index
:
slackcoder/gmid
master
Small and secure gemini server
Mirror
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
sandbox.c
Age
Commit message (
Expand
)
Author
2021-10-02
enforce PR_SET_NO_NEW_PRIVS in the logger process
Omar Polo
2021-09-26
forgot include
Omar Polo
2021-09-26
[seccomp] allow ioctl(FIONREAD)
Omar Polo
2021-09-25
refactor landlock
Omar Polo
2021-09-19
landlock the logger process too
Omar Polo
2021-09-19
add helper function gmid_create_landlock_rs
Omar Polo
2021-09-19
landlock the server process
Omar Polo
2021-07-23
typo
Omar Polo
2021-07-23
allow fstat64
Omar Polo
2021-07-09
typo
Omar Polo
2021-07-07
style(9)-ify
Omar Polo
2021-07-03
typo
Omar Polo
2021-07-03
fix seccomp filter for ppc64le
Omar Polo
2021-07-02
configure: add --disable-sandbox
Omar Polo
2021-07-02
reworked seccomp filter
Omar Polo
2021-06-15
allow sending fd to log on to the logger process
Omar Polo
2021-05-09
fastcgi: a first implementation
Omar Polo
2021-04-30
allow ``root'' rule to be specified per-location block
Omar Polo
2021-03-31
list instead of fixed-size array for vhosts and locations
Omar Polo
2021-03-20
[seccomp] allow prlimit64
Omar Polo
2021-03-20
move all sandbox-related code to sandbox.c
Omar Polo
2021-02-23
[seccomp] allow sendmsg
Omar Polo
2021-02-23
moving logging to its own process
Omar Polo
2021-02-12
accept4 -> accept
Omar Polo
2021-02-11
use fatal instead of err/fprintf+exit
Omar Polo
2021-02-11
fix compilation on OSes without sandbox
Omar Polo
2021-02-10
[seccomp] allow newfstatat and gettimeofday
Omar Polo
2021-02-10
[seccomp] epoll_wait(2) isn't available on every arch
Omar Polo
2021-02-10
allow epoll_wait
Omar Polo
2021-02-08
allow sigreturn and sigaction on linux
Omar Polo
2021-02-08
fix seccomp for the new event loop
Omar Polo
2021-01-28
don't include err.h, gmid.h (via config.h) does that
Omar Polo
2021-01-25
[seccomp] allow getrandom
Omar Polo
2021-01-25
we don't need unveil "x" in listener
Omar Polo
2021-01-24
[seccomp] allow fcntl F_SETFD
Omar Polo
2021-01-23
fix date
Omar Polo
2021-01-23
added missic copyright notice
Omar Polo
2021-01-21
drop seccomp.h: not needed
Omar Polo
2021-01-20
fmt
Omar Polo
2021-01-20
allow clock_gettime and a bit of fmt
Omar Polo
2021-01-20
fix BPF
Omar Polo
2021-01-20
tighten the rules for fcntl
Omar Polo
2021-01-20
explain the poll mess
Omar Polo
2021-01-18
__NR_poll doesn't seem to be defined on aarch64
Omar Polo
2021-01-17
[seccomp] allow also poll
Omar Polo
2021-01-17
we don't need to check for CGI anymore
Omar Polo
2021-01-17
initial seccomp support
Omar Polo
2021-01-16
split into two processes: listener and executor
Omar Polo
2021-01-15
sandbox also on FreeBSD with capsicum
Omar Polo