add type { ... } block to define mime types mapping The `map' rule is powerful but quite annoying to use if you have/need lots of entries (and clutters the configuration file too.) The `type' block is blatantly stolen from httpd(8) and allows for a way more nice usage: type { include "/usr/share/misc/mime.types" } or even type { text/markdown md markdown text/x-perl pl pm # ... }

add missing token include to the list of tokens

don't log errno, it's always zero after libtls returns The libevent error value is much more interesting! see github issue #13

remove paragraph "locally installed libressl" + some tweaks libtls is now widely available, it's at least on gentoo, arch, void, alpine, fedora and debian sid; there's no need to show how to compile to a locally installed one.

sync changelog

tightens seccomp filter: allow only openat(O_RDONLY) be more strict and allow an openat only with the O_RDONLY flag. This is kind of redundant with landlock, but still good to have. Landlock is not yet widely available and won't kill the process upon policy violation; furthermore, landlock can be disabled at boot time. tested on GNU and musl libc on arch and alpine amd64.

sort syscalls in seccomp filter

sync changelog

Allow Arch-Armv7 syscalls in sandbox.c

update the site for the release

sync changelog

tag 1.8.1 -- "Lightbulb Sun" bugfix release gmid 1.8.1 "Lightbulb Sun" bugfix release ========================================= Released Feb 10, 2022. signify(1) pubkeys for this release: RWTy3UJQzpxBUAymBwb2EGLLm0b3H/1n8hzhaC9HYFYzNuTavGt9QSwC Bug fixes --------- * fix landlock usage on linux: don't assume that access capabilities not listed are implicitly denied, because they are not. Mickaël Salaün, the landlock author, found the same error on game of trees: > In a nutshell, the ruleset's handled_access_fs is required for > backward and forward compatibility (i.e. the kernel and user space may > not know each other's supported restrictions), hence the need to be > explicit about the denied-by-default access rights. In practice this affects only linux and only partially: thanks to the design of the daemon and the seccomp filter the effects of this mistake in handling landlock are fortunately limited. However, in theory at least, gmid could be for e.g. tricked into truncating existing files, so it's highly suggested to update. Improvements ------------ All by Anna “CyberTailor”, thanks! * don't skip unit tests when SKIP_RUNTIME_TEST is set * add `gg' to the regress target dependencies * fix the "implicit declaration of asprintf" warning * sync vim syntax

fix landlock usage Mickaël Salaün, the landlock author, pointed out the same error on the got implementation. The assumption that not listed access capabilities are implicitly denied is completely wrong: > In a nutshell, the ruleset's handled_access_fs is required for > backward and forward compatibility (i.e. the kernel and user space may > not know each other's supported restrictions), hence the need to be > explicit about the denied-by-default access rights.

sync vim syntax

include gmid.h before other headers to get all the prototypes > implicit declaration of function 'asprintf'; did you mean 'vsprintf'?