mirrors/cosmopolitan
1
0
Fork 0
mirror of https://github.com/jart/cosmopolitan.git synced 2025-03-03 07:29:23 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
cosmopolitan/third_party
History
Justine Tunney 5a132f9652 Add seccomp bpf sandboxing to redbean 
It's now possible to pass the `-S` or `-SS` flags to sandbox redbean
worker proecsses after they've been forked. The first `-S` flag is
intended to be a permissive builtin policy that limits system calls to
only that which the various parts of redbean serving need. The second
`-SS` flag is intended to be more restrictive, preventing things like
the Lua extensions you download off the web from using the HTTP client
or sockets APIs. In upcoming changes you'll be able to implement your
own Berkeley Packet Filter sandbox programs and load them via Lua.
2022-04-18 08:54:42 -07:00
..
argon2 Import C++ Standard Template Library 2022-03-22 06:41:54 -07:00
bzip2 Improve memory safety 2021-10-13 17:27:13 -07:00
chibicc Add some more builtins to chibicc 2022-04-17 13:07:07 -07:00
compiler_rt Import C++ Standard Template Library 2022-03-22 06:41:54 -07:00
dlmalloc Improve synchronization 2022-04-15 15:31:55 -07:00
gcc Elevate .text.syscall to .privileged 2021-02-06 04:49:22 -08:00
gdtoa Import C++ Standard Template Library 2022-03-22 06:41:54 -07:00
getopt Clean old .source directive out of asm code 2022-03-18 12:43:21 -07:00
infozip Fix bugs and add security features to redbean 2022-04-18 00:01:26 -07:00
libcxx Import C++ Standard Template Library 2022-03-22 06:41:54 -07:00
linenoise Add lua repl interface to redbean 2022-04-16 20:31:16 -07:00
lua Add seccomp bpf sandboxing to redbean 2022-04-18 08:54:42 -07:00
lz4cli Fix termios struct on Linux 2021-09-03 22:19:41 -07:00
make Fix bugs with recent change 2022-04-16 10:40:23 -07:00
maxmind Add maxmind to redbean 2022-03-18 03:17:08 -07:00
mbedtls Make improvements 2022-04-07 00:15:35 -07:00
musl Apply fixes and speedups 2021-10-04 03:23:31 -07:00
python Improve synchronization 2022-04-15 15:31:55 -07:00
quickjs Improve system call support on NT 2022-04-07 20:30:04 -07:00
regex Apply fixes and speedups 2021-10-04 03:23:31 -07:00
smallz4 Import C++ Standard Template Library 2022-03-22 06:41:54 -07:00
sqlite3 Fix bugs with recent change 2022-04-16 10:40:23 -07:00
stb Change noinline to dontinline (#312) 2021-11-12 15:12:18 -08:00
xed Improve signals and memory protection 2022-04-12 22:11:00 -07:00
zlib Restart CI for New Technology and UBSAN hunting 2022-03-21 04:32:57 -07:00
third_party.mk Import C++ Standard Template Library 2022-03-22 06:41:54 -07:00