redox/config/x86_64/desktop-contain.toml

# Desktop configuration using the Contain sandbox

include = ["../desktop.toml"]

# Override the default settings here

# General settings
[general]
# Filesystem size in MiB
# filesystem_size = 1024

# Package settings
[packages]
# example = {}

# Override orbital init to use contain_orblogin
[[files]]
path = "/usr/lib/init.d/20_orbital"
data = """
audiod
export VT 3
orbital contain_orblogin launcher
unset VT
"""

# Override console init to use contain
[[files]]
path = "/usr/lib/init.d/30_console"
data = """
getty --contain 2
getty --contain /scheme/debug/no-preserve -J
"""

[[files]]
path = "/etc/contain.toml"
data = """
pass_schemes = ["rand", "null", "tcp", "udp", "thisproc", "pty", "orbital", "display.vesa"]
sandbox_schemes = ["file"]
files = ["file:/dev/null"]
rofiles = ["file:/etc/passwd", "file:/etc/hostname", "file:/etc/localtime"]
dirs = ["file:/tmp"]
rodirs = ["file:/bin", "file:/ui"]
"""
Add explanation comments on the build system files 2024-07-09 14:58:07 +02:00			`# Desktop configuration using the Contain sandbox`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00
Adapt desktop-contain to use templates 2024-01-04 21:46:01 +01:00			`include = ["../desktop.toml"]`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00
add backtrace script and improve config file instructions 2024-01-11 15:27:28 +01:00			`# Override the default settings here`

			`# General settings`
			`[general]`
			`# Filesystem size in MiB`
			`# filesystem_size = 1024`

			`# Package settings`
			`[packages]`
			`# example = {}`

Adapt desktop-contain to use templates 2024-01-04 21:46:01 +01:00			`# Override orbital init to use contain_orblogin`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00			`[[files]]`
Move a couple of missed init files from /etc/init.d to /usr/lib/init.d 2024-01-17 14:31:32 +01:00			`path = "/usr/lib/init.d/20_orbital"`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00			`data = """`
			`audiod`
Set the VT env var when running orbital 2024-07-20 16:42:33 +02:00			`export VT 3`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00			`orbital contain_orblogin launcher`
Set the VT env var when running orbital 2024-07-20 16:42:33 +02:00			`unset VT`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00			`"""`

Adapt desktop-contain to use templates 2024-01-04 21:46:01 +01:00			`# Override console init to use contain`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00			`[[files]]`
Move a couple of missed init files from /etc/init.d to /usr/lib/init.d 2024-01-17 14:31:32 +01:00			`path = "/usr/lib/init.d/30_console"`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00			`data = """`
Adapt desktop-contain to use templates 2024-01-04 21:46:01 +01:00			`getty --contain 2`
Do not preserve debug console output in sys:log This will prevent logd from ingesting it as logs in the future. 2024-07-27 16:52:49 +02:00			`getty --contain /scheme/debug/no-preserve -J`
Add desktop-contain.toml 2024-01-03 20:22:34 +01:00			`"""`

			`[[files]]`
			`path = "/etc/contain.toml"`
			`data = """`
			`pass_schemes = ["rand", "null", "tcp", "udp", "thisproc", "pty", "orbital", "display.vesa"]`
			`sandbox_schemes = ["file"]`
			`files = ["file:/dev/null"]`
			`rofiles = ["file:/etc/passwd", "file:/etc/hostname", "file:/etc/localtime"]`
			`dirs = ["file:/tmp"]`
			`rodirs = ["file:/bin", "file:/ui"]`
			`"""`