github-starred/firejail

mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00

Author	SHA1	Message	Date
Fred Barclay	315038a548	ci: avoid tzdata dialog, part 2	2019-09-21 11:28:52 -05:00
Fred Barclay	ccfc67f58e	ci: avoid tzdata dialog	2019-09-21 11:14:53 -05:00
Fred Barclay	c6e100782d	ci: add main CI tests to GitLab CI	2019-09-21 11:01:31 -05:00
rusty-snake	2678e3bef6	readd .config/dconf to whitelist-common because … … it breaks feedreader and potential also other programs	2019-09-21 12:04:57 +02:00
rusty-snake	875193d03f	Create pngquant.profile	2019-09-21 11:19:52 +02:00
rusty-snake	5c7f993216	Create gnome-latex.profile	2019-09-20 18:43:53 +02:00
smitsohu	0ecbe8631c	apparmor: permit writing to trace file	2019-09-18 17:24:28 +02:00
smitsohu	320ebe08f9	break out fs_tracefile function	2019-09-18 17:15:05 +02:00
smitsohu	20360ed200	fix the fix: tune file copy limit width	2019-09-17 14:47:39 +02:00
smitsohu	03374d4042	fail gracefully if argc is zero	2019-09-17 14:42:26 +02:00
smitsohu	50ebe3adca	add trace file validation	2019-09-17 14:41:49 +02:00
smitsohu	528f6a67ea	move to fd based trace file mount	2019-09-17 14:38:24 +02:00
Ethan R	c1b5d3edee	Add allow-perl.inc to w3m.profile (#2965 ) * Removed disable-interpreters.inc from w3m.profile * disable-interpreters + allow-perl	2019-09-16 17:54:38 +00:00
netblue30	38ace01bf5	Merge pull request #2935 from crass/fix-profile-builder Fix profile builder	2019-09-15 07:00:09 -05:00
netblue30	99da7745bf	Merge branch 'master' into fix-profile-builder	2019-09-15 06:59:31 -05:00
rusty-snake	91b1788d26	Fix #2899	2019-09-15 07:07:17 +00:00
rusty-snake	3b32edbe2f	typos [skip ci]	2019-09-14 23:33:25 +02:00
Barış Ekin Yıldırım	bb4e9da7bf	"Net None" Option Breaks Functionality (#2962 ) Netfilter is fine but "net none" option breaks functionality of marketplace.	2019-09-14 16:27:56 -05:00
rusty-snake	b394115c03	update seccomp in man firejail	2019-09-13 11:50:34 +00:00
rusty-snake	07815ab182	Fix #2945 (Signal 1.27 Fails to Start)	2019-09-13 11:49:42 +00:00
Denys Havrysh	f97598e124	Update SkypeForLinux profile for latest version (#2960 ) Fixes #2933	2019-09-13 11:46:33 +00:00
netblue30	7748916e6a	libtrace cleanup	2019-09-10 17:32:30 -04:00
netblue30	1df4bbba52	appimage --trace testing	2019-09-10 17:26:22 -04:00
glitsj16	4ed69edbc4	Add ar profile (#2949 ) * Add ar to firecfg * Create ar.profile	2019-09-08 05:26:21 +00:00
glitsj16	2e64e781bb	Fix private-bin in tar.profile Fixes #2942.	2019-09-06 11:47:55 +00:00
glitsj16	dd0655020b	Fix gnome-schedule This fixes #2941.	2019-09-06 08:23:29 +00:00
rusty-snake	80aab3d21b	Update syscalls.txt	2019-09-05 17:53:13 +02:00
rusty-snake	880fd16254	remove ~/.config/dconf from whitelist-common.inc - dconf database is read-only (`fde6e04b`) and accessed over dbus, there are no reasons to keep it in the sandbox	2019-09-05 17:53:12 +02:00
smitsohu	fa9d0ea893	explain removal of nodbus in qpdfview.profile see previous commit, #2879	2019-09-05 17:47:17 +02:00
smitsohu	d7731d0d00	Merge pull request #2879 from Edu4rdSHL/patch-1 qpdfview: Fix issue when opening a file from file manager	2019-09-05 16:49:15 +02:00
smitsohu	27c136dcf4	fix FIREJAIL_FILE_COPY_LIMIT larger than 2GB	2019-09-05 16:15:16 +02:00
Topi Miettinen	3adae2e04b	Revert changes in #2928 to seccomp group @default Reconstruct @default by not relying on the changed system call groups @privileged and @resources.	2019-09-04 21:59:14 +03:00
rusty-snake	0c98761dec	fixup! Use new seccomp syntax from #2926 in more profiles	2019-08-30 21:01:10 +02:00
rusty-snake	f1a2a8f084	fix #2669	2019-08-30 21:01:10 +02:00
rusty-snake	3d8f587cd8	Use new seccomp syntax (#2926 ) in more profiles Rules for redirecting profiles: - add exceptions: just add 'seccomp !SYSCALL' - remove exception: ``` seccomp ignore seccomp ```	2019-08-30 21:01:10 +02:00
rusty-snake	569149a46e	Use new seccomp syntax from #2926 in more profiles	2019-08-30 21:01:10 +02:00
rusty-snake	511cad9ed2	Use new seccomp syntax from #2926	2019-08-30 21:01:10 +02:00
Glenn Washburn	742d2a26ca	Make sure that we are unprivileged before creating the trace log file.	2019-08-29 22:42:05 -05:00
Glenn Washburn	02580c890f	When running builder trace output should go to separate file because (1) trace output is logged to console, which is a pain to capture, and (2) it should not be mingled with program output anyway, which it was when sending to stdout.	2019-08-29 22:08:25 -05:00
Glenn Washburn	96505fd676	Update man page to note that --trace can now take an optional parameter.	2019-08-29 22:02:08 -05:00
Glenn Washburn	f6584eaf3b	Allow firejail --trace option to take an optional parameter which is the trace log file path. The trace log file will be created if it does not exist and then bind mounted to RUN_TRACE_FILE so that the sandboxed program can access it.	2019-08-29 21:57:13 -05:00
Glenn Washburn	1b02467adf	Allow libtrace preload library to use for trace output a logfile specified by the environment variable FIREJAIL_TRACEFILE or as the RUN_TRACE_FILE if it exists ortherwise use the console as before.	2019-08-29 21:53:46 -05:00
Glenn Washburn	6620aac849	Fix issue where strace output file path has leading space making it an invalid path.	2019-08-29 21:40:16 -05:00
Glenn Washburn	9af2c14723	Better debug handling.	2019-08-29 21:37:46 -05:00
Glenn Washburn	dbff5520e0	Profile builder helper should use correct firejail binary path.	2019-08-29 21:35:48 -05:00
netblue30	78ce2c28fd	Merge branch 'master' of https://github.com/netblue30/firejail	2019-08-29 16:57:50 -04:00
netblue30	f8f08eeea7	readme/relnotes	2019-08-29 16:57:12 -04:00
netblue30	c80831aa75	Merge pull request #2928 from topimiettinen/seccomp-more-groups Add further seccomp groups	2019-08-29 14:50:57 -05:00
netblue30	35ebc507c7	fix previous merge	2019-08-29 15:45:20 -04:00
netblue30	6e95e61cc2	Merge pull request #2926 from topimiettinen/seccomp-allow-exceptions Allow exceptions to seccomp lists	2019-08-29 14:31:35 -05:00

1 2 3 4 5 ...

5556 commits