Show patches with: Series = Harden 'call-with-container'       |    State = Action Required       |    Archived = No       |   8 patches
Patch Series A/R/T S/W/F Date Submitter Delegate State
[bug#77638,8/8] linux-container: Lock mounts by default. Harden 'call-with-container' - - - --- 2025-04-08 Ludovic Courtès New
[bug#77638,7/8] linux-container: Set up “lo” and generate /etc/hosts by default. Harden 'call-with-container' - - - --- 2025-04-08 Ludovic Courtès New
[bug#77638,6/8] syscalls: Add ‘get-user-ns’. Harden 'call-with-container' - - - --- 2025-04-08 Ludovic Courtès New
[bug#77638,5/8] environment: Add ‘--writable-root’ and default to read-only root. Harden 'call-with-container' - - - --- 2025-04-08 Ludovic Courtès New
[bug#77638,4/8] guix home: ‘container’ provides a read-only root file system. Harden 'call-with-container' - - - --- 2025-04-08 Ludovic Courtès New
[bug#77638,3/8] linux-container: Support having a read-only root file system. Harden 'call-with-container' - - - --- 2025-04-08 Ludovic Courtès New
[bug#77638,2/8] guix home: ‘container’ explicitly mounts $HOME and /run/user/1000. Harden 'call-with-container' - - - --- 2025-04-08 Ludovic Courtès New
[bug#77638,1/8] linux-container: Add #:mounts to ‘eval/container’. Harden 'call-with-container' - - - --- 2025-04-08 Ludovic Courtès New