mirrors/cosmopolitan
1
0
Fork 0
mirror of https://github.com/jart/cosmopolitan.git synced 2025-02-01 03:53:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
cosmopolitan/libc/calls/struct
History
Justine Tunney 5a132f9652 Add seccomp bpf sandboxing to redbean 
It's now possible to pass the `-S` or `-SS` flags to sandbox redbean
worker proecsses after they've been forked. The first `-S` flag is
intended to be a permissive builtin policy that limits system calls to
only that which the various parts of redbean serving need. The second
`-SS` flag is intended to be more restrictive, preventing things like
the Lua extensions you download off the web from using the HTTP client
or sockets APIs. In upcoming changes you'll be able to implement your
own Berkeley Packet Filter sandbox programs and load them via Lua.
2022-04-18 08:54:42 -07:00
..
bpf.h Add seccomp bpf sandboxing to redbean 2022-04-18 08:54:42 -07:00
dirent.h Add SSL to redbean 2021-06-24 13:20:50 -07:00
filter.h Add seccomp bpf sandboxing to redbean 2022-04-18 08:54:42 -07:00
flock.h Make redbean StoreAsset() work better 2021-05-14 05:44:37 -07:00
framebufferfixedscreeninfo.h Initial import 2020-06-15 07:18:57 -07:00
framebuffervirtualscreeninfo.h Initial import 2020-06-15 07:18:57 -07:00
hog.py Add seccomp bpf sandboxing to redbean 2022-04-18 08:54:42 -07:00
iovec.h Initial import 2020-06-15 07:18:57 -07:00
itimerval.h Initial import 2020-06-15 07:18:57 -07:00
metasigaltstack.h Improve memory safety 2021-10-13 17:27:13 -07:00
metastat.internal.h Fix termios struct on Linux 2021-09-03 22:19:41 -07:00
metatermios.internal.h Apply some touchups 2021-02-07 07:02:46 -08:00
rlimit.h Make major improvements to redbean and libraries 2021-04-18 12:34:15 -07:00
rusage.h Make major improvements to redbean and libraries 2021-04-18 12:34:15 -07:00
sched_param.h Initial import 2020-06-15 07:18:57 -07:00
seccomp.h Add seccomp bpf sandboxing to redbean 2022-04-18 08:54:42 -07:00
sigaction-freebsd.internal.h Remove dollars from system call support symbols 2021-02-03 19:35:29 -08:00
sigaction-linux.internal.h Remove dollars from system call support symbols 2021-02-03 19:35:29 -08:00
sigaction-netbsd.h Add NetBSD support 2021-02-05 06:19:45 -08:00
sigaction-openbsd.internal.h Remove dollars from system call support symbols 2021-02-03 19:35:29 -08:00
sigaction-xnu.internal.h Remove dollars from system call support symbols 2021-02-03 19:35:29 -08:00
sigaction.h Improve locks and signals 2022-04-12 05:20:17 -07:00
sigaltstack.h Improve memory safety 2021-10-13 17:27:13 -07:00
siginfo-freebsd.internal.h Improve signals and memory protection 2022-04-12 22:11:00 -07:00
siginfo-netbsd.internal.h Improve signals and memory protection 2022-04-12 22:11:00 -07:00
siginfo-openbsd.internal.h Improve signals and memory protection 2022-04-12 22:11:00 -07:00
siginfo-xnu.internal.h Improve signals and memory protection 2022-04-12 22:11:00 -07:00
siginfo.h Improve signals and memory protection 2022-04-12 22:11:00 -07:00
sigset.h Get Cosmopolitan into releasable state 2020-11-25 08:19:00 -08:00
sigval.h Initial import 2020-06-15 07:18:57 -07:00
sockaddr6.h Add test for ioctl(SIOCGIFCONF) and polyfill on BSDs 2021-06-25 18:44:04 -07:00
stat.h Fix termios struct on Linux 2021-09-03 22:19:41 -07:00
stat.macros.h Fix termios struct on Linux 2021-09-03 22:19:41 -07:00
sysinfo.h Initial import 2020-06-15 07:18:57 -07:00
termios.h Fix termios struct on Linux 2021-09-03 22:19:41 -07:00
timespec.h Initial import 2020-06-15 07:18:57 -07:00
timeval.h Initial import 2020-06-15 07:18:57 -07:00
tms.h Initial import 2020-06-15 07:18:57 -07:00
ucontext-freebsd.internal.h Improve signals and memory protection 2022-04-12 22:11:00 -07:00
ucontext-openbsd.internal.h Improve signals and memory protection 2022-04-12 22:11:00 -07:00
user_regs_struct.h Remove dollars from system call support symbols 2021-02-03 19:35:29 -08:00
utsname.h Initial import 2020-06-15 07:18:57 -07:00
winsize.h Initial import 2020-06-15 07:18:57 -07:00