| Commit message (Collapse) | Author | Age | |
|---|---|---|---|
| * | Merge branch 'master' into fix-profile-builder |  netblue30 | 2019-09-15 |
| |\ | |||
| | * | Fix #2899 |  rusty-snake | 2019-09-15 |
| | | | |||
| | * | typos [skip ci] | rusty-snake | 2019-09-14 |
| | | | |||
| | * | "Net None" Option Breaks Functionality (#2962) |  Barış Ekin Yıldırım | 2019-09-14 |
| | | | | | | | Netfilter is fine but "net none" option breaks functionality of marketplace. | ||
| | * | update seccomp in man firejail | rusty-snake | 2019-09-13 |
| | | | |||
| | * | Fix #2945 (Signal 1.27 Fails to Start) | rusty-snake | 2019-09-13 |
| | | | |||
| | * | Update SkypeForLinux profile for latest version (#2960) |  Denys Havrysh | 2019-09-13 |
| | | | | | | | Fixes #2933 | ||
| | * | libtrace cleanup | netblue30 | 2019-09-10 |
| | | | |||
| | * | appimage --trace testing | netblue30 | 2019-09-10 |
| | | | |||
| | * | Add ar profile (#2949) |  glitsj16 | 2019-09-08 |
| | | | | | | | | | | | | | * Add ar to firecfg * Create ar.profile | ||
| | * | Fix private-bin in tar.profile | glitsj16 | 2019-09-06 |
| | | | | | | | Fixes #2942. | ||
| | * | Fix gnome-schedule | glitsj16 | 2019-09-06 |
| | | | | | | | This fixes #2941. | ||
| | * | Update syscalls.txt | rusty-snake | 2019-09-05 |
| | | | |||
| | * | remove ~/.config/dconf from whitelist-common.inc | rusty-snake | 2019-09-05 |
| | | | | | | | | | | | - dconf database is read-only (fde6e04b) and accessed over dbus, there are no reasons to keep it in the sandbox | ||
| | * | explain removal of nodbus in qpdfview.profile |  smitsohu | 2019-09-05 |
| | | | | | | | see previous commit, #2879 | ||
| | * | Merge pull request #2879 from Edu4rdSHL/patch-1 | smitsohu | 2019-09-05 |
| | |\ | | | | | | | qpdfview: Fix issue when opening a file from file manager | ||
| | | * | Fix issue when opening a file from file manager |  Eduard Tolosa | 2019-07-29 |
| | | | | | | | | | | I can confirm https://github.com/netblue30/firejail/pull/2837#issuecomment-511334363 when opening a file from `pcmanfm`, it doesn't open if qpdfview contains `nodbus` | ||
| | * | | fix FIREJAIL_FILE_COPY_LIMIT larger than 2GB | smitsohu | 2019-09-05 |
| | | | | |||
| | * | | Revert changes in #2928 to seccomp group @default |  Topi Miettinen | 2019-09-04 |
| | | | | | | | | | | | | | | | | Reconstruct @default by not relying on the changed system call groups @privileged and @resources. | ||
| | * | | fixup! Use new seccomp syntax from #2926 in more profiles | rusty-snake | 2019-08-30 |
| | | | | |||
| | * | | fix #2669 | rusty-snake | 2019-08-30 |
| | | | | |||
| | * | | Use new seccomp syntax (#2926) in more profiles | rusty-snake | 2019-08-30 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Rules for redirecting profiles: - add exceptions: just add 'seccomp !SYSCALL' - remove exception: ``` seccomp ignore seccomp ``` | ||
| | * | | Use new seccomp syntax from #2926 in more profiles | rusty-snake | 2019-08-30 |
| | | | | |||
| | * | | Use new seccomp syntax from #2926 | rusty-snake | 2019-08-30 |
| | | | | |||
| * | | | Make sure that we are unprivileged before creating the trace log file. |  Glenn Washburn | 2019-08-29 |
| | | | | |||
| * | | | When running builder trace output should go to separate file because (1) ↵ | Glenn Washburn | 2019-08-29 |
| | | | | | | | | | | | | | trace output is logged to console, which is a pain to capture, and (2) it should not be mingled with program output anyway, which it was when sending to stdout. | ||
| * | | | Update man page to note that --trace can now take an optional parameter. | Glenn Washburn | 2019-08-29 |
| | | | | |||
| * | | | Allow firejail --trace option to take an optional parameter which is the ↵ | Glenn Washburn | 2019-08-29 |
| | | | | | | | | | | | | | trace log file path. The trace log file will be created if it does not exist and then bind mounted to RUN_TRACE_FILE so that the sandboxed program can access it. | ||
| * | | | Allow libtrace preload library to use for trace output a logfile specified ↵ | Glenn Washburn | 2019-08-29 |
| | | | | | | | | | | | | | by the environment variable FIREJAIL_TRACEFILE or as the RUN_TRACE_FILE if it exists ortherwise use the console as before. | ||
| * | | | Fix issue where strace output file path has leading space making it an ↵ | Glenn Washburn | 2019-08-29 |
| | | | | | | | | | | | | | invalid path. | ||
| * | | | Better debug handling. | Glenn Washburn | 2019-08-29 |
| | | | | |||
| * | | | Profile builder helper should use correct firejail binary path. | Glenn Washburn | 2019-08-29 |
| |/ / | |||
| * | | Merge branch 'master' of https://github.com/netblue30/firejail | netblue30 | 2019-08-29 |
| |\ \ | |||
| | * \ | Merge pull request #2928 from topimiettinen/seccomp-more-groups | netblue30 | 2019-08-29 |
| | |\ \ | | | | | | | | | Add further seccomp groups | ||
| | | * | | Add further seccomp groups | Topi Miettinen | 2019-08-28 |
| | | | | | | | | | | | | | | | | | Get further seccomp group definitions from systemd. | ||
| * | | | | readme/relnotes | netblue30 | 2019-08-29 |
| |/ / / | |||
| * | | | fix previous merge | netblue30 | 2019-08-29 |
| | | | | |||
| * | | | Merge pull request #2926 from topimiettinen/seccomp-allow-exceptions | netblue30 | 2019-08-29 |
| |\ \ \ | | | | | | | | | Allow exceptions to seccomp lists | ||
| | * \ \ | Merge branch 'master' into seccomp-allow-exceptions | netblue30 | 2019-08-29 |
| | |\ \ \ | |/ / / |/| | | | |||
| * | | | | seccomp numeric testing | netblue30 | 2019-08-28 |
| | | | | | |||
| * | | | | Merge pull request #2929 from aoand/master | netblue30 | 2019-08-28 |
| |\ \ \ \ | | | | | | | | | | | seccomp fix: allow numeric syscalls | ||
| | * | | | | seccomp fix: allow numeric syscalls |  aoand | 2019-08-26 |
| |/ / / / | | | | | | | | | | | | | as per man page, numeric syscall is indicated by the dollar sign '$' | ||
| * | | | | Fix private-bin order in ghostwriter.profile | glitsj16 | 2019-08-26 |
| | | | | | |||
| * | | | | Fix order of private-cache in mpsyt.profile | glitsj16 | 2019-08-26 |
| | | | | | |||
| * | | | | Fic private-etc ordering for gnome-schedule | glitsj16 | 2019-08-26 |
| | | | | | |||
| * | | | | misc fixes | rusty-snake | 2019-08-26 |
| | | | | | | | | | | | | | | | | | | | | | | | | | - fix for #2038 - update RELNOTES - fix #2925 | ||
| * | | | | many profile fixes (1) | rusty-snake | 2019-08-26 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - add novideo to a lot of profiles (there are still more profiles where novideo can be added) - remove commente mdwe from some gnome applications - add descriptions to some profiles - blacklist ${HOME}/.cargo/credentials - move ${HOME}/.git-credentials and ${HOME}/.git-credential-cache to 'top secret' in disable-common.inc - some ordering in disable-programs.inc - merge tor browser blacklists to ${HOME}/.tor-browser* - qupzilla.profile redirect to falkon.profile - blacklist gnome-builder paths - fix transmission profiles inlude - much more | ||
| * | | | | add support for seccomp to sort.py [skip ci] | rusty-snake | 2019-08-25 |
| | | | | | |||
| * | | | | fix shebang in some contrib scripts [skip ci] | rusty-snake | 2019-08-25 |
| | | | | | |||
| * | | | | harden strings profile | smitsohu | 2019-08-25 |
| | |/ / |/| | | |||
 |
index : firejail | |
| Mirror of https://github.com/netblue30/firejail | Firejail Authors |
| aboutsummaryrefslogtreecommitdiffstats |