github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6
4267 commits 10 branches 71 tags 33 MiB
Commit graph

212 commits

Author SHA1 Message Date
netblue30
ac92833652 evaluate UID_MIN/GID_MID at runtime, remove compile time evaluation - fixes #1964 2018-06-04 15:45:56 -04:00
netblue30
f905f046cc remove 64bit seccomp filter from 32bit architectures 2018-05-06 11:22:35 -04:00
Reiner Herrmann
fc222dd85c add dependency on uids.h in $(MYLIBS) 2018-04-23 19:20:24 +02:00
netblue30
75311732cc firejail user access database 2018-04-08 14:29:55 -04:00
netblue30
23d10c8fa0 deprecated --git-install and --git-uninstall 2018-04-04 07:41:17 -04:00
netblue30
ff1599f64d added --disable-suid to configuration script 2018-04-02 12:59:04 -04:00
netblue30
17b8cfa97f testing ssh 2018-04-01 13:45:12 -04:00
netblue30
ad6bb83fa9 consolidate makefiles 2018-03-31 08:24:05 -04:00
netblue30
64699c828f testing 2018-03-31 07:49:55 -04:00
netblue30
e3f64f751e support Spectre mitigation patch for gcc compiler 2018-03-23 19:28:05 -04:00
netblue30
e2ff818e3c optimize default seccomp filters 2018-01-02 09:08:12 -05:00
netblue30
f9c60d5a3a replacing seccomp printing with a seccomp disassembler 2017-12-28 12:28:08 -05:00
netblue30
ead4ec3089 netfilter template support 2017-11-18 08:39:02 -05:00
netblue30
1d4a84da31 fix install-strip 2017-11-15 07:42:50 -05:00
netblue30
b24e0e4049 netfilter split 2017-11-13 10:53:04 -05:00
netblue30
6b92f685ed private-lib 2017-10-10 12:23:57 -04:00
netblue30
280f37eba8 --build 2017-09-16 08:49:05 -04:00
Topi Miettinen
cb5d361a7b
Improve seccomp support for non-x86 architectures 2017-09-02 14:05:31 +03:00
Reiner Herrmann
ddfd762cff typo in seccomp filter name 2017-08-29 19:34:44 +02:00
Reiner Herrmann
ec870a4c66 include chroot tests in dist tarball 2017-08-29 19:31:59 +02:00
Reiner Herrmann
fc345a7ff0 run sysutils tests in test target 2017-08-29 19:23:28 +02:00
Topi Miettinen
d01216de45
Feature: switch/config option to block secondary architectures 
Add a feature for a new (opt-in) command line switch and config file
option to block secondary architectures entirely. Also block changing
Linux execution domain with personality() system call for the primary
architecture.

Closes #1479
 2017-08-19 23:33:11 +03:00
netblue30
0015315c48 travis test 2017-08-14 08:29:40 -04:00
Topi Miettinen
63e9d849f6
Allow any syscall to be blacklisted (#1447) 
Allow any syscall to be blacklisted with aid of LD_PRELOAD library,
libpostexecseccomp.so.

Closes: #1447
 2017-08-13 17:31:07 +03:00
netblue30
0823eebfb6 private-lib: split fldd as a separate application 2017-08-03 13:52:42 -04:00
Vladimir Schowalter
c5e188cbda Apparmor: add local configuration 2017-08-02 18:12:02 +01:00
Topi Miettinen
5360649518 Memory-deny-write-execute feature 
Feature to block attempts to create writable and executable memory.
 2017-07-30 16:48:16 +00:00
Fred Barclay
2ed47031ca
strip trailing whitespace 2017-05-24 14:39:28 -05:00
Duncan Overbruck
149899d29c make seccomp optional 2017-05-17 18:28:48 +02:00
netblue30
d3c90fa987 Makefile fix 2017-04-13 20:32:18 -04:00
Reiner Herrmann
8d8686af26 Make installation of contrib scripts configurable 2017-04-13 18:51:49 +02:00
Reiner Herrmann
3847b96a92 install fgit scripts only if configured with git-install support 2017-04-10 20:32:17 +02:00
netblue30
779f286dd1 install support for fj-mkdeb.py (#1205) 2017-04-09 11:45:43 -04:00
netblue30
b2b603eac9 testing 2017-03-29 12:09:26 -04:00
netblue30
b286a6bc3a merge #1100 from zackw: removed libconnect 2017-02-14 11:38:19 -05:00
netblue30
e46dd3e952 git-install 2017-02-04 11:57:47 -05:00
netblue30
b74e399b64 fixed make install 2017-01-04 14:00:26 -05:00
netblue30
9436294c61 install the content of contrib section /usr/lib/firejail directory 2017-01-04 08:41:12 -05:00
netblue30
80cc5fa809 chroot testing 2016-11-20 16:05:45 -05:00
netblue30
64431c712f seccomp work 1 2016-11-20 07:45:50 -05:00
netblue30
d30ae468d9 testing 2016-11-19 09:49:09 -05:00
netblue30
edcd62d752 fcopy part 1 2016-11-16 11:10:32 -05:00
netblue30
2f8688a17e testing 2016-11-13 20:35:12 -05:00
netblue30
63e16bfcd9 major cleanup and testing 2016-11-13 10:47:20 -05:00
netblue30
c40736899f appimage testing 2016-11-11 13:14:13 -05:00
netblue30
bb5b4077e6 hidepid part 5 2016-11-11 12:52:05 -05:00
netblue30
a8b23c8399 testing 2016-11-11 07:47:46 -05:00
netblue30
fffce11c3d testing 2016-11-10 20:15:22 -05:00
netblue30
35004af7d8 testing 2016-11-09 19:17:06 -05:00
netblue30
c0b5b9acf0 testing 2016-11-07 14:52:37 -05:00