 Nick Mathewson
|
f41491816c
Log the name of the failing syscall on failure
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
f70cf9982a
Sandbox: permit O_NONBLOCK and O_NOCTTY for files we refuse
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
6194970765
Don't allow change to ConnLimit while sandbox is active
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
69eb278830
Use SCMP_CMP_MASKED_EQ to allow flags, not force them
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
e6785ee16d
Get Libevent's PRNG functioning under the linux sandbox
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
8dc6755f6d
Introduce arg-counting macros to wrap seccomp_rule_add()
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
12028c29e6
Fix sandbox protection for rename
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
739a52592b
Upgrade warning about missing interned string for sandbox
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
5aaac938a9
Have sandbox string protection include multi-valued parmeters.
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
f268101a61
Clean up sandbox structures a bit
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
6807b76a5e
Add missing rename function for non-linux platforms
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
71eaebd971
Drop 'fr' parameter from sandbox code.
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
cbfb8e703e
Add 'rename' to the sandboxed syscalls
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
3802e32c7d
Only intern one copy of each magic string for the sandbox
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
ae9d6d73f5
Fix some initial sandbox issues.
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
cc9e86db61
Log a backtrace when the sandbox finds a failure
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
196895ed7e
Make the sandbox code allow the writev() syscall.
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
119896cd43
Fix some leaks/missed checks in the unit tests
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
25f0eb4512
Add a sandbox rule to allow IP_TRANSPARENT
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
9be105f94b
whitespace fixes
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
682c2252a5
Fix some seccomp2 issues
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
fbc20294aa
Merge branch 'backtrace_squashed'
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
bd8ad674b9
Add a sighandler-safe logging mechanism
|
%!s(int64=11) %!d(string=hai) anos |
|
Nick Mathewson
|
1825674bd3
Fix a memory leak on getaddrinfo in sandbox. Found by coverity
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
4ea9fbcdb1
Clean up malloc issues in sandbox.c
|
%!s(int64=10) %!d(string=hai) anos |
|
Nick Mathewson
|
e0b2cd061b
Merge remote-tracking branch 'ctoader/gsoc-cap-stage2'
|
%!s(int64=10) %!d(string=hai) anos |
 Cristian Toader
|
7cf1b9cc33
fixed compilation bug on i386 due to previous fix
|
%!s(int64=10) %!d(string=hai) anos |
|
Cristian Toader
|
d2836c8780
bug fix: syscalls send and recv not supported for x86_64 with libseccomp 1.0.1
|
%!s(int64=10) %!d(string=hai) anos |
|
Cristian Toader
|
0a3d1685ae
remove debugging code
|
%!s(int64=10) %!d(string=hai) anos |
|
Cristian Toader
|
4702cdc99d
added extra buffer and limit to mprotect not to exceed the length of that buffer
|
%!s(int64=10) %!d(string=hai) anos |
