index
:
systemd
main
systemd
Fast-forward packages
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
src
/
shared
/
seccomp-util.c
(
follow
)
Commit message (
Expand
)
Author
Age
Files
Lines
...
*
seccomp: remove 'gettid' syscall from '@process' syscall set (#6989)
Djalal Harouni
2017-10-05
1
-1
/
+0
*
seccomp: ignore (and debug log) errors by all invocations of seccomp_rule_add...
Lennart Poettering
2017-10-05
1
-2
/
+4
*
seccomp: always handle seccomp_load() failing the same way
Lennart Poettering
2017-10-05
1
-3
/
+7
*
seccomp: react gracefully if we can't translate a syscall name
Lennart Poettering
2017-10-05
1
-5
/
+6
*
seccomp: include prlimit64 and ugetrlimit in @default
Lennart Poettering
2017-10-05
1
-1
/
+2
*
seccomp: add sched_yield syscall to the @default syscall set
Djalal Harouni
2017-10-04
1
-0
/
+1
*
seccomp: remove '@credentials' syscall set (#6958)
Djalal Harouni
2017-10-03
1
-28
/
+21
*
seccomp: improve debug logging
Lennart Poettering
2017-09-14
1
-2
/
+6
*
seccomp: add four new syscall groups
Lennart Poettering
2017-09-14
1
-0
/
+71
*
seccomp: augment the @resources group a bit
Lennart Poettering
2017-09-14
1
-7
/
+9
*
seccomp: beef up @process group a bit
Lennart Poettering
2017-09-14
1
-0
/
+10
*
seccomp: "idle" is another obsolete syscall
Lennart Poettering
2017-09-14
1
-0
/
+1
*
seccomp: order the syscalls in more groups alphabetically
Lennart Poettering
2017-09-14
1
-21
/
+21
*
seccomp: let's update @file-system a bit
Lennart Poettering
2017-09-14
1
-10
/
+19
*
seccomp: let's update base-io a bit
Lennart Poettering
2017-09-14
1
-1
/
+2
*
seccomp: update "@default" seccomp group a bit
Lennart Poettering
2017-09-14
1
-0
/
+8
*
nspawn: implement configurable syscall whitelisting/blacklisting
Lennart Poettering
2017-09-12
1
-6
/
+10
*
seccomp: split out inner loop code of seccomp_add_syscall_filter_set()
Lennart Poettering
2017-09-11
1
-22
/
+37
*
seccomp: drop default_action parameter from seccomp_add_syscall_filter_set()
Lennart Poettering
2017-09-11
1
-3
/
+2
*
shared: add statx(2) to @file-system syscall filter list (#6738)
Lennart Poettering
2017-09-04
1
-0
/
+1
*
seccomp: rework seccomp_lock_personality() to apply filter to all archs
Lennart Poettering
2017-08-29
1
-11
/
+26
*
seccomp: LockPersonality boolean (#6193)
Topi Miettinen
2017-08-29
1
-0
/
+19
*
core: add two new special ExecStart= character prefixes
Lennart Poettering
2017-08-10
1
-0
/
+38
*
seccomp: add new @setuid seccomp group
Lennart Poettering
2017-08-10
1
-0
/
+19
*
seccomp-util: add parse_syscall_archs()
Yu Watanabe
2017-08-07
1
-0
/
+32
*
seccomp: arm64 does not have mmap2
Zbigniew Jędrzejewski-Szmek
2017-07-15
1
-5
/
+2
*
seccomp: arm64/x32 do not have _sysctl
Zbigniew Jędrzejewski-Szmek
2017-07-15
1
-0
/
+4
*
shared/seccomp-util: add parentheses and no. after syscall name
Zbigniew Jędrzejewski-Szmek
2017-07-15
1
-2
/
+2
*
seccomp: enable RestrictAddressFamilies on ppc64, autodetect SECCOMP_RESTRICT...
Zbigniew Jędrzejewski-Szmek
2017-05-10
1
-3
/
+3
*
seccomp: assume clone() arg order is known on all architectures
Zbigniew Jędrzejewski-Szmek
2017-05-08
1
-34
/
+2
*
seccomp: add mmap/shmat defines for arm and arm64
Zbigniew Jędrzejewski-Szmek
2017-05-08
1
-3
/
+12
*
seccomp: add mmap/shmat defines for ppc64
Zbigniew Jędrzejewski-Szmek
2017-05-08
1
-4
/
+20
*
seccomp: factor out seccomp_rule_add_exact to a helper function
Zbigniew Jędrzejewski-Szmek
2017-05-08
1
-48
/
+36
*
seccomp: add clone syscall definitions for mips (#5880)
James Cowgill
2017-05-03
1
-0
/
+6
*
Define clone order on ppc (#5325)
Zbigniew Jędrzejewski-Szmek
2017-02-14
1
-2
/
+4
*
seccomp: disable RestrictAddressFamilies= for the ABI we shall block, not the...
Lennart Poettering
2017-02-12
1
-3
/
+27
*
seccomp: order seccomp ABI list, so that our native ABI comes last (#5306)
Lennart Poettering
2017-02-10
1
-13
/
+54
*
seccomp: add forgotten munmap() syscall to @file-system (#5291)
Lennart Poettering
2017-02-10
1
-0
/
+1
*
seccomp: on s390 the clone() parameters are reversed
Lennart Poettering
2017-02-08
1
-6
/
+39
*
seccomp: MemoryDenyWriteExecute= should affect both mmap() and mmap2() (#5254)
Lennart Poettering
2017-02-08
1
-18
/
+74
*
seccomp: RestrictAddressFamilies= is not supported on i386/s390/s390x, make i...
Lennart Poettering
2017-02-06
1
-0
/
+3
*
seccomp: don't ever try to add an ABI before removing the default native ABI ...
Evgeny Vereshchagin
2017-02-05
1
-2
/
+2
*
seccomp: minor simplifications for is_seccomp_available()
Lennart Poettering
2017-01-18
1
-7
/
+8
*
seccomp: rework seccomp code, to improve compat with some archs
Lennart Poettering
2017-01-18
1
-121
/
+531
*
seccomp: move bdflush() system call to @obsolete filter group
Lennart Poettering
2016-12-27
1
-1
/
+1
*
seccomp: add proper help string for @resources seccomp filter set
Lennart Poettering
2016-12-27
1
-1
/
+1
*
seccomp: add two new filter sets: @reboot and @swap
Lennart Poettering
2016-12-27
1
-0
/
+15
*
seccomp: add @filesystem syscall group (#4537)
Lennart Poettering
2016-11-22
1
-0
/
+72
*
core: add new RestrictNamespaces= unit file setting
Lennart Poettering
2016-11-04
1
-0
/
+89
*
seccomp-util, analyze: export comments as a help string
Zbigniew Jędrzejewski-Szmek
2016-11-03
1
-16
/
+18
[prev]
[next]
