alois31/lix
0
0
Fork 0
forked from lix-project/lix
Code Pull requests Activity
lix/doc/manual
History
alois31 f047e4357b libstore/build: always enable seccomp filtering and no-new-privileges 
Seccomp filtering and the no-new-privileges functionality improve the security
of the sandbox, and have been enabled by default for a long time. In
lix-project/lix#265 it was decided that they
should be enabled unconditionally. Accordingly, remove the allow-new-privileges
(which had weird behavior anyway) and filter-syscall settings, and force the
security features on. Syscall filtering can still be enabled at build time to
support building on architectures libseccomp doesn't support.

Change-Id: Iedbfa18d720ae557dee07a24f69b2520f30119cb
2024-05-24 21:19:29 +00:00
..
rl-next libstore/build: always enable seccomp filtering and no-new-privileges 2024-05-24 21:19:29 +00:00
rl-next-dev Enable clang build timing analysis 2024-03-27 03:52:57 +00:00
src libstore/build: always enable seccomp filtering and no-new-privileges 2024-05-24 21:19:29 +00:00
theme Add pre-commit checks 2024-03-29 22:57:40 -07:00
anchors.jq Add pre-commit checks 2024-03-29 22:57:40 -07:00
book.toml Fix the pages in the manual for Lix 2024-05-05 16:11:01 -07:00
change-authors.yml doc: sort change-authors.yml 2024-05-23 02:09:05 +00:00
custom.css disallow selecting shell prompt in code samples 2022-12-05 11:01:46 +01:00
generate-builtin-constants.nix Format Nix code with nixfmt 2024-04-08 13:00:00 -07:00
generate-builtins.nix Format Nix code with nixfmt 2024-04-08 13:00:00 -07:00
generate-deps.py docs: redo content generation for mdbook and manual 2024-04-11 13:32:06 +00:00
generate-manpage.nix docs: don't compute SUMMARY.md during build 2024-04-09 02:09:36 +00:00
generate-xp-features-shortlist.nix Format Nix code with nixfmt 2024-04-08 13:00:00 -07:00
generate-xp-features.nix Format Nix code with nixfmt 2024-04-08 13:00:00 -07:00
json-to-tree.py docs: generalize manpage generation script as json-to-tree.py 2024-04-10 15:04:34 +02:00
meson.build Rename nix show-config to nix config show 2024-05-03 16:26:16 +02:00
process-includes.sh meson: add manpages for old cli and config files 2024-03-30 14:26:47 +00:00
quote-literals.xsl Generate release notes again 2014-03-12 14:24:29 +01:00
rclone.conf doc: add a script to upload the nightly manual manually 2024-05-14 14:28:01 -07:00
redirects.js libstore/build: always enable seccomp filtering and no-new-privileges 2024-05-24 21:19:29 +00:00
render-manpage.sh docs: redo content generation for mdbook and manual 2024-04-11 13:32:06 +00:00
substitute.py docs: redo content generation for mdbook and manual 2024-04-11 13:32:06 +00:00
utils.nix Format Nix code with nixfmt 2024-04-08 13:00:00 -07:00