op public repos

Commits

Commit:: a9d11f81b94d08e2c75dac892056b1071b182f9e
From:: Omar Polo <op@omarpolo.com>
Date:: Fri Oct 8 17:07:09 2021 UTC

add landlock support on linux landlock is applied only to the ui process to drop fs access and in the fs process to limit where telescope can read/write files. The network process is more difficult to landlock because while in theory it doesn't need *any* fs access, in practice it needs to read (at least) files inside /etc/ for DNS to work.

diff | patch | tree

Commit:: fd0beb5314ccdf3ae1b4a9ab0b8b5279a6e1dac0
From:: Omar Polo <op@omarpolo.com>
Date:: Thu Oct 7 21:58:31 2021 UTC

improve unveil' error reporting

diff | patch | tree

Commit:: 4b877649af0f6237f46cf7d033fc896aa7cf8ca6
From:: Omar Polo <op@omarpolo.com>
Date:: Thu Oct 7 21:57:07 2021 UTC

fix sandbox wrt XDG-style directories

diff | patch | tree

Commit:: 6845bee7f63f19732c8f3ea0ccd5ba9fbbdd68de
From:: Omar Polo <op@omarpolo.com>
Date:: Mon Sep 13 10:37:03 2021 UTC

[openbsd] allow creation of files in ~/Downloads

diff | patch | tree

Commit:: 17c10c65d18de23daf7b7759aa0bc5f745fb84b3
From:: Omar Polo <op@omarpolo.com>
Date:: Mon Jul 12 18:29:13 2021 UTC

(process) network -> net rename

diff | patch | tree

Commit:: de2a69bb424696abd9b1be5232fb7a89fa5f8767
From:: Omar Polo <op@omarpolo.com>
Date:: Mon May 17 10:13:17 2021 UTC

ask to save a page when it can't be rendered it's good for thing like images and text with weird encodings.

diff | patch | tree

Commit:: f4aa8eb5a5274991425a42d564cd909ac9a6569d
From:: Omar Polo <op@omarpolo.com>
Date:: Thu Mar 18 09:29:25 2021 UTC

don't include <err.h>, use the compat layer

diff | patch | tree

Commit:: 754622a2476761309d8b1a65ef3695c61cc43992
From:: Omar Polo <op@omarpolo.com>
Date:: Mon Mar 15 19:34:51 2021 UTC

fix various warnings, no functional changes now that we have a bounch of -Wxxx flags during compilation, let's fix everything.

diff | patch | tree

Commit:: e98a72dfcad90436d2d2590757b55f78cd28601c
From:: Omar Polo <op@omarpolo.com>
Date:: Mon Mar 15 19:22:37 2021 UTC

adjust fs sandbox: allow writing and creating stuff into ~/.telescope

diff | patch | tree

Commit:: 35e1f40abf408663d468038e22af2c6f2ec34659
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Mar 14 21:17:11 2021 UTC

added fs process it's the only one that has file system access. For now it serves about:new (from memory) and about:bookmarks (from ~/.telescope/bookmarks.gmi if found)

diff | patch | tree

Commit:: b1d4d01bdcdee5ab691717b751facbaee1870baa
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Mar 14 18:17:38 2021 UTC

sandbox ui process too

diff | patch | tree

Commit:: 2b1f38abc7a33a374adde5b1672413878e127c5a
From:: Omar Polo <op@omarpolo.com>
Date:: Sat Mar 13 13:45:46 2021 UTC

add required #include

diff | patch | tree

Commit:: 68a9b7d26672f92a9934f338dc5777f3054e0ed4
From:: Omar Polo <op@omarpolo.com>
Date:: Sat Mar 13 13:13:23 2021 UTC

Provide a stub for the sandbox

diff | patch | tree

Commit:: 677d90f7f8a60dc43b6d7be837c5b25b1cde1dbc
From:: Omar Polo <op@omarpolo.com>
Date:: Fri Mar 12 22:15:01 2021 UTC

implement sandboxing for the network process on OpenBSD

diff | patch | tree