hakurei

Author	SHA1	Message	Date
Ophestra	4230281194	sandbox: return error on doubled start Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-03-15 03:30:14 +09:00
Ophestra	e64e7608ca	sandbox: expose cancel behaviour Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-03-15 03:04:27 +09:00
Ophestra	2647a71be1	seccomp: move out of helper Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-03-14 22:42:40 +09:00
Ophestra	f41fd94628	sandbox: write uid/gid map as init This avoids PR_SET_DUMPABLE in the parent process. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-03-14 17:42:22 +09:00
Ophestra	94895bbacb	sandbox: invert seccomp ruleset defaults Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-03-14 02:38:32 +09:00
Ophestra	a092b042ab	sandbox: pass params to setup ops Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-03-14 02:11:38 +09:00
Ophestra	9b1a60b5c9	sandbox: native container tooling This should eventually replace bwrap. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-03-13 21:36:26 +09:00