aboutsummaryrefslogtreecommitdiff
path: root/src/pseccomp.c
Commit message (Collapse)AuthorAge
* force non-zero via setuid/setgidToni Uhlig2020-06-27
| | | | | | * added TODO for root user mapping (if someone logged in as root) Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* x86/x86_64 require arch_prctl()lns2019-02-04
| | | | Signed-off-by: lns <matzeton@googlemail.com>
* adjusted allowed/disabled syscalls regarding OpenWrt compatibility, enable ↵Toni Uhlig2019-01-24
| | | | | | ptrace support for sandboxed apps (disabled by default), setsid/setpgrp during jail init Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* pseccomp: allow old x32 chown32 syscall for default allowedToni Uhlig2019-01-22
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* SECCOMP: allow getdents for protocol/jailToni Uhlig2019-01-17
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* enable SECCOMP text/bpf exportToni Uhlig2018-08-30
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* Copyright info updatedToni Uhlig2018-07-18
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* updated copyright informationsToni Uhlig2018-07-11
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* added seccomp blacklisted syscalls: ioperm, ioplToni Uhlig2018-06-24
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* seccomp: allow socket syscall in jailToni Uhlig2018-06-18
| | | | | | setup namespaces: old valgrind versions dont support the setns syscall, so use unshare if previous failed Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* flawfinder ignores now seccomp syscall definitionsToni Uhlig2018-06-17
| | | | Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
* POTD skeleton.lns2018-06-13
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
Powered by cgit, Themed by Ted Yin.