fortify

History

Ophestra 124743ffd3 All checks were successful Tests / Go tests (push) Successful in 1m1s Details Nix / NixOS tests (push) Successful in 3m20s Details app: expose single run method App is no longer just a simple [exec.Cmd] wrapper, so exposing these steps separately no longer makes sense and actually hinders proper error handling, cleanup and cancellation. This change removes the five-second wait when the shim dies before receiving the payload, and provides caller the ability to gracefully stop execution of the confined process. Signed-off-by: Ophestra <cat@gensokyo.uk>		2025-01-15 23:39:51 +09:00
..
app_nixos_test.go	app: rename /fortify to /.fortify	2024-12-21 18:11:32 +09:00
app_pd_test.go	fst: hide sockets exposed via Filesystem	2025-01-15 10:13:18 +09:00
app_stub_test.go	fst: hide sockets exposed via Filesystem	2025-01-15 10:13:18 +09:00
app_test.go	fst: hide sockets exposed via Filesystem	2025-01-15 10:13:18 +09:00
app.go	app: expose single run method	2025-01-15 23:39:51 +09:00
export_test.go	migrate to git.gensokyo.uk/security/fortify	2024-12-20 00:20:02 +09:00
seal.go	fst: hide sockets exposed via Filesystem	2025-01-15 10:13:18 +09:00
share.go	update reverse-DNS style identifiers	2024-12-31 16:16:38 +09:00
start.go	app: expose single run method	2025-01-15 23:39:51 +09:00
system.go	app: merge share methods	2024-12-28 11:12:35 +09:00