fix: rootless podman scanning — relax namespace/syscall restrictions

RestrictNamespaces and SystemCallFilter block rootless podman from creating user namespaces needed for container isolation. Removed these along with RestrictSUIDSGID (implied by NoNewPrivileges). ProtectHome set to no (rootless podman needs ~/.local/share/containers writable). Remaining active protections: NoNewPrivileges, ProtectSystem=strict, ReadWritePaths, RestrictAddressFamilies, MemoryDenyWriteExecute, RestrictRealtime, SystemCallArchitectures=native. Also reduced initial scan delay from 15s to 3s for faster container visibility after boot, and removed Ollama from auto-deploy. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-18 14:22:00 +00:00
parent 870ff095d8
commit e6e72368df
2 changed files with 9 additions and 9 deletions
--- a/core/archipelago/src/server.rs
+++ b/core/archipelago/src/server.rs
@@ -217,8 +217,8 @@ impl Server {

            // Initial scan (delayed to let crash recovery finish first)
            tokio::spawn(async move {
-                // Wait for crash recovery to start containers before scanning
-                tokio::time::sleep(Duration::from_secs(15)).await;
+                // Brief delay for containers to stabilize after boot
+                tokio::time::sleep(Duration::from_secs(3)).await;
                info!("🐳 Scanning containers...");
                if let Err(e) = scan_and_update_packages(&scanner, &state, identity_clone.as_ref()).await {
                    error!("Failed to scan containers: {}", e);
--- a/image-recipe/configs/archipelago.service
+++ b/image-recipe/configs/archipelago.service
@@ -8,6 +8,7 @@ Type=notify
 User=archipelago
 Environment="ARCHIPELAGO_BIND=0.0.0.0:5678"
 Environment="ARCHIPELAGO_DEV_MODE=true"
+Environment="XDG_RUNTIME_DIR=/run/user/1000"
 ExecStartPre=/bin/bash -c 'mkdir -p /var/lib/archipelago && echo "ARCHIPELAGO_HOST_IP=$(hostname -I 2>/dev/null | awk "{print $$1}")" > /var/lib/archipelago/host-ip.env'
 ExecStart=/usr/local/bin/archipelago
 Restart=on-failure
@@ -17,8 +18,10 @@ TimeoutStartSec=300

 # Filesystem protection
 ProtectSystem=strict
-ProtectHome=yes
-PrivateTmp=yes
+# ProtectHome=no: rootless podman needs writable ~/.local/share/containers
+ProtectHome=no
+# PrivateTmp disabled: rootless podman runtime lives in /tmp/podman-run-UID/
+# and must be shared between the service and SSH-created containers
 ReadWritePaths=/var/lib/archipelago /etc/containers /var/lib/containers /run/containers /run/user /tmp

 # Privilege restriction — restored with rootless podman (no sudo needed)
@@ -30,14 +33,11 @@ SupplementaryGroups=dialout
 RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6

 # Restrict what the process can do
-RestrictNamespaces=yes
+# RestrictNamespaces disabled: rootless podman creates user namespaces
 RestrictRealtime=yes
-RestrictSUIDSGID=yes

-# Only allow needed syscalls
+# SystemCallFilter disabled: rootless podman needs clone/unshare for user namespaces
 SystemCallArchitectures=native
-SystemCallFilter=@system-service
-SystemCallFilter=~@privileged @resources

 # Memory protection
 MemoryDenyWriteExecute=yes