StarMirror/sandboxed-api
1
0
Fork 0
mirror of https://github.com/google/sandboxed-api.git synced 2024-03-22 13:11:30 +08:00
Code Issues Projects Releases Wiki Activity
4289b64aa7
sandboxed-api/sandboxed_api
History
Wiktor Garbacz 4289b64aa7 Disallow clone3, unsafe clone and unshare flags 
Ability to create new namespaces and getting capabilities in there exposes a big kernel attack surface.

PiperOrigin-RevId: 564703131
Change-Id: I3dcf4c78dca9f51a4b068df16e1b1a69916d727c
2023-09-12 06:30:45 -07:00
..
bazel Add missing dependencies bazel/BUILD 2023-08-24 07:09:14 -07:00
docs Update references to the new documentation 2021-12-14 09:03:29 -08:00
examples Always override forkservers comms_fd in sandboxee 2023-08-30 02:20:56 -07:00
sandbox2 Disallow clone3, unsafe clone and unshare flags 2023-09-12 06:30:45 -07:00
tools Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
util Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
BUILD.bazel Run more tests with coverage enabled 2023-08-31 00:44:23 -07:00
call.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
client.cc Internal change 2023-08-24 23:55:35 -07:00
CMakeLists.txt Run more tests with coverage enabled 2023-08-31 00:44:23 -07:00
config.cc Run more tests with coverage enabled 2023-08-31 00:44:23 -07:00
config.h Run more tests with coverage enabled 2023-08-31 00:44:23 -07:00
embed_file.cc Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
embed_file.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
file_toc.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
lenval_core.h Change license link to HTTPS URL 2022-01-28 01:39:09 -08:00
proto_arg.proto Migration of remaining protobufs from proto2 to proto3 2022-03-16 00:43:46 -07:00
proto_helper.cc Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
proto_helper.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
rpcchannel.cc Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
rpcchannel.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
sandbox.cc Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
sandbox.h Support passing stderrthreshold to sandboxee 2023-08-24 08:58:26 -07:00
sapi_test.cc Always override forkservers comms_fd in sandboxee 2023-08-30 02:20:56 -07:00
testing.cc Run more tests with coverage enabled 2023-08-31 00:44:23 -07:00
testing.h Run more tests with coverage enabled 2023-08-31 00:44:23 -07:00
transaction.cc Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
transaction.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_abstract.cc Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_abstract.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_array.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_int.cc Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_int.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_lenval.cc Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_lenval.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_proto.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_ptr.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_reg.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_struct.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
var_type.h Change license link to HTTPS URL 2022-01-28 01:39:09 -08:00
var_void.h Bulk IWYU and build_cleaner fixes 2023-08-24 06:23:36 -07:00
vars.h More IWYU annotations 2023-08-25 00:35:09 -07:00