hakurei

Author	SHA1	Message	Date
Ophestra	c6be82bcf9	container/path: fhs path constants All checks were successful Test / Create distribution (push) Successful in 33s Details Test / Sandbox (push) Successful in 2m6s Details Test / Hakurei (push) Successful in 3m6s Details Test / Sandbox (race detector) (push) Successful in 4m14s Details Test / Hpkg (push) Successful in 4m11s Details Test / Hakurei (race detector) (push) Successful in 4m40s Details Test / Flake checks (push) Successful in 1m18s Details This increases readability since this can help disambiguate absolute paths from similarly named path segments. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-03 21:16:45 +09:00
Ophestra	38245559dc	container/ops: mount dev readonly All checks were successful Test / Create distribution (push) Successful in 33s Details Test / Sandbox (push) Successful in 2m2s Details Test / Hakurei (push) Successful in 2m57s Details Test / Sandbox (race detector) (push) Successful in 3m53s Details Test / Hpkg (push) Successful in 3m53s Details Test / Hakurei (race detector) (push) Successful in 4m37s Details Test / Flake checks (push) Successful in 1m18s Details There is usually no good reason to write to /dev. This however doesn't work in internal/app because FilesystemConfig supplied by ContainerConfig might add entries to /dev, so internal/app follows DevWritable with Remount instead. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-03 19:18:53 +09:00
Ophestra	7b416d47dc	container/ops: merge mqueue and dev Ops All checks were successful Test / Create distribution (push) Successful in 34s Details Test / Sandbox (push) Successful in 40s Details Test / Sandbox (race detector) (push) Successful in 40s Details Test / Hakurei (push) Successful in 43s Details Test / Hakurei (race detector) (push) Successful in 43s Details Test / Hpkg (push) Successful in 41s Details Test / Flake checks (push) Successful in 1m21s Details There is no reason to mount mqueue anywhere else, and these Ops usually follow each other. This change merges them. This helps decrease IPC overhead and also enables mounting dev readonly. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-03 19:13:46 +09:00
Ophestra	15170735ba	container/mount: move tmpfs sysroot prefixing to caller All checks were successful Test / Hakurei (push) Successful in 2m6s Details Test / Flake checks (push) Successful in 1m18s Details Test / Create distribution (push) Successful in 33s Details Test / Sandbox (push) Successful in 2m4s Details Test / Sandbox (race detector) (push) Successful in 3m54s Details Test / Hpkg (push) Successful in 4m0s Details Test / Hakurei (race detector) (push) Successful in 4m34s Details The mountTmpfs helper is a relatively low level function that is not exposed as part of the API. Prefixing sysroot here not only introduces overhead but is also quite error-prone. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-03 18:06:41 +09:00
Ophestra	6a3886e9db	container/op: unexport bind resolved source field All checks were successful Test / Create distribution (push) Successful in 33s Details Test / Sandbox (push) Successful in 2m5s Details Test / Hakurei (push) Successful in 2m57s Details Test / Hpkg (push) Successful in 3m55s Details Test / Sandbox (race detector) (push) Successful in 3m59s Details Test / Hakurei (race detector) (push) Successful in 4m34s Details Test / Flake checks (push) Successful in 1m21s Details This is used for symlink resolution and is only used internally. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-03 17:57:37 +09:00
Ophestra	0f78864a67	container/mount: export mount string constants All checks were successful Test / Create distribution (push) Successful in 33s Details Test / Sandbox (push) Successful in 2m1s Details Test / Hakurei (push) Successful in 2m56s Details Test / Sandbox (race detector) (push) Successful in 3m47s Details Test / Hpkg (push) Successful in 4m1s Details Test / Hakurei (race detector) (push) Successful in 4m32s Details Test / Flake checks (push) Successful in 1m19s Details This improves code readability and should also be useful for callers choosing to preserve CAP_SYS_ADMIN. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-02 17:20:09 +09:00
Ophestra	c5d24979f5	container/ops: expose remount as Op All checks were successful Test / Create distribution (push) Successful in 33s Details Test / Sandbox (push) Successful in 2m2s Details Test / Hakurei (push) Successful in 2m56s Details Test / Hpkg (push) Successful in 3m53s Details Test / Sandbox (race detector) (push) Successful in 3m56s Details Test / Hakurei (race detector) (push) Successful in 4m34s Details Test / Flake checks (push) Successful in 1m22s Details This is useful for building a filesystem hierarchy then remounting it readonly. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-01 23:48:02 +09:00
Ophestra	547a2adaa4	container/mount: pass tmpfs flags All checks were successful Test / Create distribution (push) Successful in 32s Details Test / Sandbox (push) Successful in 2m1s Details Test / Sandbox (race detector) (push) Successful in 3m57s Details Test / Hpkg (push) Successful in 3m55s Details Test / Hakurei (race detector) (push) Successful in 4m30s Details Test / Hakurei (push) Successful in 2m18s Details Test / Flake checks (push) Successful in 1m14s Details Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-01 18:59:06 +09:00
Ophestra	f14e7255be	container/ops: use correct flags value in bind string All checks were successful Test / Create distribution (push) Successful in 33s Details Test / Sandbox (push) Successful in 1m57s Details Test / Sandbox (race detector) (push) Successful in 3m47s Details Test / Hpkg (push) Successful in 3m54s Details Test / Hakurei (race detector) (push) Successful in 4m31s Details Test / Hakurei (push) Successful in 2m10s Details Test / Flake checks (push) Successful in 1m22s Details Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-08-01 00:54:08 +09:00
Ophestra	4e518f11d8	container/ops: autoetc implementation to separate file All checks were successful Test / Create distribution (push) Successful in 1m3s Details Test / Sandbox (push) Successful in 2m9s Details Test / Hakurei (push) Successful in 3m11s Details Test / Sandbox (race detector) (push) Successful in 3m52s Details Test / Planterette (push) Successful in 4m5s Details Test / Hakurei (race detector) (push) Successful in 4m41s Details Test / Flake checks (push) Successful in 1m14s Details This is not a general purpose setup Op. Separate it so it is easier to find. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-07-31 19:54:03 +09:00
Ophestra	a1e5f020f4	container: improve doc comments All checks were successful Test / Create distribution (push) Successful in 31s Details Test / Sandbox (push) Successful in 2m3s Details Test / Hakurei (push) Successful in 2m53s Details Test / Sandbox (race detector) (push) Successful in 3m43s Details Test / Planterette (push) Successful in 3m57s Details Test / Hakurei (race detector) (push) Successful in 4m23s Details Test / Flake checks (push) Successful in 1m10s Details Putting them on the builder methods is more useful. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-07-27 12:27:42 +09:00
Ophestra	1b5ecd9eaf	container: move out of toplevel All checks were successful Test / Create distribution (push) Successful in 32s Details Test / Sandbox (push) Successful in 1m52s Details Test / Sandbox (race detector) (push) Successful in 3m14s Details Test / Planterette (push) Successful in 3m36s Details Test / Hakurei (race detector) (push) Successful in 4m31s Details Test / Hakurei (push) Successful in 2m3s Details Test / Flake checks (push) Successful in 1m13s Details This allows slightly easier use of the vanity url. This also provides some disambiguation between low level containers and hakurei app containers. Signed-off-by: Ophestra <cat@gensokyo.uk>	2025-07-03 02:59:43 +09:00

12 Commits