index
:
systemd
main
systemd
Fast-forward packages
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
src
/
shared
/
seccomp-util.c
(
follow
)
Commit message (
Expand
)
Author
Age
Files
Lines
*
strv: make iterator in STRV_FOREACH() declaread in the loop
Yu Watanabe
2022-03-19
1
-1
/
+0
*
seccomp: move arch_prctl to @default
Zbigniew Jędrzejewski-Szmek
2022-01-07
1
-1
/
+1
*
seccomp-util: include missing_syscall_def.h to make __SNR_foo mapped to __NR_foo
Yu Watanabe
2022-01-02
1
-7
/
+4
*
seccomp: move mprotect to @default
Zbigniew Jędrzejewski-Szmek
2021-11-14
1
-1
/
+1
*
nspawn: add --suppress-sync=yes mode for turning sync() and friends into NOPs...
Lennart Poettering
2021-10-20
1
-0
/
+95
*
seccomp: Always install filters for native architecture
Benjamin Berg
2021-09-30
1
-0
/
+4
*
seccomp: move sched_getaffinity() from @system-service to @default
Lennart Poettering
2021-07-27
1
-1
/
+1
*
seccomp: drop getrandom() from @system-service
Lennart Poettering
2021-07-27
1
-1
/
+0
*
malloc() uses getrandom now
Cristian Rodríguez
2021-07-23
1
-0
/
+1
*
seccomp: drop quotactl_path() again from filter sets
Lennart Poettering
2021-06-15
1
-1
/
+0
*
seccomp: add some recently added syscalls to filter groups
Lennart Poettering
2021-06-09
1
-0
/
+4
*
seccomp: do not ignore deny-listed syscalls with errno when list is allow-list
Yu Watanabe
2021-03-08
1
-4
/
+6
*
seccomp: use FLAGS_SET() macro
Yu Watanabe
2021-03-08
1
-5
/
+5
*
core,seccomp: refuse to specify errno for allow-listed syscalls
Yu Watanabe
2021-03-08
1
-0
/
+3
*
seccomp: fix comment and change variable name
Yu Watanabe
2021-03-08
1
-7
/
+9
*
seccomp_restrict_sxid: return ENOSYS for openat2()
Mike Gilbert
2021-01-27
1
-2
/
+4
*
util: move parse_syscall_and_errno() to seccomp-util.c
Yu Watanabe
2021-01-18
1
-0
/
+38
*
seccomp: don't install filters for archs that can't use syscalls
Greg Depoire--Ferrer
2020-12-10
1
-17
/
+30
*
shared/seccomp-util: address family filtering is broken on ppc
Zbigniew Jędrzejewski-Szmek
2020-11-26
1
-3
/
+3
*
seccomp: also move munmap into @default syscall filter set
Yu Watanabe
2020-11-24
1
-1
/
+1
*
seccomp: move brk+mmap+mmap2 into @default syscall filter set
Lennart Poettering
2020-11-19
1
-3
/
+3
*
license: LGPL-2.1+ -> LGPL-2.1-or-later
Yu Watanabe
2020-11-09
1
-1
/
+1
*
seccomp: allow turning off of seccomp filtering via env var
Lennart Poettering
2020-11-05
1
-4
/
+14
*
shared/seccomp-util: move stime() to @obsolete
Topi Miettinen
2020-11-04
1
-1
/
+1
*
seccomp: allowlist close_range() by default in @basic-io
Lennart Poettering
2020-10-14
1
-0
/
+1
*
tree-wide: assorted coccinelle fixes
Frantisek Sumsal
2020-10-09
1
-2
/
+2
*
seccomp-util: fix typo in help message
Samanta Navarro
2020-10-03
1
-1
/
+1
*
seccomp-util: add cacheflush() syscall to @default syscall set
Lennart Poettering
2020-09-30
1
-0
/
+1
*
exec: SystemCallLog= directive
Topi Miettinen
2020-09-15
1
-0
/
+4
*
exec: Add kill action to system call filters
Topi Miettinen
2020-09-15
1
-1
/
+3
*
tree-wide: define iterator inside of the macro
Zbigniew Jędrzejewski-Szmek
2020-09-08
1
-7
/
+4
*
tree-wide: drop pointless zero initialization (#16900)
fangxiuning
2020-08-29
1
-1
/
+1
*
Merge pull request #16819 from keszybz/seccomp-enosys
Zbigniew Jędrzejewski-Szmek
2020-08-25
1
-16
/
+43
|
\
|
*
shared/seccomp-util: added functionality to make list of filtred syscalls
Zbigniew Jędrzejewski-Szmek
2020-08-24
1
-7
/
+32
|
*
shared/seccomp: reduce scope of indexing variables
Zbigniew Jędrzejewski-Szmek
2020-08-24
1
-9
/
+5
|
*
shared: add @known syscall list
Zbigniew Jędrzejewski-Szmek
2020-08-24
1
-0
/
+6
*
|
Request seccomp logging if SYSTEMD_LOG_SECCOMP environment variable is set.
Steve Dodd
2020-08-21
1
-0
/
+9
*
|
seccomp: add support for riscv64
Aurelien Jarno
2020-08-21
1
-4
/
+26
|
/
*
shared/seccomp: use _cleanup_ in one more place
Zbigniew Jędrzejewski-Szmek
2020-08-19
1
-10
/
+6
*
shared/seccomp: do not use ifdef guards around textual syscall names
Zbigniew Jędrzejewski-Szmek
2020-08-19
1
-6
/
+2
*
Newer Glibc use faccessat2 to implement faccessat
Michael Scherer
2020-08-16
1
-0
/
+1
*
tree-wide: avoid some loaded terms
Lennart Poettering
2020-06-25
1
-14
/
+13
*
tree-wide: use set_ensure_put()
Zbigniew Jędrzejewski-Szmek
2020-06-22
1
-10
/
+5
*
seccomp: filter openat2() entirely in seccomp_restrict_sxid()
Lennart Poettering
2020-06-03
1
-0
/
+16
*
tree-wide: Initialize _cleanup_ variables if needed
Benjamin Robin
2020-05-13
1
-1
/
+1
*
seccomp-util: add new syscalls from kernel 5.6 to syscall filter table
Lennart Poettering
2020-05-11
1
-0
/
+2
*
shared/seccomp: avoid possibly writing bogus errno code in debug log
Zbigniew Jędrzejewski-Szmek
2019-12-06
1
-5
/
+5
*
seccomp: use per arch shmat_syscall
Christian Ehrhardt
2019-12-05
1
-1
/
+1
*
seccomp: ensure rules are loaded in seccomp_memory_deny_write_execute
Christian Ehrhardt
2019-12-05
1
-1
/
+6
*
seccomp: fix multiplexed system calls
Christian Ehrhardt
2019-12-05
1
-8
/
+8
[next]