Commits
- Commit:
94a79035ec810b9c529406aae80037301646500a
- From:
- Omar Polo <op@omarpolo.com>
- Date:
__NR_poll doesn't seem to be defined on aarch64
- Commit:
65fba1d570390381f99396a547094f8b33f26ebf
- From:
- Omar Polo <op@omarpolo.com>
- Date:
[seccomp] allow also poll
on the latest fedora we glibc uses poll. On the other linux distro I
tried (void), musl is probably providing poll as a ppoll wrapper.
- Commit:
c2e39fcfedc2bf0430f65f56534ea446595c5018
- From:
- Omar Polo <op@omarpolo.com>
- Date:
we don't need to check for CGI anymore
- Commit:
71b7eb2f8c3d0a85dfdf23e08bf89d0a4ad82aaf
- From:
- Omar Polo <op@omarpolo.com>
- Date:
initial seccomp support
- Commit:
881a9dd9c2aebbf73f333dd3d8be4ce5400f717f
- From:
- Omar Polo <op@omarpolo.com>
- Date:
split into two processes: listener and executor
this way, we can sandbox the listener with seccomp (todo) or capsicum
(already done) and still have CGI scripts. When we want to exec, we
tell the executor what to do, the executor executes the scripts and
send the fd backt to the listener.
- Commit:
dafb57b8af432d800219a8e17900e1ac56a65c14
- From:
- Omar Polo <op@omarpolo.com>
- Date:
sandbox also on FreeBSD with capsicum