predicates are part of the grammar now; in non-root case, predicates are

evaluated only once; in root case, predicates and variable expansion are
dynamic.
from provos

1 files changed, 8 insertions, 5 deletions

diff --git a/bin/systrace/intercept.h b/bin/systrace/intercept.h
index fdc7649eac0..f5987f10d7c 100644
--- a/bin/systrace/intercept.h
+++ b/bin/systrace/intercept.h
@@ -1,4 +1,4 @@
-/*	$OpenBSD: intercept.h,v 1.11 2002/08/04 04:15:50 provos Exp $	*/
+/*	$OpenBSD: intercept.h,v 1.12 2002/10/09 03:52:10 itojun Exp $	*/
 /*
  * Copyright 2002 Niels Provos <provos@citi.umich.edu>
  * All rights reserved.
@@ -31,6 +31,7 @@
 
 #ifndef _INTERCEPT_H_
 #define _INTERCEPT_H_
+#include <sys/param.h>
 #include <sys/queue.h>
 
 struct intercept_pid;
@@ -83,13 +84,13 @@ struct intercept_pid {
 	char *name;		/* name of current process image */
 	char *newname;		/* image name to be committed by execve */
 
-#define ICFLAGS_UIDKNOWN	0x01
-#define ICFLAGS_GIDKNOWN	0x02
-	int flags;
-
 	uid_t uid;		/* current uid */
 	gid_t gid;		/* current gid */
 
+	char username[MAXLOGNAME];
+	char home[MAXPATHLEN];	/* current home dir for uid */
+	char cwd[MAXPATHLEN];	/* current working directory */
+
 	void *data;
 
 	int uflags;	/* Flags that can be used by external application */
@@ -174,5 +175,7 @@ void intercept_syscall(int, pid_t, u_int16_t, int, const char *, int,
     const char *, void *, int);
 void intercept_syscall_result(int, pid_t, u_int16_t, int, const char *, int,
     const char *, void *, int, int, void *);
+void intercept_ugid(struct intercept_pid *, uid_t, gid_t);
+void intercept_setpid(struct intercept_pid *);
 
 #endif /* _INTERCEPT_H_ */