crtxcr/exile.h
1
0
Forc 0
Cód Saincheisteanna 14 Iarratais Tarraingthe 1 Scaoileann Vicí Gníomhaíocht

Allow adding syscalls by group names #18

Eagrán Nua
Dúnta
oscail 2021-09-06 22:35:05 +02:00 le crtxcr · 1 trácht
crtxcr trácht 2021-09-06 22:35:05 +02:00
Úinéir
Cóipeáil Nasc

If you add "open", there is a chance you also want to block "openat"...

So make this easy by allow adding system call by group names to the policy.

Also, maybe take some inspiration from pledge().

If you add "open", there is a chance you also want to block "openat"... So make this easy by allow adding system call by group names to the policy. Also, maybe take some inspiration from pledge().
crtxcr cuireadh an lipéad
enhancement
 2021-09-06 22:35:05 +02:00 leis
crtxcr trácht 2021-09-18 22:55:42 +02:00
Údar
Úinéir
Cóipeáil Nasc

If there was a kernel update, but no qssb.h update or code is using an outdated verison, new syscalls could have been added that are not in any group yet.

Thus, we may habe to auto blacklist all those that we do not know.

Alternatively, adding syscalls by groups should only be allowed for whitelisting?

If there was a kernel update, but no qssb.h update or code is using an outdated verison, new syscalls could have been added that are not in any group yet. Thus, we may habe to auto blacklist all those that we do not know. Alternatively, adding syscalls by groups should only be allowed for whitelisting?
crtxcr dhún an cheist seo 2021-11-20 19:52:05 +01:00
Sínigh isteach chun dul isteach sa chomhrá seo.
Níl aon Brainse/Clib Sonraithe
Brainsí Clibeanna
Lipéid
Lipéid shoiléir
bug
Something is not working
duplicate
This issue or pull request already exists
enhancement
New feature
help wanted
Need some help
invalid
Something is wrong
question
More information is needed
wontfix
This won't be fixed
Gan Lipéad
enhancement
Cloch Mhíle
Gan aon earraí
Gan Chloch Mhíle
Sannaitheoirí
Ceannaitheoirí soiléir
crtxcr
Gan aon Sannaitheoirí
1 Rannpháirtithe
Fógraí
Dáta dlite
Níl aon dáta dlite socraithe.
Spleithiúlachtaí

Níl aon spleáchais leagtha síos.

Tagairt: crtxcr/exile.h#18
Níl aon tuairisc ar fáil.
Scrios Brainse "%!s()"

Tá brainse a scriosadh buan. Cé go bhféadfadh an brainse scriosta leanúint ar aghaidh ag bheith ann ar feadh tréimhse ghearr sula mbaintear í i ndáiríre, NÍ FÉIDIR é a dhíchur i bhformhór Lean ar aghaidh?