Wim Taymans 4d7c448150 security: add missing O_CLOEXEC/SOCK_CLOEXEC flags ... File and Resource Handling: Medium Several file and socket operations were missing the close-on-exec flag, which causes file descriptors to leak to child processes created via fork+exec. This could allow child processes unintended access to privileged resources. - node-driver.c: SOCK_DGRAM socket for SIOCETHTOOL ioctl leaked to child processes - pw-container.c: Unix domain listen socket leaked to spawned container processes - compress-offload-api.c: ALSA compress-offload device fd leaked to child processes Added O_CLOEXEC to open() calls and SOCK_CLOEXEC to socket() calls. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>		2026-05-08 13:52:53 +02:00
..
cpu-arm.c	treewide: use SPDX tags to specify copyright information	2023-02-16 10:54:48 +00:00
cpu-riscv.c	spa/support: implement RISCV V CPU detection	2024-09-18 10:40:48 +00:00
cpu-x86.c	treewide: use SPDX tags to specify copyright information	2023-02-16 10:54:48 +00:00
cpu.c	spa: support: use feature macro from config.h	2024-09-18 22:29:11 +02:00
dbus.c	support: return NULL instead of FALSE	2026-01-03 22:54:25 +01:00
evl-plugin.c	spa: use log topics everywhere	2024-03-11 18:45:21 +02:00
evl-system.c	spa: use log topics everywhere	2024-03-11 18:45:21 +02:00
journal.c	journal: prepend code location to messages at debug log levels	2024-04-28 16:02:28 +03:00
logger.c	treewide: fix some -Wdiscarded-qualifiers	2026-03-10 00:03:14 +00:00
loop.c	Remove unused <threads.h> header	2025-11-10 16:58:34 +00:00
meson.build	meson: Search for and link to stdthreads	2024-09-23 08:09:45 +00:00
node-driver.c	security: add missing O_CLOEXEC/SOCK_CLOEXEC flags	2026-05-08 13:52:53 +02:00
null-audio-sink.c	modules: support audio.layout where we can	2025-10-30 12:29:31 +01:00
plugin.c	spa: export log topic enumerations	2024-01-04 10:02:55 +00:00
system.c	pipewire-alsa: Propagate errors from eventfd().	2024-02-19 14:16:26 +00:00