Ophestra e4801d0e23

app: set up acl on X11 socket ...

The socket is typically owned by the priv-user, and inaccessible by the target user, so just allowing access to the directory is not enough. This change fixes this oversight and add checks that will also be useful for merging #1.

Signed-off-by: Ophestra <cat@gensokyo.uk>

# Conflicts:
#	test/sandbox/case/device.nix
#	test/sandbox/case/tty.nix

2025-08-18 11:56:18 +09:00

..

state

app: remove split implementation

2025-07-03 04:36:59 +09:00

app_linux_test.go

container: use absolute for pathname

2025-08-11 04:56:42 +09:00

app_linux.go

container: use absolute for pathname

2025-08-11 04:56:42 +09:00

app_nixos_linux_test.go

hst/fs: rename method Target to Path

2025-08-16 02:06:41 +09:00

app_pd_linux_test.go

hst/enablement: editor friendly enablement adaptor

2025-08-15 05:16:51 +09:00

app_stub_linux_test.go

container: use absolute for pathname

2025-08-11 04:56:42 +09:00

app.go

app: remove split implementation

2025-07-03 04:36:59 +09:00

container_linux.go

hst/fs: interface filesystem config

2025-08-14 04:52:49 +09:00

errors.go

hst: configurable wait delay

2025-07-29 03:06:49 +09:00

export_linux_test.go

app: remove split implementation

2025-07-03 04:36:59 +09:00

path_test.go

app: remove split implementation

2025-07-03 04:36:59 +09:00

path.go

app: remove split implementation

2025-07-03 04:36:59 +09:00

process_linux.go

hst/enablement: editor friendly enablement adaptor

2025-08-15 05:16:51 +09:00

seal_linux.go

app: set up acl on X11 socket

2025-08-18 11:56:18 +09:00

shim_linux.go

container: remove PATH lookup behaviour

2025-08-09 19:08:54 +09:00

shim-signal.c

app/shim: implement signal handler outcome in Go

2025-07-28 23:39:30 +09:00

shim-signal.h

app/shim: implement signal handler outcome in Go

2025-07-28 23:39:30 +09:00

strings.go

hst: configurable wait delay

2025-07-29 03:06:49 +09:00