op public repos

Commits

Commit:: ea58dab1a7936d2ddddaab9e3f018656508d2270
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Jan 17 09:42:10 2021 UTC

update readme

diff | patch | tree

Commit:: c2e39fcfedc2bf0430f65f56534ea446595c5018
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Jan 17 09:37:44 2021 UTC

we don't need to check for CGI anymore

diff | patch | tree

Commit:: 71b7eb2f8c3d0a85dfdf23e08bf89d0a4ad82aaf
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Jan 17 09:34:27 2021 UTC

initial seccomp support

diff | patch | tree

Commit:: 7146dd552fe47a38934be51b8cf075096e4ff518
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Jan 17 09:34:06 2021 UTC

missing break

diff | patch | tree

Commit:: d939d0f09e44d8bee3fd8f1519deddeb20b804ef
From:: Omar Polo <op@omarpolo.com>
Date:: Sun Jan 17 09:33:45 2021 UTC

switch to getcwd

diff | patch | tree

Commit:: 881dc835d05029b30bcb7dd229d2a0583fa6e360
From:: Omar Polo <op@omarpolo.com>
Date:: Sat Jan 16 20:14:02 2021 UTC

wording

diff | patch | tree

Commit:: 881a9dd9c2aebbf73f333dd3d8be4ce5400f717f
From:: Omar Polo <op@omarpolo.com>
Date:: Sat Jan 16 19:41:34 2021 UTC

split into two processes: listener and executor this way, we can sandbox the listener with seccomp (todo) or capsicum (already done) and still have CGI scripts. When we want to exec, we tell the executor what to do, the executor executes the scripts and send the fd backt to the listener.

diff | patch | tree

Commit:: bd726b55be4df8535a2b200a252193649566007a
From:: Omar Polo <op@omarpolo.com>
Date:: Fri Jan 15 19:23:43 2021 UTC

set SERVER_NAME to the vhost when executing CGI scripts

diff | patch | tree

Commit:: 98c8f038acfbcb3f9366c9e22e5d75255187afeb
From:: Omar Polo <op@omarpolo.com>
Date:: Fri Jan 15 19:15:13 2021 UTC

drop inet_ntop leftovers we switched to getnameinfo some time ago, but that call to inet_ntop remained. Fortunately, it doesn't harm, since what i wrote is overwritten by getnameinfo and the provided buffer should be large enough.

diff | patch | tree