summary refs log tree commit diff
path: root/pkgs/os-specific/linux/firejail
Commit message (Collapse)AuthorAge
* firejail: Fix double-dash usage on non-POSIX shellsJonas Heinrich2023-02-19
|
* firejail: 0.9.70 -> 0.9.72Jonas Heinrich2023-01-17
|
* firejail: Remove unused patchesJonas Heinrich2022-06-14
|
* firejail: 0.9.68 -> 0.9.70Jonas Heinrich2022-06-11
|
* firejail: patches for CVE-2022-31214Stig Palmquist2022-06-08
| | | | https://seclists.org/oss-sec/2022/q2/188
* firejail: Fix opengl support for various appsJonas Heinrich2022-05-09
|
* firejail: Fix resolve binary paths in user environmentJonas Heinrich2022-05-07
|
* firejail: 0.9.66 -> 0.9.68Zane van Iperen2022-02-07
| | | | Fixes #153430
* firejail: add apparmor supportReed Riley2022-01-19
|
* firejail: improve local profile customization supportReed Riley2022-01-19
|
* firejail: remove deprecated flag, see: ↵Reed Riley2022-01-19
| | | | https://github.com/netblue30/firejail/commit/4909fa7efce4a36bd16e7bf80c9642b93c262ddf
* firejail: Remove symlink check patchJonas Heinrich2021-09-19
|
* firejail: 0.9.64.4 -> 0.9.66R. RyanTM2021-06-30
|
* firejail: 0.9.64.2 -> 0.9.64.40x4A6F2021-02-07
|
* firejail: 0.9.64 -> 0.9.64.20x4A6F2021-01-28
|
* treewide: fix double quoted strings in meta.descriptionvolth2021-01-24
| | | | Signed-off-by: Ben Siraphob <bensiraphob@gmail.com>
* pkgs/os-specific: stdenv.lib -> libBen Siraphob2021-01-17
|
* firejail: fix -overlay and -build functionality on NixOSRoosembert Palacios2020-11-27
| | | | | | | | | | | | | | | | | - The `-overlay` flag runs the specified binary inside an OverlayFS, since the /nix store may be in a different mount point than the user home, this patch explicitly bind mounts it so it's available inside the overlay. - profile builder: firejail provides facilities to build a new profiles. To do so, it execute the helper binary `fbuilder`, which in turn will execute firejail back with different options. This patch makes it use the binary available in PATH instead of the one produced at compile time. The compiled firejail binary doesn't have the necessary permissions, so the firejail NixOS module wraps it in a SUID wrapper available on PATH at runtime. Signed-off-by: Roosembert Palacios <roosemberth@posteo.ch>
* firejail: fixing the 'xdg-dbus-proxy' dependencysnicket21002020-11-22
| | | | | | | xdg-dbus-proxy path is hardcoded in the common.h file in the firejail source code. if this binary is not found, dbus filtering capabilities of firejail get limited i.e. you can only entirely disable or entirely enable dbus communication.
* firejail: 0.9.62 -> 0.9.64snicket21002020-11-08
|
* nixos/tests: add test for firejailStig Palmquist2020-08-10
|
* firejail: add patches to fix CVE-2020-17367 and CVE-2020-17368Stig Palmquist2020-08-09
|
* treewide: Per RFC45, remove all unquoted URLsMichael Reilly2020-04-10
|
* firejail: local profile handling fixedsnicket21002020-03-27
| | | | | made it possible to place local profiles in `~/.config/firejail`, as well as in `/etc/firejail`.
* firejail: updated the homepage addresssnicket21002020-01-20
|
* firejail: 0.9.60 -> 0.9.62snicket21002020-01-18
|
* firejail: local profile handling fixedsnicket21002020-01-11
| | | | | | | | | The sed expression wasn't really catching anything (as local profiles are included in the provided set of profiles by `include aaa.local` and not by `include xx/firejail/aaa.local` as the sed expression used to expect). As a result, it was not possible to create local profiles in any accessible location. This fix makes it possible to create them in `/etc/firejail/` which seems pretty standard.
* firejail: 0.9.58.2 -> 0.9.60Will Dietz2019-05-28
|
* firejail: 0.9.58 -> 0.9.58.2R. RyanTM2019-03-01
| | | | | | | Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/firejail/versions
* firejail: 0.9.56 -> 0.9.58R. RyanTM2019-02-06
| | | | | | | Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/firejail/versions
* firejail: disable parallel buildingIvan Kozik2018-12-17
| | | | | | | | | | | | | | | | | | | | | | | | | firejail was frequently failing to build on my Hydra machine at -j16, and the error looked like a typical parallel build problem: <3>make[1]: Entering directory '/build/firejail-0.9.56/src/fcopy' <3>gcc -ggdb -O2 -DVERSION='"0.9.56"' -DPREFIX='"/nix/store/0dm1agiwiggn8pmnqkknil7mkh25il0k-firejail-0.9.56"' -DSYSCONFDIR='"/nix/store/0dm1agiwiggn8pmnqkknil7mkh25il0k-firejail-0.9.56/etc/firejail"' -DLIBDIR='"/nix/store/0dm1agiwiggn8pmnqkknil7mkh25il0k-firejail-0.9.56/lib"' -DHAVE_X11 -DHAVE_PRIVATE_HOME -DHAVE_OVERLAYFS -DHAVE_SECCOMP -DHAVE_GLOBALCFG -DHAVE_SECCOMP_H -DHAVE_CHROOT -DHAVE_NETWORK -DHAVE_USERNS -DHAVE_FILE_TRANSFER -DHAVE_WHITELIST -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -c main.c -o main.o <3>gcc -pie -Wl,-z,relro -Wl,-z,now -lpthread -o fcopy main.o <3>make[1]: Leaving directory '/build/firejail-0.9.56/src/fcopy' <3>make -C src/fldd <3>make[1]: Entering directory '/build/firejail-0.9.56/src/fldd' <3>gcc -ggdb -O2 -DVERSION='"0.9.56"' -DPREFIX='"/nix/store/0dm1agiwiggn8pmnqkknil7mkh25il0k-firejail-0.9.56"' -DSYSCONFDIR='"/nix/store/0dm1agiwiggn8pmnqkknil7mkh25il0k-firejail-0.9.56/etc/firejail"' -DLIBDIR='"/nix/store/0dm1agiwiggn8pmnqkknil7mkh25il0k-firejail-0.9.56/lib"' -DHAVE_X11 -DHAVE_PRIVATE_HOME -DHAVE_OVERLAYFS -DHAVE_SECCOMP -DHAVE_GLOBALCFG -DHAVE_SECCOMP_H -DHAVE_CHROOT -DHAVE_NETWORK -DHAVE_USERNS -DHAVE_FILE_TRANSFER -DHAVE_WHITELIST -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIE -pie -Wformat -Wformat-security -mindirect-branch=thunk -c main.c -o main.o <3>gcc -pie -Wl,-z,relro -Wl,-z,now -lpthread -o fldd main.o ../lib/ldd_utils.o <3>make[1]: Leaving directory '/build/firejail-0.9.56/src/fldd' <3>make -C src/libpostexecseccomp <3>make[1]: Entering directory '/build/firejail-0.9.56/src/libpostexecseccomp' <3>gcc -ggdb -O2 -DVERSION='"0.9.56"' -fstack-protector-all -D_FORTIFY_SOURCE=2 -fPIC -Wformat -Wformat-security -c libpostexecseccomp.c -o libpostexecseccomp.o <3>gcc -pie -Wl,-z,relro -Wl,-z,now -shared -fPIC -z relro -o libpostexecseccomp.so libpostexecseccomp.o -ldl <3>make[1]: Leaving directory '/build/firejail-0.9.56/src/libpostexecseccomp' <3>src/fseccomp/fseccomp default seccomp <3>src/fsec-optimize/fsec-optimize seccomp <3>/nix/store/6abyjgibafsbhlc7v7lab50mb3dj81jg-bash-4.4-p23/bin/bash: src/fsec-optimize/fsec-optimize: No such file or directory <3>make: *** [Makefile:43: filters] Error 127 <3>builder for '/nix/store/30srqmpqrjyr11nhx4jbpr84m9pnmyv5-firejail-0.9.56.drv' failed with exit code 2
* Treewide: use https for SourceForgec0bw3b2018-11-24
|
* firejail: override files should be in /etc/firejailPeter Hoeg2018-10-03
|
* firejail: 0.9.54 -> 0.9.56R. RyanTM2018-09-20
| | | | | | | Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/firejail/versions
* firejail: 0.9.52 -> 0.9.54R. RyanTM2018-05-17
| | | | | | | | | | | | | | | | | | Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/firejail/versions. These checks were done: - built on NixOS - Warning: no invocation of /nix/store/5zjr9idl48c08apan8gh45wh971i49i9-firejail-0.9.54/bin/firejail had a zero exit code or showed the expected version - /nix/store/5zjr9idl48c08apan8gh45wh971i49i9-firejail-0.9.54/bin/firemon passed the binary check. - /nix/store/5zjr9idl48c08apan8gh45wh971i49i9-firejail-0.9.54/bin/firecfg passed the binary check. - 2 of 3 passed binary check by having a zero exit code. - 2 of 3 passed binary check by having the new version present in output. - found 0.9.54 with grep in /nix/store/5zjr9idl48c08apan8gh45wh971i49i9-firejail-0.9.54 - directory tree listing: https://gist.github.com/3fb76054296d9e45fea3c47ae6a9f03f - du listing: https://gist.github.com/a732bad0be0159f527ca4e8c532400ed
* firejail: 0.9.50 -> 0.9.52adisbladis2018-01-18
|
* firejail: 0.9.48 -> 0.9.50adisbladis2017-11-06
|
* Update homepage attributes: http -> httpsmimadrid2017-08-03
| | | | | Homepage link "http://.../" is a permanent redirect to "https://.../" and should be updated https://repology.org/repository/nix_stable/problems
* pkgs: refactor needless quoting of homepage meta attribute (#27809)Silvan Mosberger2017-08-01
| | | | | | | | | | | | * pkgs: refactor needless quoting of homepage meta attribute A lot of packages are needlessly quoting the homepage meta attribute (about 1400, 22%), this commit refactors all of those instances. * pkgs: Fixing some links that were wrongfully unquoted in the previous commit * Fixed some instances
* firejail: 0.9.44.10 -> 0.9.48Johannes Frankenau2017-07-25
|
* firejail: don't try to set setuid bitWill Dietz2017-06-28
|
* firejail: 0.9.44.8 -> 0.9.44.10Michael Raskin2017-04-10
|
* firejail: 0.9.44.4 -> 0.9.44.8Michael Raskin2017-02-01
|
* firejail: 0.9.44.2 -> 0.9.44.4Michael Raskin2017-01-08
|
* firejail: 0.9.42 -> 0.9.44.2Michael Raskin2017-01-02
|
* firejail: 0.9.42-rc1 -> 0.9.42Michael Raskin2016-09-12
|
* firejail: 0.9.40-rc1 -> 0.9.42-rc1Michael Raskin2016-08-11
|
* firejail: 0.9.38 -> 0.9.40Michael Raskin2016-04-13
|
* firejail: 0.9.36 -> 0.9.38Michael Raskin2016-02-14
|
* firejail: 0.9.26 -> 0.9.36Michael Raskin2016-01-01
|
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-04 02:04:14 +0000