rosa/hakurei
6
4
Fork 2
Code Issues 10 Pull Requests 1 Actions Packages Projects Releases 20 Wiki Activity

Commit Graph

  • 4cf694d2b3 hst: use hsu userid for share path suffix cat 2025-08-26 02:15:00 +09:00
  • c9facb746b hst/config: remove data field, rename dir to home cat 2025-08-26 00:52:49 +09:00
  • 878b66022e hst/fsbind: optional ensure source cat 2025-08-26 00:50:23 +09:00
  • 2e0a4795f6 container/initbind: optional ensure host directory cat 2025-08-25 23:24:54 +09:00
  • c328b584c0 hst/fslink: improve string representation cat 2025-08-25 22:52:48 +09:00
  • 9585b35d5b hst/config: remove symlink field cat 2025-08-25 22:21:16 +09:00
  • 26cafe3e80 hst/fs: implement link fstype cat 2025-08-25 21:31:45 +09:00
  • 125f150784 hst/fs: update doc comments cat 2025-08-25 21:11:39 +09:00
  • 0dcac55a0c hst/config: remove container etc field cat 2025-08-25 19:13:31 +09:00
  • 6d202d73b4 hst/fsbind: optional autoetc behaviour cat 2025-08-25 18:30:40 +09:00
  • 1438096339 hst/config: handle filesystem entry targeting root cat 2025-08-25 17:51:08 +09:00
  • 059164d4fa hst/fsbind: optional autoroot behaviour cat 2025-08-25 17:44:12 +09:00
  • 8db906ee64 container/dispatcher: remove exit stub test log cat 2025-08-25 17:33:35 +09:00
  • cedfceded5 container/autoroot: remove prefix field cat 2025-08-25 03:38:12 +09:00
  • 33d2dcce1b container/initoverlay: internal bypass sysroot prefix cat 2025-08-25 02:34:39 +09:00
  • 2baa2d7063 container/init: measure init behaviour cat 2025-08-24 02:28:24 +09:00
  • 0166833431 container/dispatcher: start goroutine in dispatcher cat 2025-08-23 21:47:06 +09:00
  • b3da3da525 container/init: avoid multiple lastcap calls cat 2025-08-23 11:09:11 +09:00
  • 1b3902df78 container/dispatcher: instrument each goroutine individually cat 2025-08-23 11:06:19 +09:00
  • ea1e3ebae9 container/params: pass fd instead of file cat 2025-08-23 00:16:46 +09:00
  • 1c692bfb79 container/init: call lockOSThread through dispatcher cat 2025-08-22 22:24:14 +09:00
  • 141a18999f container: move integration test helpers cat 2025-08-22 22:07:19 +09:00
  • afe23600d2 container/path: use syscall dispatcher cat 2025-08-22 22:00:40 +09:00
  • 09d2844981 container/init: wrap syscall helper functions cat 2025-08-21 21:59:07 +09:00
  • d500d6e559 system/dbus: share host net ns for abstract cat 2025-08-21 21:55:23 +09:00
  • 5b73316ae0 container/syscall: doc comments from manpages cat 2025-08-21 00:33:46 +09:00
  • 5d8a2199b6 container/init: op interface valid method cat 2025-08-21 00:18:50 +09:00
  • a1482ecdd0 container/inittmpfs: check path equivalence by value cat 2025-08-20 20:17:28 +09:00
  • a07f9ed84c container/initsymlink: check path equivalence by value cat 2025-08-20 20:03:02 +09:00
  • 51304b03af container/initremount: check path equivalence by value cat 2025-08-20 19:55:51 +09:00
  • c6397b941f container/initproc: check path equivalence by value cat 2025-08-20 19:29:45 +09:00
  • d65e5f817a container/initplace: check path equivalence by value cat 2025-08-20 19:19:27 +09:00
  • 696e593898 container/initoverlay: check path equivalence by value cat 2025-08-20 17:33:15 +09:00
  • 97ab24feef container/init: use absolute compare method cat 2025-08-20 17:14:36 +09:00
  • 31f0dd36df absolute: efficient equivalence check method cat 2025-08-20 17:06:38 +09:00
  • 9aec2f46fe container/initdev: check path equivalence by value cat 2025-08-20 02:55:45 +09:00
  • 022cc26b2e container/capability: check CAP_TO_INDEX and CAP_TO_MASK cat 2025-08-20 02:45:00 +09:00
  • b4c018da8f container/autoetc: do not bypass absolute check cat 2025-08-20 02:37:11 +09:00
  • 66f52407d3 container/initmkdir: check path equivalence by value cat 2025-08-20 02:32:22 +09:00
  • e463faf649 container/initbind: check path equivalence by value cat 2025-08-20 02:22:04 +09:00
  • 375acb476d container/autoroot: check host path equivalence by value cat 2025-08-20 02:03:18 +09:00
  • c81c9a9d75 container/init: split setup ops into individual files cat 2025-08-20 01:26:41 +09:00
  • 339e4080dc container/ops: move Op type to init file cat 2025-08-20 01:11:24 +09:00
  • e0533aaa68 container/autoroot: filter dentry with empty name cat 2025-08-20 01:03:49 +09:00
  • 13c7083bc0 container: ptrace protection via Yama LSM cat 2025-08-20 00:27:45 +09:00
  • 6947ff04e0 system/dbus/proc: host abstract only when not binding cat 2025-08-19 23:39:14 +09:00
  • 140fe21237 container/params: check setup/receive behaviour cat 2025-08-18 22:30:34 +09:00
  • f52d2c7db6 container/path: check create and mountinfo helpers cat 2025-08-18 21:30:28 +09:00
  • 3c9e547c4a cmd/hpkg: add deprecation notice cat 2025-08-18 17:00:27 +09:00
  • a3988c1a77 hst: rename net and abstract fields cat 2025-08-18 16:47:23 +09:00
  • 5db0714072 container: optionally isolate host abstract UNIX domain sockets via landlock netadr 2025-08-18 12:00:52 +09:00
  • 69a4ab8105 container: move PR_SET_NO_NEW_PRIVS to parent cat 2025-08-18 11:46:02 +09:00
  • 22d577ab49 test/sandbox: do not discard stderr getting hash cat 2025-08-18 11:36:13 +09:00
  • 83a1c75f1a app: set up acl on X11 socket cat 2025-08-18 02:24:56 +09:00
  • 0ac6e99818 container: start from locked thread cat 2025-08-17 17:26:20 +09:00
  • f35733810e container: check output helper functions cat 2025-08-17 02:59:37 +09:00
  • 9c1a5d43ba container: enforce nonrepeatable autoetc and autoroot cat 2025-08-17 01:43:11 +09:00
  • 8aa65f28c6 container: allow additional state between ops cat 2025-08-17 01:29:54 +09:00
  • f9edec7e41 hst: merge miscellaneous files cat 2025-08-16 02:32:57 +09:00
  • 305c600cf5 hst: move container type to config cat 2025-08-16 02:28:36 +09:00
  • 8dd3e1ee5d hst/fs: rename method Target to Path cat 2025-08-16 02:06:41 +09:00
  • 4ffeec3004 hst/enablement: editor friendly enablement adaptor cat 2025-08-15 04:57:37 +09:00
  • 9ed3ba85ea hst/fs: implement overlay fstype cat 2025-08-15 03:30:51 +09:00
  • 4433c993fa nix: check config via hakurei cat 2025-08-15 03:27:54 +09:00
  • 430991c39b hst/fs: remove type method cat 2025-08-15 00:37:07 +09:00
  • ba3227bf15 container: export overlay escape cat 2025-08-14 23:44:11 +09:00
  • 0e543a58b3 hst/fs: valid method on underlying interface cat 2025-08-14 21:36:22 +09:00
  • c989e7785a hst/info: include extra information cat 2025-08-14 19:52:03 +09:00
  • 332d90d6c7 container/path: remove unused path cat 2025-08-14 05:00:09 +09:00
  • 99ac96511b hst/fs: interface filesystem config cat 2025-08-12 04:38:45 +09:00
  • e99d7affb0 container: use absolute for pathname cat 2025-08-11 02:52:32 +09:00
  • 41ac2be965 container/absolute: wrap safe stdlib functions cat 2025-08-10 03:10:13 +09:00
  • 02271583fb container: remove PATH lookup behaviour cat 2025-08-09 19:08:54 +09:00
  • ef54b2cd08 container/absolute: early absolute pathname check cat 2025-08-09 17:50:03 +09:00
  • 82608164f6 container/params: remove confusingly named error cat 2025-08-09 17:36:36 +09:00
  • edd6f2cfa9 container: document ambient capabilities cat 2025-08-08 02:11:55 +09:00
  • acffa76812 container/ops: implement overlay op cat 2025-08-08 01:50:38 +09:00
  • 8da76483e6 container/path: fix typo "paths" cat 2025-08-08 01:32:48 +09:00
  • 534c932906 container: test case runtime initialisation cat 2025-08-08 01:03:35 +09:00
  • fee10fed4d container: test bypass output buffer on verbose cat 2025-08-08 00:57:27 +09:00
  • a4f7e92e1c test/interactive: helper scripts for tracing cat 2025-08-08 00:49:11 +09:00
  • f1a53d6116 container: raise CAP_DAC_OVERRIDE cat 2025-08-08 00:43:19 +09:00
  • b353c3deea nix: make src overlay writable cat 2025-08-07 18:07:19 +09:00
  • fde5f1ca64 container: buffer test output cat 2025-08-07 02:55:58 +09:00
  • 4d0bdd84b5 container: test respect verbose flag cat 2025-08-07 02:50:00 +09:00
  • 72a931a71a nix: interactive nixos vm cat 2025-08-05 21:31:36 +09:00
  • 9a25542c6d container/init: use mount string constants cat 2025-08-04 04:00:05 +09:00
  • c6be82bcf9 container/path: fhs path constants cat 2025-08-03 20:46:41 +09:00
  • 38245559dc container/ops: mount dev readonly cat 2025-08-03 19:18:53 +09:00
  • 7b416d47dc container/ops: merge mqueue and dev Ops cat 2025-08-03 18:34:55 +09:00
  • 15170735ba container/mount: move tmpfs sysroot prefixing to caller cat 2025-08-03 18:06:41 +09:00
  • 6a3886e9db container/op: unexport bind resolved source field cat 2025-08-03 17:57:37 +09:00
  • ff66296378 container/mount: mount data escape helper function cat 2025-08-03 15:35:32 +09:00
  • 347a79df72 container: improve clone flags readability cat 2025-08-02 18:19:44 +09:00
  • 0f78864a67 container/mount: export mount string constants cat 2025-08-02 17:15:41 +09:00
  • b32b1975a8 hst/container: remove cover cat 2025-08-02 00:34:52 +09:00
  • 2b1eaa62f1 update github notice cat 2025-08-02 00:20:46 +09:00
  • f13dca184c release: 0.1.3 v0.1.3 cat 2025-08-02 00:02:54 +09:00
  • 3b8a3d3b00 app: remount root readonly cat 2025-08-01 23:54:33 +09:00
  • c5d24979f5 container/ops: expose remount as Op cat 2025-08-01 23:48:02 +09:00