kat/hakurei
1
0
Fork 0
forked from rosa/hakurei
Code Pull Requests Activity

seccomp: move out of helper

Browse Source 
Signed-off-by: Ophestra <cat@gensokyo.uk>
This commit is contained in:
Ophestra
2025-03-14 22:42:40 +09:00
parent 7c60a4d8e8
commit 2647a71be1
14 changed files with 9 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files
cmd/fpkg/main.go
+1 -1
View File
@@ -13,13 +13,13 @@ import (
"git.gensokyo.uk/security/fortify/command"
"git.gensokyo.uk/security/fortify/fst"
"git.gensokyo.uk/security/fortify/helper/bwrap"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/internal"
"git.gensokyo.uk/security/fortify/internal/app/init0"
"git.gensokyo.uk/security/fortify/internal/app/shim"
"git.gensokyo.uk/security/fortify/internal/fmsg"
"git.gensokyo.uk/security/fortify/internal/sandbox"
"git.gensokyo.uk/security/fortify/internal/sys"
"git.gensokyo.uk/security/fortify/seccomp"
)
const shellPath = "/run/current-system/sw/bin/bash"
helper/bwrap/config_test.go
+1 -1
View File
@@ -8,7 +8,7 @@ import (
"git.gensokyo.uk/security/fortify/helper/bwrap"
"git.gensokyo.uk/security/fortify/helper/proc"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/seccomp"
)
func TestConfig_Args(t *testing.T) {
helper/bwrap/seccomp.go
+1 -1
View File
@@ -5,7 +5,7 @@ import (
"strconv"
"git.gensokyo.uk/security/fortify/helper/proc"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/seccomp"
)
type SyscallPolicy struct {
internal/app/shim/main.go
+1 -1
View File
@@ -14,10 +14,10 @@ import (
"git.gensokyo.uk/security/fortify/fst"
"git.gensokyo.uk/security/fortify/helper"
"git.gensokyo.uk/security/fortify/helper/proc"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/internal"
"git.gensokyo.uk/security/fortify/internal/app/init0"
"git.gensokyo.uk/security/fortify/internal/fmsg"
"git.gensokyo.uk/security/fortify/seccomp"
)
// everything beyond this point runs as unconstrained target user
internal/sandbox/container.go
+1 -1
View File
@@ -12,9 +12,9 @@ import (
"syscall"
"git.gensokyo.uk/security/fortify/helper/proc"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/internal"
"git.gensokyo.uk/security/fortify/internal/fmsg"
"git.gensokyo.uk/security/fortify/seccomp"
)
type HardeningFlags uintptr
internal/sandbox/init.go
+1 -1
View File
@@ -14,9 +14,9 @@ import (
"time"
"git.gensokyo.uk/security/fortify/helper/proc"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/internal"
"git.gensokyo.uk/security/fortify/internal/fmsg"
"git.gensokyo.uk/security/fortify/seccomp"
)
const (
main.go
+1 -1
View File
@@ -18,7 +18,6 @@ import (
"git.gensokyo.uk/security/fortify/command"
"git.gensokyo.uk/security/fortify/dbus"
"git.gensokyo.uk/security/fortify/fst"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/internal"
"git.gensokyo.uk/security/fortify/internal/app"
"git.gensokyo.uk/security/fortify/internal/app/init0"
@@ -27,6 +26,7 @@ import (
"git.gensokyo.uk/security/fortify/internal/sandbox"
"git.gensokyo.uk/security/fortify/internal/state"
"git.gensokyo.uk/security/fortify/internal/sys"
"git.gensokyo.uk/security/fortify/seccomp"
"git.gensokyo.uk/security/fortify/system"
)
helper/seccomp/api.go → seccomp/api.go
View File
helper/seccomp/export.go → seccomp/export.go
View File
helper/seccomp/export_test.go → seccomp/export_test.go
+1 -1
View File
@@ -9,7 +9,7 @@ import (
"syscall"
"testing"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/seccomp"
)
func TestExport(t *testing.T) {
helper/seccomp/seccomp-build.c → seccomp/seccomp-build.c
View File
helper/seccomp/seccomp-build.h → seccomp/seccomp-build.h
View File
helper/seccomp/seccomp.go → seccomp/seccomp.go
View File
helper/seccomp/seccomp_test.go → seccomp/seccomp_test.go
+1 -1
View File
@@ -6,7 +6,7 @@ import (
"syscall"
"testing"
"git.gensokyo.uk/security/fortify/helper/seccomp"
"git.gensokyo.uk/security/fortify/seccomp"
)
func TestLibraryError(t *testing.T) {