hakurei

Author	SHA1	Message	Date
Ophestra	13c7083bc0	container: ptrace protection via Yama LSM This is only a nice to have feature as the init process has no additional privileges and the monitor process was never reachable anyway. Closes #4. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-20 00:43:55 +09:00
Ophestra	69a4ab8105	container: move PR_SET_NO_NEW_PRIVS to parent This allows some LSM setup in the parent. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-18 11:46:02 +09:00
Ophestra	ddfcc51b91	container: move capset implementation Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-07-07 13:47:13 +09:00
Ophestra	8ebedbd88a	container: move syscall constants These aren't missing from all targets. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-07-07 13:23:01 +09:00
Ophestra	1b5ecd9eaf	container: move out of toplevel This allows slightly easier use of the vanity url. This also provides some disambiguation between low level containers and hakurei app containers. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-07-03 02:59:43 +09:00