 Nick Mathewson
|
f41491816c
Log the name of the failing syscall on failure
|
11 years ago |
|
Nick Mathewson
|
2ae47d3c3a
Block certain option transitions while sandbox enabled
|
11 years ago |
|
Nick Mathewson
|
f70cf9982a
Sandbox: permit O_NONBLOCK and O_NOCTTY for files we refuse
|
11 years ago |
|
Nick Mathewson
|
c80a6bd9d5
Don't reload logs or rewrite pidfile while sandbox is active
|
11 years ago |
|
Nick Mathewson
|
6194970765
Don't allow change to ConnLimit while sandbox is active
|
11 years ago |
|
Nick Mathewson
|
18f7f49a8c
Allow reloading torrc and writing to router-stability
|
11 years ago |
|
Nick Mathewson
|
69eb278830
Use SCMP_CMP_MASKED_EQ to allow flags, not force them
|
11 years ago |
|
Nick Mathewson
|
ce776cf270
Add a couple of missing renames so the server sandbox works again
|
11 years ago |
|
Nick Mathewson
|
e6785ee16d
Get Libevent's PRNG functioning under the linux sandbox
|
11 years ago |
|
Nick Mathewson
|
156eefca45
Make sure everything using an interned string is preceded by a log
|
11 years ago |
|
Nick Mathewson
|
8dc6755f6d
Introduce arg-counting macros to wrap seccomp_rule_add()
|
11 years ago |
|
Nick Mathewson
|
12028c29e6
Fix sandbox protection for rename
|
11 years ago |
|
Nick Mathewson
|
739a52592b
Upgrade warning about missing interned string for sandbox
|
11 years ago |
|
Nick Mathewson
|
5aaac938a9
Have sandbox string protection include multi-valued parmeters.
|
11 years ago |
|
Nick Mathewson
|
f268101a61
Clean up sandbox structures a bit
|
11 years ago |
|
Nick Mathewson
|
6807b76a5e
Add missing rename function for non-linux platforms
|
11 years ago |
|
Nick Mathewson
|
71eaebd971
Drop 'fr' parameter from sandbox code.
|
11 years ago |
|
Nick Mathewson
|
e051e192a8
Remove nonsensical exec permission from sandbox code.
|
11 years ago |
|
Nick Mathewson
|
cbfb8e703e
Add 'rename' to the sandboxed syscalls
|
11 years ago |
|
Nick Mathewson
|
3802e32c7d
Only intern one copy of each magic string for the sandbox
|
11 years ago |
|
Nick Mathewson
|
ae9d6d73f5
Fix some initial sandbox issues.
|
11 years ago |
|
Nick Mathewson
|
211b8cc318
Only expose clean_backtrace() if we'll implement it
|
11 years ago |
|
Nick Mathewson
|
438a03ef7c
Merge remote-tracking branch 'origin/maint-0.2.4'
|
11 years ago |
|
Nick Mathewson
|
3fc0f9efb8
Merge remote-tracking branch 'origin/maint-0.2.3' into maint-0.2.4
|
11 years ago |
|
Nick Mathewson
|
ef3d7f2f97
remove note about dannenberg; it has upgraded.
|
11 years ago |
|
Nick Mathewson
|
f050cf75b0
Merge remote-tracking branch 'origin/maint-0.2.3' into maint-0.2.4
|
11 years ago |
|
Nick Mathewson
|
2ce0750d21
Update the authority signing key blacklist
|
11 years ago |
 Andrea Shepard
|
6ee9138576
Call connection_or_close_for_error() properly if write_to_buf() ever fails on an orconn
|
11 years ago |
|
Andrea Shepard
|
f36e93206a
Avoid redundant calls to connection_mark_for_close() on listeners when setting DisableNetwork to 1
|
11 years ago |
|
Andrea Shepard
|
a5544e589d
Close orconns correctly through channels when setting DisableNetwork to 1
|
11 years ago |
