Peter Cai
8ecfade5c4
Restart Sommelier if it died
2023-07-18 19:03:41 -04:00
Peter Cai
0baefc7edc
initial itch.io image (no shortcut yet)
2023-07-18 18:59:28 -04:00
Peter Cai
82e840fccb
Packaging for supertuxkart
2023-06-10 15:12:16 -04:00
Peter Cai
ba0c1dc7ba
create-shortcut: Do not check for the existence of control files
2023-06-10 14:56:48 -04:00
Peter Cai
52faa6c6d7
Migrate allowing sub-namespaces to labels as well
2023-06-10 14:45:44 -04:00
Peter Cai
ded4816343
Migrate desktop file declaration to container labels
2023-06-10 14:14:47 -04:00
Peter Cai
94048e2d2b
Initial packaging for PrismLauncher
2023-06-09 23:10:55 -04:00
Peter Cai
95cfa16e7e
sommelier: Fix parent sommelier by enabling noop driver by default
2023-06-09 23:10:33 -04:00
Peter Cai
6eba70c45f
Add GitHub upstream check
2023-06-09 22:53:15 -04:00
Peter Cai
fc8a6cdd79
base-ubuntu-jammy: Include gles
2023-06-09 22:52:54 -04:00
Peter Cai
21af66910f
dobu-run: Correct permission for tmpfs mounts
2023-06-09 22:52:42 -04:00
Peter Cai
8feba61942
dobu-run: Remove stale containers that have not been deleted correctly
2023-06-09 10:32:20 -04:00
Peter Cai
92285258b0
steam: Allow the use of sub-namespaces
...
...and add a seccomp_unsafe profile just for these apps.
Steam Runtime uses Bubblewrap to isolate the games on its own. There is
no way to make Bubblewrap work in our containers other than to allow
unprivileged namespaces inside them.
2023-06-07 15:44:19 -04:00
Peter Cai
ef3c3c001f
dobu-run: Re-execute entrypoint when container already exists
2023-06-07 14:47:28 -04:00
Peter Cai
f41984d017
build-image: Rename TRACK_PACKAGE_* to INVALIDATE_CACHE_*
2023-06-06 22:50:42 -04:00
Peter Cai
adeb966a95
create-shortcut: Remove everything after the first [Desktop Entry]
2023-06-06 22:47:58 -04:00
Peter Cai
940719d699
Add ubuntu base and Steam packaging
2023-06-06 22:41:04 -04:00
Peter Cai
4cca51744b
dobu-run: Pass the --init parameter
2023-06-06 18:58:11 -04:00
Peter Cai
02c8e3ad07
Add create-shortcut.sh to generate desktop shortcuts
2023-06-06 18:58:00 -04:00
Peter Cai
6e163d4afa
Rename path_to_image_name to relative_path_to_image_name
2023-06-06 18:06:54 -04:00
Peter Cai
09be333ac6
Share podman security-related args between app and sommelier
2023-06-06 17:59:13 -04:00
Peter Cai
91a78138a5
build-image: Add support for cache invalidation based on upstream pkgver
2023-06-06 14:45:50 -04:00
Peter Cai
239b00fc3b
config: more comments
2023-06-06 09:21:42 -04:00
Peter Cai
637d610333
dobu-run: Allow more fine-grained input device passthrough control
2023-06-06 09:17:21 -04:00
Peter Cai
27eb066260
dobu-run: Implement /dev/input access
2023-06-05 22:31:48 -04:00
Peter Cai
0ea062b5e4
dobu-run: Implement support for persistent HOME inside containers
2023-06-05 22:22:36 -04:00
Peter Cai
6cabe49345
dobu-run.sh: Enforce apps/ prefix
2023-06-05 21:27:13 -04:00
Peter Cai
6ff457da3e
deps/sommelier: Disable MIT-SHM extension for X11
2023-06-05 21:02:49 -04:00
Peter Cai
cddf07bf4d
dobu-run: Set TZ as well
2023-06-05 20:32:58 -04:00
Peter Cai
e035ee10dd
Import seccomp filter from Docker
...
This blocks the use of sub-namespaces within the containers, which
should improve security as now userns-related bugs cannot be exploited
from within.
2023-06-05 20:28:27 -04:00
Peter Cai
4c1f1e4a78
base-archlinux: Add pulseaudio deps
2023-06-05 17:51:13 -04:00
Peter Cai
343990e2f8
Add first app: shattered-pixel-dungeon
2023-06-05 17:42:03 -04:00
Peter Cai
d5dee805e9
Rebase the sommelier image on base-archlinux
2023-06-05 16:55:23 -04:00
Peter Cai
1c0ce448e1
Add new base image for archlinux (intended to be used by apps)
2023-06-05 16:34:44 -04:00
Peter Cai
f742a0b2c1
Use podman's keep-id option and run commands unprivileged
2023-06-05 12:16:58 -04:00
Peter Cai
5d0150cebc
Initialize with Sommelier container running
2023-06-05 11:48:17 -04:00
Peter Cai