aboutsummaryrefslogtreecommitdiff
path: root/libminijail.c
AgeCommit message (Expand)Author
2022-09-20minijail: enable Landlock for remaining minimalistic_mountns configs.Ben Scarlato
2022-09-15Update license boilerplate text in source code filesMike Frysinger
2022-09-07minijail: enable Landlock for minimalistic-mountns configs that only include ...Ben Scarlato
2022-08-30libminijail: Use `bool` for flagsChristian Blichmann
2022-08-26minijail: Check for symlinks immediately before mount().Jorge Lucangeli Obes
2022-08-26minijail: Apply nosymfollow to /tmpRyan Borzello
2022-08-10minijail: Add config file options for Landlock rules.Ben Scarlato
2022-07-25Apply Landlock restrict_self() later in minijail execution.Ben Scarlato
2022-07-22Block symlinks in bind mount source paths.Jorge Lucangeli Obes
2022-07-19Add basic Landlock support.Ben Scarlato
2022-07-13util: add a streq helperMike Frysinger
2022-07-07Distinguish bind mounts requested via minijail_bind().Jorge Lucangeli Obes
2022-06-24Only remount a bind-mount when making a RW path RO.Jorge Lucangeli Obes
2022-06-08Always get mount flags for the source of a bind mount.linux-v18Jorge Lucangeli Obes
2022-03-21libminijail: Set the controlling tty if appropriate.Allen Webb
2022-01-26minijail0: implement --env-reset and --env-addStéphane Lesimple
2022-01-10libminijail: fix possible stale pointer free() in minijail_unmarshalStéphane Lesimple
2021-11-04util: add helpers for automatic cleanup of strings on scope exitMike Frysinger
2021-10-18Re-add seccomp policy tracking.Allen Webb
2021-09-29Revert seccomp tracking changes.Allen Webb
2021-09-16Run clang format on libminijail-private.h and libminijail.cAllen Webb
2021-09-16Run child processes with the SECCOMP_POLICY environment variable.Allen Webb
2021-09-14Track seccomp policy file name and print it on policy violations.Allen Webb
2021-08-03Add minijail_run_fd_env_pid_pipes with support for fexecve.Allen Webb
2021-07-22util: add helpers for automatic cleanup of fd's on scope exitMike Frysinger
2021-07-19Relocate pipe_fds if they would be clobbered by a redirected fd.Allen Webb
2021-07-19Clear FD_CLOEXEC for preserved file descriptors.Allen Webb
2021-07-13util: add helpers for automatic cleanup on scope exitandroid-s-beta-4android-s-beta-3android-s-beta-4Mike Frysinger
2021-06-30minijail: add default ret log build-time optionAdrian Ratiu
2021-05-18Increase MAX_PRESERVED_FDS to 128android-s-beta-2android-s-beta-1Richard Fung
2021-05-12Add minijail_copy_jailDylan Reid
2021-04-30Don't log the warning for an expected killVictor Hsieh
2021-04-19Add overlap handling to redirect_fds().Allen Webb
2021-02-05minijail: Don't allow stricter remounting of specific dirNicole Anderson-Au
2021-01-28minijail: Add mount propagation granularity to libminijailNicole Anderson-Au
2021-01-06mount-dev: set up empty /dev/shm for glibc APIsMike Frysinger
2021-01-06libminijail: Avoid unnecessary dup2(2) callsLuis Héctor Chávez
2021-01-04libminijail: Refactor `seccomp_filter_flags_available()`Luis Héctor Chávez
2020-12-10Stop attempting to unmount /proc in the user namespace case.Jorge Lucangeli Obes
2020-12-09minijail0: Add flag to allow speculative execution on seccomp enabled processesAnand K Mistry
2020-11-11minijail: Check for repeat syscall definitionsNicole Anderson-Au
2020-11-09Implement SECCOMP_RET_KILL_PROCESS.Jorge Lucangeli Obes
2020-09-10libminijail: add a string marshal helperMike Frysinger
2020-09-10libminijail: localize internal APIsMike Frysinger
2020-09-09minijail0: Remount mounts as MS_SLAVE by default.Jorge Lucangeli Obes
2020-08-29add missing error checking for various allocationsMike Frysinger
2020-05-10Return MINIJAIL_ERR_MOUNT instead of crashing if mount_one failslinux-v15François Degros
2020-04-21Close redirected fds after dup2()-ing them.Mattias Nissler
2020-02-12Allow passing environment also for LD_PRELOADMattias Nissler
2020-02-12Improve resource management for minijail_run_internalMattias Nissler
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-04 11:04:39 +0000