firejail - Mirror of https://github.com/netblue30/firejail

	Commit message (Collapse)	Author	Age
*	profile parser testing	netblue30	2018-11-08
\|
*	Merge pull request #2247 from SkewedZeppelin/u2f_cond	netblue30	2018-11-07
\|\ \| \| \| \|	Add new config option to disable U2F in browsers, enabled by default
\| *	Add new config option to disable U2F in browsers, enabled by default	Tad	2018-11-05
\| \|
* \|	Fixes for brave browser	Fred-Barclay	2018-11-05
\|/
*	fix --bandwidth command	netblue30	2018-11-05
\|
*	recursive remounts: add fallback for old kernels, some improvements	smitsohu	2018-11-04
\| \| \| \| \| \| \| \| \| \| \|	* vanilla kernels before 3.15 don't expose a mount id in /proc/pid/fdinfo files. This is still relevant on Ubuntu 14.04 with 3.13 kernel, CentOS 7 doesn't have this problem. In this case fall back to simple a remount and print a warning. * drop euid switching as it doesn't really serve a purpose here (paths are not opened in reading or writing mode, and we are not doing anything with it) and potentially causes problems when suid programs are sandboxed * more rigorous error handling
*	mount appimages nodev,nosuid	smitsohu	2018-11-04
\|
*	fs_whitelist: minor mountinfo check improvement, cleanup	smitsohu	2018-11-04
\|
*	Add Mendeley profile	Fred-Barclay	2018-11-02
\|
*	adding --net.print command line option	netblue30	2018-10-29
\|
*	aisleriot	netblue30	2018-10-28
\|
*	little tweaks, cosmetic changes	smitsohu	2018-10-26
\|
*	fix: return with euid 0	smitsohu	2018-10-25
\|
*	experimental: remounts child mount points as well (read-only, read-write, ↵	smitsohu	2018-10-25
\| \| \| \|	noexec)
*	Add QOwnNotes profile	Fred-Barclay	2018-10-20
\|
*	improve some error messages	smitsohu	2018-10-17
\|
*	improve clean_pathname function	smitsohu	2018-10-17
\|
*	fs_whitelist: cache length of home directory string	smitsohu	2018-10-17
\|
*	fix #2197	netblue30	2018-10-17
\|
*	Merge pull request #2199 from crass/fix-2142-firefox-sandbox-appimage	netblue30	2018-10-17
\|\ \| \| \| \|	Fix #2142: Firefox appimage fails because it needs non-default seccomp
\| *	Do not override user provided seccomp lists when in chroot/overlay/appimage, ↵	Glenn Washburn	2018-10-16
\| \| \| \| \| \| \| \|	but to use the default if none is provided.
* \|	Fix doc: A more accurate example of profile loading by profile name.	Glenn Washburn	2018-10-17
\| \|
* \|	Fix docs on default seccomp list: change mfsservctl -> nfsservctl and ↵	Glenn Washburn	2018-10-17
\| \| \| \| \| \| \| \|	reorder, add ni_syscall, remove duplicate process_vm_writev, add sys_debug_setcontext.
* \|	Update profile manpage to detail added "include" functionality.	Glenn Washburn	2018-10-17
\| \|
* \|	Allow include to search userdir then systemdir for "bare" profile file names.	Glenn Washburn	2018-10-17
\| \|
* \|	Merge pull request #2158 from crass/profile_conditional	crass	2018-10-17
\|\ \ \| \| \| \| \| \|	#2158: Add support for rudimentary conditionals in profiles
\| * \|	Update documentation for profile conditionals.	Glenn Washburn	2018-10-16
\| \| \|
\| * \|	Add support for rudimentary conditionals in profiles, currently only the ↵	Glenn Washburn	2018-10-16
\| \|/ \| \| \| \| \| \|	HAS_APPIMAGE conditional is supported.
* /	manpages: update disable-mnt description	Vincent43	2018-10-16
\|/ \| \|	This will better match current code.
*	Update man pages and usage to reflect --profile enhancement.	Glenn Washburn	2018-10-15
\|
*	Allow specifying a profile "name" with the profile option (eg. ↵	Glenn Washburn	2018-10-15
\| \| \| \|	--profile=firefox).
*	rename expand_home -> expand_macros to better reflect usage and remove ↵	Glenn Washburn	2018-10-15
\| \| \| \|	unneeded homedir argument.
*	tentative fix: automatically mount libdir in chroot - #2176	smitsohu	2018-10-15
\|
*	Merge pull request #2192 from crass/fix-ld.so.preload-path	startx2017	2018-10-14
\|\ \| \| \| \|	The path in ld.so.preload should point to RUN_FIREJAIL_LIB_DIR, as LIBDIR may not exist.
\| *	The path in ld.so.preload should point to RUN_FIREJAIL_LIB_DIR, as LIBDIR ↵	Glenn Washburn	2018-10-13
\| \| \| \| \| \| \| \|	may not exist.
* \|	Make --join return exit code of the invoked program	Paweł	2018-10-14
\| \|
* \|	Merge branch 'master' of https://github.com/netblue30/firejail	smitsohu	2018-10-13
\|\\|
\| *	bringing in the fix for always have helpers in sandbox (original pull rq ↵	netblue30	2018-10-13
\| \| \| \| \| \| \| \|	from crass)
\| *	private-lib fix	netblue30	2018-10-13
\| \|
\| *	Revert "Fix issue #2148: Make sure firejail can find helper programs in ↵	netblue30	2018-10-13
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	sandbox regardless of options." This reverts commit 4017e8a1359208e149b2eac10900987acd4a6f9e. I am running into some problems with the initial unshare/mount in main.c. I'll bring in the files one by one.
\| *	Merge pull request #2185 from glitsj16/masterpdfeditor	Vincent43	2018-10-13
\| \|\ \| \| \| \| \| \|	New profile masterpdfeditor
\| \| *	Add masterpdfeditor to firecfg	glitsj16	2018-10-13
\| \| \|
\| * \|	Fix issue #2148: Make sure firejail can find helper programs in sandbox ↵	Glenn Washburn	2018-10-13
\| \|/ \| \| \| \| \| \|	regardless of options.
\| *	Merge pull request #2183 from glitsj16/nitroshare	SkewedZeppelin	2018-10-13
\| \|\ \| \| \| \| \| \|	New profile nitroshare
\| \| *	Add nitroshare to firecfg	glitsj16	2018-10-13
\| \| \|
\| * \|	Add artha to firecfg	glitsj16	2018-10-13
\| \|/
* /	improve clean_pathname() function: drop realloc	smitsohu	2018-10-13
\|/ \| \| \| \| \| \|	rf. previous commit a5b7a9a8bec6a7f2162850449b1ff29c1fde2826 freeing what is expected to be a single byte only is most probably not worth the effort
*	fs_whitelist: no warning if macro resolution fails because of missing homedir	smitsohu	2018-10-12
\|
*	clean homedir pathname	smitsohu	2018-10-12
\| \| \| \|	fixes #2137 and similar issues with the /proc/self/mountinfo checks
*	Minor fixes	Tad	2018-10-11
\|