kat/hakurei
1
0
Fork 0
forked from rosa/hakurei
Code Pull Requests Activity

Commit Graph

  • 10a21ce3ef helper: expose extra files to direct cat 2025-03-15 02:21:59 +09:00
  • 0f1f0e4364 helper: combine helper ipc setup cat 2025-03-15 02:10:22 +09:00
  • f9bf20a3c7 helper: rearrange initialisation args cat 2025-03-15 01:02:18 +09:00
  • 73c1a83032 helper: move process wrapper to direct cat 2025-03-15 00:33:25 +09:00
  • f443d315ad helper: clean up interface cat 2025-03-15 00:27:44 +09:00
  • 9e18d1de77 helper/proc: pass extra files and start cat 2025-03-14 23:23:57 +09:00
  • 2647a71be1 seccomp: move out of helper cat 2025-03-14 22:42:40 +09:00
  • 7c60a4d8e8 helper: embed context on creation cat 2025-03-14 18:30:22 +09:00
  • 4bb5d9780f ldd: run in native sandbox cat 2025-03-14 17:51:29 +09:00
  • f41fd94628 sandbox: write uid/gid map as init cat 2025-03-14 17:41:08 +09:00
  • 94895bbacb sandbox: invert seccomp ruleset defaults cat 2025-03-14 02:38:32 +09:00
  • f332200ca4 sandbox: mount container /dev cat 2025-03-14 02:18:44 +09:00
  • 2eff470091 sandbox/mount: pass custom tmpfs name cat 2025-03-14 02:12:35 +09:00
  • a092b042ab sandbox: pass params to setup ops cat 2025-03-14 02:11:38 +09:00
  • e94b09d337 sandbox/mount: fix source flag path cat 2025-03-14 02:10:48 +09:00
  • 5d9e669d97 sandbox: separate tmpfs function from op cat 2025-03-14 00:21:20 +09:00
  • f1002157a5 sandbox: separate bind mount function from op cat 2025-03-14 00:16:41 +09:00
  • 4133b555ba internal/app: rename init to init0 cat 2025-03-13 21:57:54 +09:00
  • 9b1a60b5c9 sandbox: native container tooling cat 2025-03-13 20:59:03 +09:00
  • beb3918809 test: run go test under regular user cat 2025-03-13 20:56:32 +09:00
  • 2871426df2 test: print output of failed test cat 2025-03-13 16:40:15 +09:00
  • e048f31baa internal: pull EINTR loop from stdlib cat 2025-03-13 00:42:38 +09:00
  • 6af8b8859f sandbox: read overflow ids cat 2025-03-13 00:41:37 +09:00
  • f38ba7e923 test/sandbox: bypass fields cat 2025-03-13 00:00:58 +09:00
  • d22145a392 ldd: handle musl static behaviour cat 2025-03-12 23:29:43 +09:00
  • 29c3f8becb helper/seccomp: improve error handling cat 2025-03-12 15:52:48 +09:00
  • be16970e77 helper/seccomp: seccomp_load on negative fd cat 2025-03-12 15:18:52 +09:00
  • df266527f1 test/sandbox/mount: work around nondeterminism cat 2025-03-12 15:02:24 +09:00
  • c8ed7aae6e nix: update flake lock cat 2025-03-10 18:38:14 +09:00
  • 61e58aa14d helper/proc: expose setup file cat 2025-03-08 23:24:39 +09:00
  • 9e15898c8f internal/prctl: rename prctl wrappers cat 2025-03-07 22:56:35 +09:00
  • f7bd6a5a41 test/sandbox: check seccomp outcome cat 2025-03-04 13:30:16 +09:00
  • ea853e21d9 test/sandbox: check fs outcome cat 2025-03-03 01:02:09 +09:00
  • 0bd9b9e8fe test/sandbox: assert filesystem json cat 2025-03-02 23:23:04 +09:00
  • 39e32799b3 test/sandbox: compare filesystem hierarchy cat 2025-03-02 22:52:21 +09:00
  • 9953768de5 test: rename session message identifier cat 2025-03-02 22:47:33 +09:00
  • 0d3652b793 test/sandbox/assert: wrap printf cat 2025-03-02 18:37:46 +09:00
  • d8e9d71f87 test/sandbox: check mount outcome cat 2025-02-28 15:56:15 +09:00
  • 558974b996 test/sandbox: assert mntent json cat 2025-02-28 15:40:58 +09:00
  • 4de4049713 test/sandbox: wrap libc getmntent cat 2025-02-28 14:56:08 +09:00
  • 2d4cabe786 nix: increase nixfmt max width cat 2025-02-28 14:39:47 +09:00
  • 80f9b62d25 app: print comp values early cat 2025-02-26 20:10:32 +09:00
  • 673b648bd3 cmd/fpkg: call app in-process cat 2025-02-26 19:46:43 +09:00
  • 45ad788c6d cmd/fsu: allow switch from fpkg cat 2025-02-26 19:42:28 +09:00
  • 56539d8db5 fortify: move internal commands up cat 2025-02-26 18:02:11 +09:00
  • 840ceb615a app: handle RunState errors cat 2025-02-26 17:36:14 +09:00
  • 741d011543 fortify: configure seccomp logger early cat 2025-02-26 17:19:36 +09:00
  • d050b3de25 app: define errors in a separate file cat 2025-02-26 17:12:02 +09:00
  • 5de28800ad test: verify fsu ppid check cat 2025-02-26 16:51:57 +09:00
  • 8e50293ab7 test: remove sway process check cat 2025-02-26 13:52:44 +09:00
  • 12c6d66bfd cmd/fpkg/test: nixos test fpkg install/start cat 2025-02-26 12:44:04 +09:00
  • d7d2bd33ed cmd/fpkg/build: expose nixos configuration cat 2025-02-26 12:31:18 +09:00
  • c21a4cff14 nix: wrap fpkg cat 2025-02-26 12:20:12 +09:00
  • 4fa38d6063 cmd/fpkg: use fortify path from internal cat 2025-02-26 12:16:35 +09:00
  • 6d4ac3d9fd internal: store fortify path in internal cat 2025-02-26 12:03:25 +09:00
  • a5d2f040fb cmd/fpkg/build: run final build step in nix cat 2025-02-25 23:32:59 +09:00
  • c62689e17f nix: interrupt via tty cat 2025-02-25 18:20:47 +09:00
  • 39dc8e7bd8 dbus: set process group id cat 2025-02-25 18:12:41 +09:00
  • 5a732d153e nix: include fsu sources in dist build cat 2025-02-25 01:32:47 +09:00
  • b4549c72be nix: verify silent signal exit cat 2025-02-25 01:17:01 +09:00
  • 1818dc3a4c system/acl: do not fail gone revert target cat 2025-02-25 01:11:05 +09:00
  • 65094b63cd system/dbus: filter context cancellation error cat 2025-02-25 00:57:35 +09:00
  • f0a082ec84 fortify: improve handling of RevertErr cat 2025-02-25 00:32:07 +09:00
  • 751aa350ee nix: exclude files ending in ".py" cat 2025-02-24 17:41:56 +09:00
  • e6cd2bb2a8 cmd/fpkg: integrate command handler cat 2025-02-23 23:23:54 +09:00
  • 0fb72e5d99 cmd/fpkg/build: prepend extra nix flags cat 2025-02-23 20:21:09 +09:00
  • 71135f339a release: 0.2.18 cat 2025-02-23 18:52:33 +09:00
  • b6af8caffe nix: clean up directory structure cat 2025-02-23 18:48:01 +09:00
  • e1a3549ea0 workflows: separate nixos tests from flake check cat 2025-02-23 18:33:42 +09:00
  • 8bf162820b nix: separate fsu from package cat 2025-02-23 18:13:06 +09:00
  • dccb366608 ldd: handle behaviour on static executable cat 2025-02-23 18:02:33 +09:00
  • 83c8f0488b ldd: pass absolute path to bwrap cat 2025-02-23 17:46:22 +09:00
  • 478b27922c fortify: handle errors via MustParse cat 2025-02-23 12:57:59 +09:00
  • ba1498cd18 command: filter parse errors cat 2025-02-23 12:55:10 +09:00
  • eda4d612c2 fortify: keep external files alive cat 2025-02-23 03:24:37 +09:00
  • 2e7e160683 release: 0.2.17 cat 2025-02-23 02:59:31 +09:00
  • 79957f8ea7 fortify: test help message cat 2025-02-23 02:51:35 +09:00
  • 7e52463445 fortify: integrate command handler cat 2025-02-23 02:35:02 +09:00
  • 89970f5197 command/flag: implement repeatable flag cat 2025-02-23 02:25:31 +09:00
  • 35037705a9 command/flag: implement integer flag cat 2025-02-23 02:02:01 +09:00
  • 647c6ea21b command: hide internal commands cat 2025-02-23 01:36:48 +09:00
  • 416d93e880 command: expose print help cat 2025-02-23 01:17:57 +09:00
  • 312753924b command: root early handler func special case cat 2025-02-23 00:55:18 +09:00
  • 54308f79d2 command: expose command with direct handling cat 2025-02-23 00:24:03 +09:00
  • dfa3217037 command: implement builder and parser cat 2025-02-22 23:11:17 +09:00
  • 8000a2febb command: implement help builder cat 2025-02-22 22:06:02 +09:00
  • 7bd48d3489 command: implement node structure cat 2025-02-22 20:30:49 +09:00
  • b5eaeac11a command: declare command interface cat 2025-02-22 20:21:57 +09:00
  • a9986aab6a system: document I methods cat 2025-02-21 19:51:12 +09:00
  • ff30a5ab5d fst: remove empty file cat 2025-02-21 19:27:08 +09:00
  • eb0c16dd8c cmd/fpkg: rename buildPackage file cat 2025-02-21 18:13:34 +09:00
  • 4fa1e97026 cmd/fpkg: rename shell to shellPath cat 2025-02-21 17:50:20 +09:00
  • 64b6dc41ba nix: split integration test cat 2025-02-21 17:05:17 +09:00
  • c64b8163e7 app: separate instance from process state cat 2025-02-21 16:00:31 +09:00
  • 9d9a165379 release: 0.2.16 cat 2025-02-19 23:39:16 +09:00
  • d0dff1cac9 wl: check against null character cat 2025-02-19 23:35:49 +09:00
  • 3c80fd2b0f app: defer system.I revert cat 2025-02-19 21:05:48 +09:00
  • ef81828e0c app: remove share method cat 2025-02-19 13:41:06 +09:00
  • 2978a6f046 app: separate appSeal finalise method cat 2025-02-19 12:33:51 +09:00
  • dfd9467523 app: merge seal with sys cat 2025-02-19 01:36:07 +09:00