jyapayne/anbox
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
901 commits 1 branch 0 tags 6.9 MiB
Commit graph

32 commits

Author SHA1 Message Date
Simon Fels
7b10faf47a scripts: enable linker debugging when running in debug mode 2018-07-05 09:18:41 +02:00
Simon Fels
945e6f1f7e
 		Merge branch 'master' into explicit-search-path-for-boost 2018-07-01 18:01:14 +02:00
Simon Fels
e0d508671f scripts: set explicit search path for libboost_log 2018-07-01 17:55:40 +02:00
Yechiel Levi
13dd9e17bd Supporting privileged container 2018-06-25 20:32:00 +03:00
Simon Fels
77a4cc7f3b Add support for an overlayed Android root filesystem 
This will allow users to extend the Android root filesystem with
additional system applications and changes.
 2018-06-25 08:46:56 +02:00
Simon Fels
83215524de Add snap configure hook to allow enable debug mode 2018-05-30 09:24:00 +02:00
Simon Fels
65af894a95 scripts: check if we run on an AppArmor enabled system before loading profile 2018-05-23 16:40:25 +02:00
Simon Fels
b36c0b7491 Implement confinement of the Android container via AppArmor 
The used profile is derived from what LXD uses to confine its
containers. See https://github.com/lxc/lxd/blob/master/lxd/apparmor.go
 2018-05-18 19:38:35 +02:00
Simon Fels
7dde2d9fdf snap: cleanup and small refactoring 
We're using the desktop helpers now to setup all necessary environment
variables for GL drivers etc. and only keep a small set of extra changes
on top for things the desktop-helpers don't support yet.
 2018-05-18 19:38:05 +02:00
Simon Fels
6e94a2bed3 Don't use sudo in a script executed as root 2017-08-16 10:18:44 +02:00
Simon Fels
22fcbabb64 Print warning if user starts container manager manually 2017-05-11 07:45:24 +02:00
Simon Fels
d7ccae072e Check for AppArmor support before using aa-exec 2017-04-12 21:34:06 +02:00
Simon Fels
5881a514de scripts: container-mgr: get rid of a few things (kmods, base uid, umount) 2017-02-19 11:39:36 +01:00
Simon Fels
6ce026bad4 Setup Android rootfs mount on container manager startup 2017-02-10 23:10:03 +01:00
Simon Fels
e0091c764b Allow using a different data path for container setup 2017-02-07 12:12:23 +01:00
Simon Fels
2e3a82c429 Remove kernel module building inside the snap 2017-02-07 12:12:23 +01:00
Simon Fels
b7937afc3c Only warn when FUSE support for user namespaces couldn't be enabled 2017-01-31 08:46:07 +01:00
Simon Fels
383511b397 Disable module building and loading on non xenial systems 2017-01-20 16:49:41 +01:00
Simon Fels
8d2e3853d4 scripts: respect new unprivileged container model 2017-01-05 10:15:21 +01:00
Simon Fels
7f564c55eb Build and load binder/ashmem kernel modules on service start 
As both kernel modules are not part of the standard Ubuntu kernel we
need to build and load them at runtime. We bundle this together with
the container manager start and reuse the classic snap scripts to do
the actual build in a proper environment.
 2016-12-13 13:51:40 +01:00
Simon Fels
cbb4beaac2 Restructure container manager startup script 
Mount /cache and /data properly and stop bridge correctly.
 2016-12-08 17:08:18 +01:00
Simon Fels
87da2f3744 Bind mount cache/data on startup from writable space 2016-12-08 07:12:09 +01:00
Simon Fels
6860338c4b Use disk images instead of a rootfs tarball 2016-12-05 10:06:48 +01:00
Simon Fels
457bd794ff Don't load kernel modules anymore 2016-12-04 17:17:33 +01:00
Simon Fels
a86a5847f8 Start bridge as part of the container manager 2016-12-04 17:16:55 +01:00
Simon Fels
a8704556da Unload AppArmor profile for container management process 
If we run the management process with the AppArmor profile loaded
from snap-confine various ashmem/binder operations are failing with
permission denied errors. To workaround this until this problem
is fixed we simply unload the AppArmor profile and continue to
execute completely without any profile loaded.
 2016-12-04 17:07:44 +01:00
Simon Fels
32a5eaca69 Fix permissions of extracted rootfs content 2016-12-03 14:14:33 +01:00
Simon Fels
4a0927c718 Load kernel modules for binder and ashmem on startup 2016-09-17 10:48:24 +02:00
Simon Fels
cd52c87639 Create rootfs version indicator 2016-09-17 10:48:24 +02:00
Simon Fels
18fd3734c0 Correct wrapper script name 2016-09-17 10:48:24 +02:00
Simon Fels
3ba9028844 Extra rootfs as part of the container manager startup 2016-09-17 10:48:24 +02:00
Simon Fels
117111ce20 Extend snap packaging with further details 2016-09-17 10:48:07 +02:00