rosa/hakurei
6
4
Fork 2
Code Issues 10 Pull Requests 1 Actions Packages Projects Releases 20 Wiki Activity

Commit Graph

  • 3385538142 nix: clean up flake outputs cat 2025-03-17 09:49:18 +09:00
  • 24618ab9a1 sandbox: move out of internal cat 2025-03-17 02:55:36 +09:00
  • 9ce4706a07 sandbox: move params setup functions cat 2025-03-17 02:48:32 +09:00
  • 9a1f8e129f sandbox: wrap fmsg interface cat 2025-03-17 02:31:46 +09:00
  • ee10860357 seccomp: install output atomically cat 2025-03-17 01:09:12 +09:00
  • 44277dc0f1 dbus: run in native sandbox cat 2025-03-17 00:13:14 +09:00
  • bc54db54d2 ldd: always copy stderr cat 2025-03-17 00:08:00 +09:00
  • bf07b7cd9e ldd: mount /proc in container cat 2025-03-17 00:01:03 +09:00
  • 5d3c8dcc92 test: raise timeout cat 2025-03-16 23:51:17 +09:00
  • 48feca800f sandbox: check command function pointer cat 2025-03-16 23:29:14 +09:00
  • 42de09e896 helper: implement native container backend cat 2025-03-16 02:57:46 +09:00
  • 1576fea8a3 helper: raise WaitDelay during tests cat 2025-03-16 02:34:06 +09:00
  • ae522ab364 test: run go tests with race detector cat 2025-03-16 02:07:42 +09:00
  • 273d97af85 ldd: lib paths resolve function cat 2025-03-16 01:20:09 +09:00
  • 891316d924 helper/stub: copy args to stderr cat 2025-03-16 00:39:42 +09:00
  • 9f5dad1998 sandbox: return on zero length ops cat 2025-03-16 00:32:36 +09:00
  • 6e7ddb2d2e helper: eliminate commandContext replacement cat 2025-03-15 23:57:44 +09:00
  • bac4e67867 sandbox/init: early params nil check cat 2025-03-15 04:03:10 +09:00
  • 4230281194 sandbox: return error on doubled start cat 2025-03-15 03:30:14 +09:00
  • e64e7608ca sandbox: expose cancel behaviour cat 2025-03-15 03:04:27 +09:00
  • 10a21ce3ef helper: expose extra files to direct cat 2025-03-15 02:21:59 +09:00
  • 0f1f0e4364 helper: combine helper ipc setup cat 2025-03-15 02:10:22 +09:00
  • f9bf20a3c7 helper: rearrange initialisation args cat 2025-03-15 01:02:18 +09:00
  • 73c1a83032 helper: move process wrapper to direct cat 2025-03-15 00:33:25 +09:00
  • f443d315ad helper: clean up interface cat 2025-03-15 00:27:44 +09:00
  • 9e18d1de77 helper/proc: pass extra files and start cat 2025-03-14 23:23:57 +09:00
  • 2647a71be1 seccomp: move out of helper cat 2025-03-14 22:42:40 +09:00
  • 7c60a4d8e8 helper: embed context on creation cat 2025-03-14 18:30:22 +09:00
  • 4bb5d9780f ldd: run in native sandbox cat 2025-03-14 17:51:29 +09:00
  • f41fd94628 sandbox: write uid/gid map as init cat 2025-03-14 17:41:08 +09:00
  • 94895bbacb sandbox: invert seccomp ruleset defaults cat 2025-03-14 02:38:32 +09:00
  • f332200ca4 sandbox: mount container /dev cat 2025-03-14 02:18:44 +09:00
  • 2eff470091 sandbox/mount: pass custom tmpfs name cat 2025-03-14 02:12:35 +09:00
  • a092b042ab sandbox: pass params to setup ops cat 2025-03-14 02:11:38 +09:00
  • e94b09d337 sandbox/mount: fix source flag path cat 2025-03-14 02:10:48 +09:00
  • 5d9e669d97 sandbox: separate tmpfs function from op cat 2025-03-14 00:21:20 +09:00
  • f1002157a5 sandbox: separate bind mount function from op cat 2025-03-14 00:16:41 +09:00
  • 4133b555ba internal/app: rename init to init0 cat 2025-03-13 21:57:54 +09:00
  • 9b1a60b5c9 sandbox: native container tooling cat 2025-03-13 20:59:03 +09:00
  • beb3918809 test: run go test under regular user cat 2025-03-13 20:56:32 +09:00
  • 2871426df2 test: print output of failed test cat 2025-03-13 16:40:15 +09:00
  • e048f31baa internal: pull EINTR loop from stdlib cat 2025-03-13 00:42:38 +09:00
  • 6af8b8859f sandbox: read overflow ids cat 2025-03-13 00:41:37 +09:00
  • f38ba7e923 test/sandbox: bypass fields cat 2025-03-13 00:00:58 +09:00
  • d22145a392 ldd: handle musl static behaviour cat 2025-03-12 23:29:43 +09:00
  • 29c3f8becb helper/seccomp: improve error handling cat 2025-03-12 15:52:48 +09:00
  • be16970e77 helper/seccomp: seccomp_load on negative fd cat 2025-03-12 15:18:52 +09:00
  • df266527f1 test/sandbox/mount: work around nondeterminism cat 2025-03-12 15:02:24 +09:00
  • c8ed7aae6e nix: update flake lock cat 2025-03-10 18:38:14 +09:00
  • 61e58aa14d helper/proc: expose setup file cat 2025-03-08 23:24:39 +09:00
  • 9e15898c8f internal/prctl: rename prctl wrappers cat 2025-03-07 22:56:35 +09:00
  • f7bd6a5a41 test/sandbox: check seccomp outcome cat 2025-03-04 13:30:16 +09:00
  • ea853e21d9 test/sandbox: check fs outcome cat 2025-03-03 01:02:09 +09:00
  • 0bd9b9e8fe test/sandbox: assert filesystem json cat 2025-03-02 23:23:04 +09:00
  • 39e32799b3 test/sandbox: compare filesystem hierarchy cat 2025-03-02 22:52:21 +09:00
  • 9953768de5 test: rename session message identifier cat 2025-03-02 22:47:33 +09:00
  • 0d3652b793 test/sandbox/assert: wrap printf cat 2025-03-02 18:37:46 +09:00
  • d8e9d71f87 test/sandbox: check mount outcome cat 2025-02-28 15:56:15 +09:00
  • 558974b996 test/sandbox: assert mntent json cat 2025-02-28 15:40:58 +09:00
  • 4de4049713 test/sandbox: wrap libc getmntent cat 2025-02-28 14:56:08 +09:00
  • 2d4cabe786 nix: increase nixfmt max width cat 2025-02-28 14:39:47 +09:00
  • 80f9b62d25 app: print comp values early cat 2025-02-26 20:10:32 +09:00
  • 673b648bd3 cmd/fpkg: call app in-process cat 2025-02-26 19:46:43 +09:00
  • 45ad788c6d cmd/fsu: allow switch from fpkg cat 2025-02-26 19:42:28 +09:00
  • 56539d8db5 fortify: move internal commands up cat 2025-02-26 18:02:11 +09:00
  • 840ceb615a app: handle RunState errors cat 2025-02-26 17:36:14 +09:00
  • 741d011543 fortify: configure seccomp logger early cat 2025-02-26 17:19:36 +09:00
  • d050b3de25 app: define errors in a separate file cat 2025-02-26 17:12:02 +09:00
  • 5de28800ad test: verify fsu ppid check cat 2025-02-26 16:51:57 +09:00
  • 8e50293ab7 test: remove sway process check cat 2025-02-26 13:52:44 +09:00
  • 12c6d66bfd cmd/fpkg/test: nixos test fpkg install/start cat 2025-02-26 12:44:04 +09:00
  • d7d2bd33ed cmd/fpkg/build: expose nixos configuration cat 2025-02-26 12:31:18 +09:00
  • c21a4cff14 nix: wrap fpkg cat 2025-02-26 12:20:12 +09:00
  • 4fa38d6063 cmd/fpkg: use fortify path from internal cat 2025-02-26 12:16:35 +09:00
  • 6d4ac3d9fd internal: store fortify path in internal cat 2025-02-26 12:03:25 +09:00
  • a5d2f040fb cmd/fpkg/build: run final build step in nix cat 2025-02-25 23:32:59 +09:00
  • c62689e17f nix: interrupt via tty cat 2025-02-25 18:20:47 +09:00
  • 39dc8e7bd8 dbus: set process group id cat 2025-02-25 18:12:41 +09:00
  • 5a732d153e nix: include fsu sources in dist build cat 2025-02-25 01:32:47 +09:00
  • b4549c72be nix: verify silent signal exit cat 2025-02-25 01:17:01 +09:00
  • 1818dc3a4c system/acl: do not fail gone revert target cat 2025-02-25 01:11:05 +09:00
  • 65094b63cd system/dbus: filter context cancellation error cat 2025-02-25 00:57:35 +09:00
  • f0a082ec84 fortify: improve handling of RevertErr cat 2025-02-25 00:32:07 +09:00
  • 751aa350ee nix: exclude files ending in ".py" cat 2025-02-24 17:41:56 +09:00
  • e6cd2bb2a8 cmd/fpkg: integrate command handler cat 2025-02-23 23:23:54 +09:00
  • 0fb72e5d99 cmd/fpkg/build: prepend extra nix flags cat 2025-02-23 20:21:09 +09:00
  • 71135f339a release: 0.2.18 cat 2025-02-23 18:52:33 +09:00
  • b6af8caffe nix: clean up directory structure cat 2025-02-23 18:48:01 +09:00
  • e1a3549ea0 workflows: separate nixos tests from flake check cat 2025-02-23 18:33:42 +09:00
  • 8bf162820b nix: separate fsu from package cat 2025-02-23 18:13:06 +09:00
  • dccb366608 ldd: handle behaviour on static executable cat 2025-02-23 18:02:33 +09:00
  • 83c8f0488b ldd: pass absolute path to bwrap cat 2025-02-23 17:46:22 +09:00
  • 478b27922c fortify: handle errors via MustParse cat 2025-02-23 12:57:59 +09:00
  • ba1498cd18 command: filter parse errors cat 2025-02-23 12:55:10 +09:00
  • eda4d612c2 fortify: keep external files alive cat 2025-02-23 03:24:37 +09:00
  • 2e7e160683 release: 0.2.17 cat 2025-02-23 02:59:31 +09:00
  • 79957f8ea7 fortify: test help message cat 2025-02-23 02:51:35 +09:00
  • 7e52463445 fortify: integrate command handler cat 2025-02-23 02:35:02 +09:00
  • 89970f5197 command/flag: implement repeatable flag cat 2025-02-23 02:25:31 +09:00
  • 35037705a9 command/flag: implement integer flag cat 2025-02-23 02:02:01 +09:00