [tgz] |
|---|---|---|
| author | Loo Rong Jie <loorongjie@gmail.com> | Wed Jul 10 08:22:40 2019 -0700 |
| committer | Copybara-Service <copybara-worker@google.com> | Wed Jul 10 08:23:47 2019 -0700 |
| tree | e6e7dc31348cff669bf58b02007bd546e0ae3ae0 | |
| parent | 4bcdb7521596ceaed9b27f2693c76044ac08fd72 [diff] |
[sandbox] Run sandbox from common execroot Make sandboxed process run under main execroot instead of unique sandboxed execroot. This way, we do not need to copy/symlink input files before execution and clean up sandbox base after execution. Summary of how it works: - `windows-sandbox` blocks all file access under current directory (main execroot). - Declared input paths will be marked readable. - Declared output paths will be marked writable. - If sandboxed process tries to open file for read/write when the path is not marked with that permission, the operation will fail (e.g. `fopen` will return `nullptr`). Closes #8849. PiperOrigin-RevId: 257408096
{Fast, Correct} - Choose two
Build and test software of any size, quickly and reliably.
Speed up your builds and tests: Bazel only rebuilds what is necessary. With advanced local and distributed caching, optimized dependency analysis and parallel execution, you get fast and incremental builds.
One tool, multiple languages: Build and test Java, C++, Android, iOS, Go, and a wide variety of other language platforms. Bazel runs on Windows, macOS, and Linux.
Scalable: Bazel helps you scale your organization, codebase, and continuous integration solution. It handles codebases of any size, in multiple repositories or a huge monorepo.
Extensible to your needs: Easily add support for new languages and platforms with Bazel's familiar extension language. Share and re-use language rules written by the growing Bazel community.
Follow our tutorials:
See CONTRIBUTING.md
Bazel is released in ‘Beta’. See the product roadmap to learn about the path toward a stable 1.0 release.