Wim Taymans 7bfa93de05 security: add missing O_CLOEXEC/SOCK_CLOEXEC flags ... File and Resource Handling: Medium Several file and socket operations were missing the close-on-exec flag, which causes file descriptors to leak to child processes created via fork+exec. This could allow child processes unintended access to privileged resources. - node-driver.c: SOCK_DGRAM socket for SIOCETHTOOL ioctl leaked to child processes - pw-container.c: Unix domain listen socket leaked to spawned container processes - compress-offload-api.c: ALSA compress-offload device fd leaked to child processes Added O_CLOEXEC to open() calls and SOCK_CLOEXEC to socket() calls. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>		2026-04-28 12:20:33 +02:00
..
cpu-arm.c	treewide: use SPDX tags to specify copyright information	2023-02-16 10:54:48 +00:00
cpu-riscv.c	spa/support: implement RISCV V CPU detection	2024-09-18 10:40:48 +00:00
cpu-x86.c	cpu: add SLOW_GATHER flag	2026-03-19 16:21:35 +01:00
cpu.c	spa: support: use feature macro from config.h	2024-09-18 22:29:11 +02:00
dbus.c	support: return NULL instead of FALSE	2026-01-03 22:54:25 +01:00
evl-plugin.c	spa: use log topics everywhere	2024-03-11 18:45:21 +02:00
evl-system.c	spa: use log topics everywhere	2024-03-11 18:45:21 +02:00
journal.c	journal: prepend code location to messages at debug log levels	2024-04-28 16:02:28 +03:00
logger.c	spa: support: logger: print thread id for each message	2026-03-12 18:31:46 +01:00
loop.c	spa: loop: Mark cancellation fields as volatile	2026-03-12 09:24:53 +00:00
meson.build	meson: Search for and link to stdthreads	2024-09-23 08:09:45 +00:00
node-driver.c	security: add missing O_CLOEXEC/SOCK_CLOEXEC flags	2026-04-28 12:20:33 +02:00
null-audio-sink.c	spa: remove timerspec members	2026-03-26 14:43:54 +01:00
plugin.c	spa: export log topic enumerations	2024-01-04 10:02:55 +00:00
system.c	spa: system: make spa_poll_event compatible with epoll_events	2026-04-06 10:24:32 +00:00