| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2026-05-29 | feat: implement userspace wireguard data-path and unprivileged host fd-passing | James O'Doherty | |
| - Implement complete rootless network namespace bootstrap via C launcher using unshare(CLONE_NEWUSER | CLONE_NEWNS | CLONE_NEWNET). - Resolve unprivileged network isolation blackhole via host-socket preservation (FD passing): open client UDP sockets on the host pre-isolation, clear O_CLOEXEC, and ingest them via custom `FDBind` inside the sandbox. - Implement isolated routing table automation over `tun0` (addresses, MTU, default routes). - Implement persistent, multi-process namespace sharing and joining using reference-counted PID files and the setns system call. - Write robust, self-contained E2E data plane test suites in `tests/e2e/e2e_test.go` using a mock UDP listener. - Update project documentation (`README.md` and `AGENTS.md`) to reflect completed milestones. - Ensure 100% test passing rate and zero lint/staticcheck warnings. | |||
| 2026-05-22 | refactor: unify path management and complete profile management system | James O'Doherty | |
| - Create internal/paths package for unified config and runtime directory resolution - Implement robust WireGuard config parsing in pkg/wgconf - Implement profile management subcommands: list, import, configure, delete, stop - Fix namespace pinning path collisions (separating .ns files from pids directories) - Implement and verify namespace unpinning logic - Fix linting errors and improve error handling across the project | |||
| 2026-05-22 | docs: add diagnostic commands to README | James O'Doherty | |
| 2026-05-22 | Fix PID lifecycle race and improve CLI routing for diagnostic commands | James O'Doherty | |
| 2026-05-22 | Refactor lifecycle to support XDG_RUNTIME_DIR and fix binary pathing in E2E ↵ | James O'Doherty | |
| tests | |||
| 2026-05-22 | Implement automatic namespace lifecycle cleanup with last-man-out reference ↵ | James O'Doherty | |
| counting | |||
| 2026-05-22 | Update Makefile and README to standardize build/test process and lauch fuzzer | James O'Doherty | |
| 2026-05-22 | Security hardening: prevent shell injection and null-byte crashes, implement ↵ | James O'Doherty | |
| 8-bit clean argument fuzzing and portable E2E binary discovery | |||
| 2026-05-22 | feat: add argument verification diagnostic and secure temp files for launcher | James O'Doherty | |
| 2026-05-22 | docs: update README and AGENTS.md to reflect embedded launcher architecture | James O'Doherty | |
| 2026-05-22 | feat: implement rootless network isolation bootstrap and C launcher | James O'Doherty | |
| 2026-05-22 | Update AGENTS.md with performance conventions and add t.Parallel to CLI tests | James O'Doherty | |
| 2026-05-22 | Implement platform compatibility stubs and update AGENTS.md | James O'Doherty | |
| 2026-05-22 | Refactor CLI for testability and implement hermetic config path injection | James O'Doherty | |
| 2026-05-22 | Scaffold wg-wrap project structure and toolchain | James O'Doherty | |
| 2026-05-22 | Initial commit | James O'Doherty | |
 |
index : wg-wrap.git | |
| wg-wrap runs commands in network namespaces configured with userspace wireguard tunnels. |
| summaryrefslogtreecommitdiff |