Justine Tunney e81edf7b04 Improve pledge() and unveil() ... The pledge.com command now supports the new [WIP] unveil() support. For example, to strongly sandbox our command for listing directories. o//tool/build/assimilate.com o//examples/ls.com pledge.com -v /etc -p 'stdio rpath' o//examples/ls.com /etc This file system sandboxing is going to be perfect for us, because APE binaries are self-contained static executables that really don't use the filesystem that much. On the other hand, with non-static executables, sandboxing is going to be more difficult. For example, here's how to sandbox the `ls` command on the latest Alpine: pledge.com -v rx:/lib -v /usr/lib -v /etc -p 'stdio rpath exec' ls /etc This change fixes the `execpromises` API with pledge(). This change also adds unix.unveil() to redbean. Fixes #494		2022-07-18 07:58:20 -07:00
..
args	Make some systemic improvements	2022-05-18 16:52:36 -07:00
build	Improve pledge() and unveil()	2022-07-18 07:58:20 -07:00
decode	Make some quick fixes and cleanup	2022-06-26 02:58:36 -07:00
emacs	Use ARM's faster math functions on non-tiny builds	2022-07-11 18:34:10 -07:00
hash	Make build hermetic without shell scripts	2022-05-25 13:55:57 -07:00
lambda	Make build hermetic without shell scripts	2022-05-25 13:55:57 -07:00
net	Improve pledge() and unveil()	2022-07-18 07:58:20 -07:00
plinko	Make more fixes and improvements	2022-06-13 11:02:13 -07:00
scripts	Get codebase completely working with LLVM	2021-02-09 02:57:32 -08:00
viz	Add tcp syn packet fingerprinting to redbean	2022-07-17 02:43:49 -07:00
tool.mk	Make fixes and improvements	2022-06-18 01:46:12 -07:00