Albert S. crtxcr
0 Sledující · 0 Sledovaní
Repozitáře
23
 Projekty Balíčky Veřejná aktivita Oblíbené repozitáře
crtxcr nahrál/a do WIP/fixbpf v crtxcr/exile.h 2021-08-12 22:01:40 +02:00
a0d2cbd895 WIP! Rewrite syscall policy logic
crtxcr otevřel/a úkol crtxcr/exile.h#14 2021-08-12 12:48:48 +02:00
seccomp: support Deny -> Permit -> Default Deny
crtxcr vytvořil/a pull request crtxcr/exile.h#13 2021-08-12 12:31:00 +02:00
WIP/fixbpf
crtxcr uzavřel/a pull request crtxcr/exile.h#11 2021-08-12 12:30:41 +02:00
WIP/nofs
crtxcr otevřel/a úkol crtxcr/exile.h#12 2021-08-12 12:30:15 +02:00
Allow x32 system calls
crtxcr vytvořil/a větev WIP/fixbpf v crtxcr/exile.h 2021-08-12 12:29:34 +02:00
crtxcr nahrál/a do WIP/fixbpf v crtxcr/exile.h 2021-08-12 12:29:34 +02:00
51844ea3ab bpf: Deny x32 system calls for now
66c6d28dcd bpf: Check arch value
5cd45c09b7 bpf: Use SECCOMP_RET_KILL_PROCESS instead SECCOMP_RET_KILL
Porovnat 3 revizí »
crtxcr nahrál/a do master v crtxcr/exile.h 2021-08-12 11:38:45 +02:00
fa06287b13 Use new qssb_append_*_syscall functions, remove old fields
68694723fe Begin qssb_append_*_syscall family of functions
4a4d551e75 Introduce "no_fs" and "no_new_fd" options.
Porovnat 3 revizí »
crtxcr nahrál/a do WIP/nofs v crtxcr/exile.h 2021-08-12 11:38:20 +02:00
fa06287b13 Use new qssb_append_*_syscall functions, remove old fields
68694723fe Begin qssb_append_*_syscall family of functions
692c9b54b7 Use new qssb_append_*_syscall functions, remove old fields
06b0977fca fixup! Begin qssb_append_*_syscall family of functions
93e44bf235 Begin qssb_append_*_syscall family of functions
Porovnat 5 revizí »
crtxcr vytvořil/a pull request crtxcr/exile.h#11 2021-08-11 20:55:05 +02:00
WIP/nofs
crtxcr nahrál/a do WIP/nofs v crtxcr/exile.h 2021-08-11 20:54:45 +02:00
692c9b54b7 Use new qssb_append_*_syscall functions, remove old fields
06b0977fca fixup! Begin qssb_append_*_syscall family of functions
93e44bf235 Begin qssb_append_*_syscall family of functions
Porovnat 3 revizí »
crtxcr nahrál/a do WIP/nofs v crtxcr/exile.h 2021-08-10 16:59:28 +02:00
4a4d551e75 Introduce "no_fs" and "no_new_fd" options.
57238b535c Expand disallowed system calls
b4e8116c20 seccomp_enable_whitelist(): Fix comment
8fb15f3727 Introduce "no_fs" and "no_new_fd" options.
Porovnat 4 revizí »
crtxcr nahrál/a do master v crtxcr/exile.h 2021-08-10 16:59:09 +02:00
57238b535c Expand disallowed system calls
b4e8116c20 seccomp_enable_whitelist(): Fix comment
Porovnat 2 revizí »
crtxcr nahrál/a do WIP/nofs v crtxcr/exile.h 2021-08-10 16:55:13 +02:00
8fb15f3727 Introduce "no_fs" and "no_new_fd" options.
f24dbf2ade Introduce "no_fs" and "no_new_fd" options.
Porovnat 2 revizí »
crtxcr nahrál/a do WIP/nofs v crtxcr/exile.h 2021-08-10 16:48:35 +02:00
f24dbf2ade Introduce "no_fs" and "no_new_fd" options.
f1a38d2114 WIP nofs, no_new_fd, test. REBASE
0b647364ae WIP nofs
Porovnat 3 revizí »
crtxcr nahrál/a do WIP/nofs v crtxcr/exile.h 2021-08-10 12:07:19 +02:00
f1a38d2114 WIP nofs, no_new_fd, test. REBASE
crtxcr vytvořil/a větev WIP/nofs v crtxcr/exile.h 2021-08-09 20:29:24 +02:00
crtxcr nahrál/a do WIP/nofs v crtxcr/exile.h 2021-08-09 20:29:24 +02:00
0b647364ae WIP nofs
crtxcr otevřel/a úkol crtxcr/exile.h#10 2021-08-09 20:17:19 +02:00
Missing fork() handling and pitfalls
crtxcr otevřel/a úkol crtxcr/exile.h#9 2021-08-09 20:01:53 +02:00
Document limitations