Commit History

Author SHA1 Message Date
  Nick Mathewson 6194970765 Don't allow change to ConnLimit while sandbox is active 10 years ago
  Nick Mathewson 69eb278830 Use SCMP_CMP_MASKED_EQ to allow flags, not force them 10 years ago
  Nick Mathewson e6785ee16d Get Libevent's PRNG functioning under the linux sandbox 10 years ago
  Nick Mathewson 8dc6755f6d Introduce arg-counting macros to wrap seccomp_rule_add() 10 years ago
  Nick Mathewson 12028c29e6 Fix sandbox protection for rename 10 years ago
  Nick Mathewson 739a52592b Upgrade warning about missing interned string for sandbox 10 years ago
  Nick Mathewson 5aaac938a9 Have sandbox string protection include multi-valued parmeters. 10 years ago
  Nick Mathewson f268101a61 Clean up sandbox structures a bit 10 years ago
  Nick Mathewson 6807b76a5e Add missing rename function for non-linux platforms 10 years ago
  Nick Mathewson 71eaebd971 Drop 'fr' parameter from sandbox code. 10 years ago
  Nick Mathewson cbfb8e703e Add 'rename' to the sandboxed syscalls 10 years ago
  Nick Mathewson 3802e32c7d Only intern one copy of each magic string for the sandbox 10 years ago
  Nick Mathewson ae9d6d73f5 Fix some initial sandbox issues. 10 years ago
  Nick Mathewson cc9e86db61 Log a backtrace when the sandbox finds a failure 10 years ago
  Nick Mathewson 196895ed7e Make the sandbox code allow the writev() syscall. 10 years ago
  Nick Mathewson 119896cd43 Fix some leaks/missed checks in the unit tests 10 years ago
  Nick Mathewson 25f0eb4512 Add a sandbox rule to allow IP_TRANSPARENT 10 years ago
  Nick Mathewson 9be105f94b whitespace fixes 10 years ago
  Nick Mathewson 682c2252a5 Fix some seccomp2 issues 11 years ago
  Nick Mathewson fbc20294aa Merge branch 'backtrace_squashed' 11 years ago
  Nick Mathewson bd8ad674b9 Add a sighandler-safe logging mechanism 11 years ago
  Nick Mathewson 1825674bd3 Fix a memory leak on getaddrinfo in sandbox. Found by coverity 11 years ago
  Nick Mathewson 4ea9fbcdb1 Clean up malloc issues in sandbox.c 11 years ago
  Nick Mathewson e0b2cd061b Merge remote-tracking branch 'ctoader/gsoc-cap-stage2' 11 years ago
  Cristian Toader 7cf1b9cc33 fixed compilation bug on i386 due to previous fix 11 years ago
  Cristian Toader d2836c8780 bug fix: syscalls send and recv not supported for x86_64 with libseccomp 1.0.1 11 years ago
  Cristian Toader 0a3d1685ae remove debugging code 11 years ago
  Cristian Toader 4702cdc99d added extra buffer and limit to mprotect not to exceed the length of that buffer 11 years ago
  Cristian Toader 79f94e236b added filter protection for string parameter memory 11 years ago
  Cristian Toader 8e003b1c69 fixed socket syscall bug 11 years ago