Albert S. crtxcr

0 Followers · 0 Following

• https://quitesimple.org
• Joined on 2020-04-10

Repositories

23

Projects Packages Public Activity Starred Repositories

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-20 17:30:48 +01:00

c7991ceefa Introduce EXILE_SYSCALL_PLEDGE_DENY_ERROR, remove exile_policy->pledge_policy

5c8de3d286 test: Add pledge socket test

28fc84e323 pledge: Begin EXILE_SYSCALL_PLEDGE_UNIX/EXILE_SYSCALL_PLEDGE_INET

70c831e142 test: Begin basic pledge test

9a356a9e71 Begin an pledge()-like implementation

Compare 5 commits »

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-20 16:16:05 +01:00

eca3b3d622 test: Add pledge socket test

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-20 16:15:34 +01:00

fa473601d3 test: Add socket test

a068c3b0e3 pledge: Begin EXILE_SYSCALL_PLEDGE_UNIX/EXILE_SYSCALL_PLEDGE_INET

d3ebc6cabf fixup! Begin an pledge()-like implementation

Compare 3 commits »

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-19 21:16:10 +01:00

656f43ee7a fixup! test: Begin basic pledge test

ccf940b476 fixup! Begin an pledge()-like implementation

ecb064158d test: Begin basic pledge test

3cd253a309 fixup! Begin an pledge()-like implementation

Compare 4 commits »

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-19 20:27:12 +01:00

08a2445c26 fixup! Begin an pledge()-like implementation

e172c74a96 Retire syscall groups, will be replaced by superior pledge-like functionality

30a265d636 Begin an pledge()-like implementation

4dc67a5fa7 Begin low-level seccomp arg filter interface

Compare 4 commits »

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-12 11:51:04 +01:00

7bfa7f5961 Begin EXILE_SYSCALL_PLEDGE_STDIO

43ad418932 append_syscall_to_bpf(): Introduce EXILE_SYSCALL_EXIT_BPF_RETURN

274372f78e pledge: add ioctl default args filter

Compare 3 commits »

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-05 17:29:01 +01:00

6b70e33b8f Begin an pledge()-like implementation

a03c87732e append_syscall_to_bpf(): Apply EXILE_SYSCALL_EXIT_BPF_NO_MATCH also for sock_filter.jt

633c352608 Retire struct exile_syscall_arg_filter

Compare 3 commits »

crtxcr opened issue crtxcr/exile.h#23 2021-12-05 12:40:19 +01:00

pledge

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-05 11:09:00 +01:00

01b77fd909 test: Switch to syscall() everywhere

504e78764b test: Add seccomp_filter_mixed()

Compare 2 commits »

crtxcr commented on pull request crtxcr/exile.h#22 2021-12-02 10:17:27 +01:00

WIP pledge/low-level seccomp arg filter interface

Test for blacklist:

• syscall without args
• syscall with args
• syscall without args

crtxcr pushed to master at crtxcr/qswiki 2021-12-02 10:15:40 +01:00

32544c8f68 submodules: cpp-httplib: Update module

d0e7ff0a8c sandbox: Switch to exile.h (former qssb.h)

696ff9b7e7 sandbox: Allow TIME group

Compare 3 commits »

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-12-01 23:55:56 +01:00

ac3e84ed16 test: Add tests for low-level seccomp args filter API

03622bb4ea test: Adjust existing to new API with arg filters

ccf55d3195 WIP low-level seccomp arg filter interface

Compare 3 commits »

crtxcr pushed to master at crtxcr/qswiki 2021-11-30 19:35:51 +01:00

5570154113 fscache: Fix starts_with() broken by b41a5f4e5b

4f6bcd27b4 sandbox: Sync iwth qssb.h upstream: Use whitelisting and groups

bbe74a2c50 handlers: HandlerSearch: Add missing call to setGeneralVars()

5db9305408 template: display headers inline (backport from production)

Compare 4 commits »

crtxcr deleted branch exile from crtxcr/exile.h 2021-11-30 18:36:22 +01:00

crtxcr renamed repository from qssb.h to crtxcr/exile.h 2021-11-30 18:34:19 +01:00

crtxcr pushed to WIP/argsfilter at crtxcr/exile.h 2021-11-30 18:33:21 +01:00

371c6a94b6 WIP low-level seccomp arg filter interface

1b4c5477a5 rename to exile.h

756b0fb421 rename qssb.h to exile.h

Compare 3 commits »

crtxcr pushed to master at crtxcr/exile.h 2021-11-30 18:33:07 +01:00

1b4c5477a5 rename to exile.h

756b0fb421 rename qssb.h to exile.h

Compare 2 commits »

crtxcr pushed to exile at crtxcr/exile.h 2021-11-30 18:11:48 +01:00

b2a2d45213 rename to exile.h

crtxcr pushed to exile at crtxcr/exile.h 2021-11-30 18:10:26 +01:00

f377357501 rename to exile.h

crtxcr pushed to exile at crtxcr/exile.h 2021-11-30 18:09:38 +01:00

f82be83402 rename to exile.h