Skip to content
Snippets Groups Projects
  1. May 24, 2022
  2. May 22, 2022
  3. May 16, 2022
  4. May 09, 2022
  5. May 04, 2022
  6. May 03, 2022
  7. Apr 30, 2022
    • delroth's avatar
      sandbox: filter {chown,chmod,rename} via their *at variant on Aarch64 · 8fd13f7a
      delroth authored
      The chown/chmod/rename syscalls have never existed on AArch64, and libc
      implements the POSIX functions via the fchownat/fchmodat/renameat
      syscalls instead.
      
      Add new filter functions for fchownat/fchmodat/renameat, not made
      architecture specific since the syscalls exists everywhere else too.
      However, in order to limit seccomp filter space usage, we only insert
      rules for one of {chown, chown32, fchownat} depending on the
      architecture (resp. {chmod, fchmodat}, {rename, renameat}).
      Unverified
      8fd13f7a
    • delroth's avatar
      sandbox: fix openat filtering on AArch64 · 531275b0
      delroth authored
      New glibc versions not sign-extending 32 bit negative constants seems to
      not be a thing on AArch64. I suspect that this might not be the only
      architecture where the sign-extensions is happening, and the correct fix
      might be instead to use a proper 32 bit comparison for the first openat
      parameter. For now, band-aid fix this so the sandbox can work again on
      AArch64.
      Unverified
      531275b0
  8. Apr 28, 2022
  9. Apr 27, 2022
  10. Apr 26, 2022
  11. Apr 23, 2022
  12. Apr 20, 2022
    • Alex Xu's avatar
      Use tor_event_free instead of event_del+tor_free · 15e95c3b
      Alex Xu authored
      Using tor_free is wrong; event_free must be called for objects obtained from
      event_new. Additionally, this slightly simplifies the code.
      
      Also, add a static_assert to prevent further instances.
      15e95c3b
  13. Apr 14, 2022
Loading