Robert Swiecki
|
15a13e78b8
|
cmdline: remove deprecated options
|
2018-06-01 17:15:47 +02:00 |
|
Robert Swiecki
|
47c8cf7a01
|
net: support owning interfaces with libnl too
|
2018-05-31 14:45:44 +02:00 |
|
Robert Swiecki
|
7d57fc81be
|
cmdline: add iface_own to take ownership of one of the global interfaces
|
2018-05-30 15:26:09 +02:00 |
|
Robert Swiecki
|
0620d7a50c
|
cmdline: name of params
|
2018-05-30 15:03:01 +02:00 |
|
Robert Swiecki
|
ff63b2ed4f
|
nsjail: better return values
|
2018-05-28 01:40:02 +02:00 |
|
Robert Swiecki
|
b8798fc9a7
|
use strtoimax when needed
|
2018-05-26 13:54:17 +02:00 |
|
Robert Swiecki
|
5632b66a5f
|
cmdline: check val value before conversion
|
2018-05-26 00:40:28 +02:00 |
|
Robert Swiecki
|
9ed90812c0
|
better checks for strto*l errors
|
2018-05-25 23:53:11 +02:00 |
|
Robert Swiecki
|
b69b4d15cc
|
cmdline: better description for --seccomp_log
|
2018-05-24 15:21:42 +02:00 |
|
Robert Swiecki
|
48e8634ba5
|
config: add support for seccomp_log
|
2018-05-23 15:38:45 +02:00 |
|
Robert Swiecki
|
4394fa725e
|
sandbox: add support for SECCOMP_FILTER_FLAG_LOG
|
2018-05-23 15:32:45 +02:00 |
|
Robert Swiecki
|
9168ec5948
|
cmdline: add tmp mounts after parsing of cmdline as tmpfs_size can be specified after -T
|
2018-02-20 21:03:22 +01:00 |
|
Robert Swiecki
|
c4a7af980f
|
util: simplify string splitting
|
2018-02-20 14:16:28 +01:00 |
|
Robert Swiecki
|
864b7fc718
|
cmdline: remove tmpfs_size from nsjconf_t
|
2018-02-18 02:47:46 +01:00 |
|
Robert Swiecki
|
3ee8555b07
|
cmdline: create specific funcs for argv and mnt setups
|
2018-02-17 03:14:54 +01:00 |
|
Robert Swiecki
|
9cbe1c57c3
|
cmdline: simpler unique_ptr construction
|
2018-02-16 16:05:26 +01:00 |
|
Robert Swiecki
|
82fb06be4e
|
make it compile under c++11 (e.g. ubuntu trusty)
|
2018-02-16 15:43:03 +01:00 |
|
Robert Swiecki
|
20342ff42d
|
sandbox: missing include
|
2018-02-16 15:24:24 +01:00 |
|
Robert Swiecki
|
4bb874a4fe
|
cmdline: use standard strto*
|
2018-02-16 15:23:02 +01:00 |
|
Robert Swiecki
|
11195999a3
|
rename ARRAYSIZE to ARR_SZ due to clash with protobufs headers
|
2018-02-13 16:53:45 +01:00 |
|
Robert Swiecki
|
f8d0e5fda1
|
cmdline: correctly assign argv to nsjconf->argv
|
2018-02-12 17:31:45 +01:00 |
|
Robert Swiecki
|
2545fcd3a9
|
nsjail: free seccomp filter upon nsjail exit
|
2018-02-12 17:09:45 +01:00 |
|
Robert Swiecki
|
8a22a4abb6
|
convert exec file and argv to string/vector
|
2018-02-12 16:52:05 +01:00 |
|
Robert Swiecki
|
810394cf16
|
switc all == false cmps to !
|
2018-02-12 15:17:33 +01:00 |
|
Robert Swiecki
|
1f24e3a900
|
move sandboxing setup from cmdline to nsjail
|
2018-02-12 03:11:58 +01:00 |
|
Robert Swiecki
|
5f35a0d2e0
|
sandbox: simplify policy parsing
|
2018-02-12 03:05:21 +01:00 |
|
Robert Swiecki
|
d1ffc1b25c
|
mnt: strtol -> std::strtol
|
2018-02-11 23:53:03 +01:00 |
|
Robert Swiecki
|
5a35f00e28
|
mnt: move mnt_t to std::string
|
2018-02-11 23:44:43 +01:00 |
|
Robert Swiecki
|
e6cd9af2ec
|
cmdline: missing TEMP_FAILURE_RETRY
|
2018-02-11 16:55:19 +01:00 |
|
Robert Swiecki
|
5791c8e4db
|
cmdline: allow to mount arbitrary FSes with -m
|
2018-02-11 15:07:24 +01:00 |
|
Robert Swiecki
|
f1a6b08962
|
cmdline: simplify string splitting
|
2018-02-11 14:56:30 +01:00 |
|
Robert Swiecki
|
0513124b4f
|
mnt: convert describeMountPt from const char* to std::string
|
2018-02-11 00:24:43 +01:00 |
|
Robert Swiecki
|
7a55ffb3a6
|
sandbox: convert kafel file/string as std::string
|
2018-02-10 23:46:15 +01:00 |
|
Robert Swiecki
|
0efa230cdd
|
change global vars to _ prefix
|
2018-02-10 20:32:04 +01:00 |
|
Robert Swiecki
|
de3f1371f0
|
convert proc_path to std::string
|
2018-02-10 20:16:17 +01:00 |
|
Robert Swiecki
|
b691b8796c
|
nsjail: iface_no_lo -> iface_lo
|
2018-02-10 18:22:51 +01:00 |
|
Robert Swiecki
|
7bddb40d87
|
net: move all iface_vs* options from char* to std::string
|
2018-02-10 18:18:40 +01:00 |
|
Robert Swiecki
|
97278f191b
|
log: rename log to logs due to clash with glibc's log
|
2018-02-10 17:49:15 +01:00 |
|
Robert Swiecki
|
4494deffa7
|
omit keyword 'struct'
|
2018-02-10 15:50:12 +01:00 |
|
Robert Swiecki
|
ecd4c32d9a
|
mnt: replace sys/queue with std::vector
|
2018-02-10 14:38:01 +01:00 |
|
Robert Swiecki
|
1761ed4fdc
|
move common.h to macros.h
|
2018-02-10 05:25:55 +01:00 |
|
Robert Swiecki
|
381e6a1af7
|
nsjail: move pids queue to a vector
|
2018-02-10 05:13:25 +01:00 |
|
Robert Swiecki
|
c34b52ab78
|
nsjail: convert a couple of struct fields to std::string
|
2018-02-10 04:10:18 +01:00 |
|
Robert Swiecki
|
93005ef03d
|
nsjail: convert gids/uids to vector of structs
|
2018-02-10 00:37:23 +01:00 |
|
Robert Swiecki
|
9399373ee7
|
nsjail: envs to vector of strings
|
2018-02-09 23:04:57 +01:00 |
|
Robert Swiecki
|
63eb13ecde
|
nsjail: move openfd from queue to vector
|
2018-02-09 22:47:00 +01:00 |
|
Robert Swiecki
|
d1d310e70f
|
nsjail: convert caps from queue to vector
|
2018-02-09 22:35:33 +01:00 |
|
Robert Swiecki
|
7f72cbd497
|
all: move to C++
|
2018-02-09 18:55:42 +01:00 |
|
Robert Swiecki
|
a6c34999f2
|
util: move to C++
|
2018-02-09 18:45:50 +01:00 |
|
Robert Swiecki
|
a82abf4dcb
|
mount: move to C++
|
2018-02-09 18:26:16 +01:00 |
|