Hello tor-dev,
For the past two couple of weeks, stage 2 has ended [1], and stage 3 has
begun [2].
Stage 2 didn't change by much, apart from a few change requests from nickm.
As part of stage 3, some important changes were made:
- the structures involving how a sandbox configuration is being
Hello tor-dev,
Not much has happened since the last status report. I have been fixing
small issues [1] with the seccomp2 filter and have been working on the
change requests from nickm's code review for merging stage 2 of tor
sandboxing [2].
I am currently waiting for feedback, which is very
Hello tor-dev,
Apologies for submitting the report later than planned, but I was on
holiday towards the end of last week.
I am currently waiting for a code review for the stage 2 of the seccomp
filter, which will very likely include a relatively long list of change
requests. As a reminder, at
Hello tor-dev,
For the last week I was on holiday for the graduation ceremony. I did
however manage to get some work done, so for the past 2 weeks I have:
- worked on adding parameter filters for the syscall filter; this is done
using both a static list of parameters, as well as a dynamic list
Hello tor-dev,
Here goes the status report for the past 2 weeks
- I have been preparing the code for the first step of the project to
be merged in the Tor master branch, which represented a number of
changes required by nickm; the full process can be seen here [1], the
branch was squashed and
On Sat, Jun 29, 2013 at 10:55 PM, Jacob Appelbaum ja...@appelbaum.net wrote:
Hello,
Cristian-Matei Toader:
Hello tor-dev,
As a small reminder the purpose of the project is to create
capabilities based sandboxing for Tor, which may only allow the
program to execute a number of predefined
Hello tor-dev,
As a small reminder the purpose of the project is to create
capabilities based sandboxing for Tor, which may only allow the
program to execute a number of predefined syscalls.
For the past 2 weeks:
- I have consulted with Nick Mathewson (nickm) and agreed upon using
seccomp2 [1],