Ludovic Courtès a391394a22 linux-container: Support having a read-only root file system. ... Until now, the read-only file system set up by ‘call-with-container’ would always be writable. With this change, it can be made read-only. With this patch, only ‘least-authority-wrapper’ switches to a read-only root file system. * gnu/build/linux-container.scm (remount-read-only): New procedure. (mount-file-systems): Add #:writable-root? and #:populate-file-system and honor them. (run-container): Likewise. (call-with-container): Likewise. * gnu/system/linux-container.scm (container-script): Pass #:writable-root? to ‘call-with-container’. (eval/container): Add #:populate-file-system and #:writable-root? and honor them. * guix/scripts/environment.scm (launch-environment/container): Pass #:writable-root? to ‘call-with-container’. * guix/scripts/home.scm (spawn-home-container): Likewise. * tests/containers.scm ("call-with-container, mnt namespace, read-only root") ("call-with-container, mnt namespace, writable root"): New tests. Change-Id: I603e2fd08851338b737bb16c8af3f765e2538906		2025-05-05 14:33:59 +02:00
..
bootloader
build	linux-container: Support having a read-only root file system.	2025-05-05 14:33:59 +02:00
home	home: services: msmtp: Accept g-expressions for ‘password-eval’.	2025-04-08 17:23:27 +02:00
installer
machine	machine: hetzner: Allow attaching existing public IPs.	2025-04-21 23:55:50 +02:00
packages	gnu: trealla: Update to 2.70.3.	2025-05-05 01:47:48 -05:00
services	services: guix: Fix case when /etc/guix/acl is a dangling symlink.	2025-05-05 14:33:59 +02:00
system	linux-container: Support having a read-only root file system.	2025-05-05 14:33:59 +02:00
tests	services: postgresql-role: Add support for password files.	2025-05-02 15:32:25 +09:00
artwork.scm
bootloader.scm
ci.scm
compression.scm
home.scm
image.scm
installer.scm
local.mk	gnu: eudev: Fix optical discs detection/auto-mounting.	2025-05-04 08:53:08 +09:00
machine.scm
packages.scm
services.scm
system.scm
tests.scm