aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAge
* Merge pull request #3864 from haraldkubota/masterLibravatar rusty-snake2021-02-13
|\ | | | | Add first version of zsh completion
| * Add first version of zsh completionLibravatar Harald Kubota2021-02-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Don't have duplicate descriptions and put = signs where they belong to zsh completion function now dynamically adjusts for options (e.g. no --apparmor option without AppArmor configured) No EXTRA_CFLAGS for cpp Found main.c which does the argument processing. Moved some arguments into the correct #ifdef blocks Profile selection now much better Not more cpp. Using preproc.awk instead. Updated bash firejail command completion to add profiles ignore bash and zsh dynamically created completion scripts Moved bash/zsh completions out of ALL_ITEMS to fix make install Cleanup
* | tweakLibravatar smitsohu2021-02-12
| | | | | | | | | | readability/making it more obvious buffers are properly initialized
* | remount hardeningLibravatar smitsohu2021-02-12
| |
* | chroot hardeningLibravatar smitsohu2021-02-12
| | | | | | | | | | the check was introduced some time ago in fs_x11(), but fs_chroot() does the same thing and needs it as well
* | Always allow empty environment variablesLibravatar Topi Miettinen2021-02-11
| | | | | | | | | | | | | | With the recent changes to environment variable handling, it should be safe to always allow empty variables. Closes: #3965
* | display-im6.q16Libravatar netblue302021-02-11
| |
* | Merge pull request #3969 from glitsj16/fsaccessat2Libravatar netblue302021-02-11
|\ \ | | | | | | add support for faccessat2 syscall
| * | add support for faccessat2 syscallLibravatar glitsj162021-02-10
| | |
| * | add support for faccessat2 syscallLibravatar glitsj162021-02-10
| | |
| * | add support for faccessat2 syscallLibravatar glitsj162021-02-10
| | |
| * | add support for fsaccessat2 syscallLibravatar glitsj162021-02-10
| | |
* | | fix spacing in man firejailLibravatar glitsj162021-02-10
| | |
* | | fix private=directory in man firejail-profileLibravatar glitsj162021-02-10
| | |
* | | fix ordering of deterministic-exit-code in man firejailLibravatar glitsj162021-02-10
|/ /
* | adding DISPLAY to env_whitelistLibravatar netblue302021-02-09
| |
* | Merge pull request #3849 from bbhtt/emailLibravatar netblue302021-02-09
|\ \ | | | | | | Email part (2)
| * | Add neomutt to firefg.configLibravatar bbhtt2020-12-28
| | |
* | | Filter environment variablesLibravatar Topi Miettinen2021-02-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Save all environment variables for later use in the application, clear environment and re-apply only whitelisted variables for the main firejail process. The whitelisted environment is only used by C library. Sandboxed tools will get further variables used internally (FIREJAIL_*). All variables will be reapplied for the firejailed application. This also lifts the length restriction for environment variables, except for the variables used by Firejail itself or the sandboxed tools.
* | | Add profile for Gemini (#3946)Libravatar Neo000012021-02-07
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Update disable-programs.inc * Create calligragemini.profile * Update calligra.profile * Update calligra.profile * Update firecfg.config
* | | Seccomp error action fixesLibravatar Topi Miettinen2021-02-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | fsec-optimize: Optimize BPF with current seccomp error action, not just KILL fseccomp: use correct BPF code for errno action firejail: honor seccomp error action for X32 and secondary filters, rebuild filters if the error action is changed Closes: #3933 Signed-off-by: Topi Miettinen <toiwoton@gmail.com>
* | | Add profile for avidemux (#3935)Libravatar Neo000012021-01-31
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Update disable-programs.inc * Update disable-programs.inc * Update firecfg.config * Create avidemux.profile * Update avidemux.profile
* | | Fix minor typo in firecfg's manual pageLibravatar irandms2021-01-31
| | |
* | | merge/readme updateLibravatar netblue302021-01-25
| | |
* | | Merge pull request #3853 from botherder/masterLibravatar netblue302021-01-25
|\ \ \ | | | | | | | | New profile for CoyIM
| * | | Implementing some of the suggested changes from #3853Libravatar Nex2020-12-29
| |/ /
* | | Merge pull request #3918 from Neo00001/masterLibravatar netblue302021-01-25
|\ \ \ | | | | | | | | Add profile for kdiff3
| * | | Update firecfg.configLibravatar Neo000012021-01-24
| | | |
* | | | fix #3914Libravatar netblue302021-01-24
| | | |
* | | | profstatsLibravatar netblue302021-01-24
|/ / /
* | | refactoringLibravatar smitsohu2021-01-20
| | |
* | | Merge pull request #3900 from smitsohu/privatelibLibravatar smitsohu2021-01-20
|\ \ \ | | | | | | | | Add $PATH expansion to private-lib
| * | | private-lib: search executables in $PATHLibravatar smitsohu2021-01-20
| | | |
* | | | Merge pull request #3903 from smitsohu/privatelib3Libravatar smitsohu2021-01-20
|\ \ \ \ | | | | | | | | | | private-lib: add new timetrace
| * | | | private-lib: add timetrace for Firejail librariesLibravatar smitsohu2021-01-18
| |/ / /
* | | | misc fcopy fixesLibravatar smitsohu2021-01-20
| | | |
* | | | private-lib: simplify installation of stdcLibravatar smitsohu2021-01-20
|/ / / | | | | | | | | | | | | | | | | | | | | | as modern-day Debian only keeps a single symbolic link in /lib64, going through both directories systematically adds virtually no overhead (as indicated by the timetrace). At the same time it is simpler and more robust in producing a correct representation of the filesystem.
* | | blacklist firejail appimage dir if not usedLibravatar smitsohu2021-01-15
| | |
* | | fbuilder: don't suggest to whitelist strace output fileLibravatar smitsohu2021-01-15
| | |
* | | fbuilder: undo variable shadowingLibravatar smitsohu2021-01-15
| | |
* | | private-lib: install dhclient librariesLibravatar smitsohu2021-01-15
| | |
* | | Merge pull request #3867 from smitsohu/non-dumpableLibravatar smitsohu2021-01-15
|\ \ \ | | | | | | | | return to non-dumpable plugins
| * | | fix broken tests and regression on 45304621a6c600d8e30e98bfbef05149caaf56c5Libravatar smitsohu2021-01-06
| | | |
| * | | non-dumpable pluginsLibravatar smitsohu2021-01-04
| | |/ | |/| | | | | | | | | | (hopefully) fixes the issues that led to reverting commits 6abb65d328af61d67361890743190bd4c57f8e3c and 98e42dc6da4e4b1e47ed2aa020012d4dedc1e80e
* | | new profile: qnapi (#3890)Libravatar glitsj162021-01-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * add new profile: qnapi * add new profile: qnapi * Create qnapi.profile * add qnapi configs * Update README.md * Update README.md
* | | add new profile: shotwell (#3889)Libravatar glitsj162021-01-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | * new profile: shotwell * Create shotwell.profile * new profile: shotwell * add shotwell blacklists
* | | Add new profile for markerLibravatar rusty-snake2021-01-08
| | |
* | | update manpages and RELNOTESLibravatar rusty-snake2021-01-08
| | |
* | | fbuilder: check Yama permissionsLibravatar smitsohu2021-01-08
| | | | | | | | | | | | closes #3237
* | | fbuilder: whitelist-common.inc processingLibravatar smitsohu2021-01-08
| | |
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-09-01 22:56:58 +0000