summaryrefslogtreecommitdiff
path: root/sandbox-capsicum.c
Commit message (Collapse)AuthorAgeFilesLines
* Cache timezone data in capsicum sandbox.Darren Tucker2022-04-231-0/+7
| | | | | From emaste at freebsd.org, originally part of FreeBSD commit r339216 / fc3c19a9 with autoconf bits added by me.
* remove sys/param.h in -portable, after upstreamDamien Miller2021-12-221-1/+0
|
* Switch Capsicum header to sys/capsicum.h.Darren Tucker2017-08-281-1/+1
| | | | | | FreeBSD's <sys/capability.h> was renamed to <sys/capsicum.h> in 2014 to avoid future conflicts with POSIX capabilities (the last release that didn't have it was 9.3) so switch to that. Patch from des at des.no.
* - (djm) [sandbox-capsicum.c] Don't fatal if Capsicum is offered byDamien Miller2014-02-051-2/+4
| | | | | headers/libc but not supported by the kernel. Patch from Loganaden Velvindron @ AfriNIC
* - (djm) [configure.ac sandbox-capsicum.c sandbox-rlimit.c] DisableDamien Miller2014-01-261-0/+2
| | | | | | RLIMIT_NOFILE pseudo-sandbox on FreeBSD. In some configurations, libc will attempt to open additional file descriptors for crypto offload and crash if they cannot be opened.
* - (dtucker) [sandbox-capsicum.c] Correct some error messages and make theDarren Tucker2014-01-181-3/+3
| | | | | return value check for cap_enter() consistent with the other uses in FreeBSD. From by Loganaden Velvindron @ AfriNIC via bz#2140.
* - (djm) [Makefile.in configure.ac sandbox-capsicum.c sandbox-darwin.c]Damien Miller2014-01-171-0/+118
[sandbox-null.c sandbox-rlimit.c sandbox-seccomp-filter.c] [sandbox-systrace.c ssh-sandbox.h sshd.c] Support preauth sandboxing using the Capsicum API introduced in FreeBSD 10. Patch by Dag-Erling Smorgrav, updated by Loganaden Velvindron @ AfriNIC; ok dtucker@
View Lorry Controller Status