summaryrefslogtreecommitdiff
path: root/bin/systrace/intercept.c
AgeCommit message (Expand)Author
2006-07-02sync with systrace 1.6d, keeping local changesNikolay Sturm
2006-04-26ARGSUSED and a FALLTHROUGH to please lintNikolay Sturm
2006-03-06convert permanent privilege revocation to use setresuid/setresgid;Damien Miller
2004-07-07fix an issue when scripts are exec'd under systrace wheremarius eriksen
2004-06-24if we have detached after an exec, bail out early, and avoid a double free.marius eriksen
2004-06-23a few fixes to systracemarius eriksen
2004-03-30if a string considered a filename is too long, don't exit but just letNikolay Sturm
2004-01-30The empty filename does not receive normalization.Nikolay Sturm
2003-10-18typos from Jared Yanovich;Jason McIntyre
2003-10-08originally from cb@openbsd.org, adapted by provosNikolay Sturm
2003-08-04several diffs from Niels as applied to NetBSDNikolay Sturm
2003-07-19- sync with NetBSD or Niels' tarball where appropriateNikolay Sturm
2003-06-16- limited number of processes per systraceJun-ichiro itojun Hagino
2003-05-17pull in a bugfix from systrace-current to let systrace deal with creatingNikolay Sturm
2003-02-20Fix a crash in the systrace found by form@Artur Grabowski
2002-12-09prevent the use of permit for aliases. from provosJun-ichiro itojun Hagino
2002-11-26performance improvement by omitting a redundant getcwd.Jun-ichiro itojun Hagino
2002-11-12fix bug in determining execve name. from provosJun-ichiro itojun Hagino
2002-10-17little cleanup (intercept_getpid dies within the function on error).Jun-ichiro itojun Hagino
2002-10-16support for privilege elevation.Jun-ichiro itojun Hagino
2002-10-09predicates are part of the grammar now; in non-root case, predicates areJun-ichiro itojun Hagino
2002-09-17daemon should not change the directory. from provosJun-ichiro itojun Hagino
2002-09-06standalone ; at top scope is illegal in ansi cTheo de Raadt
2002-08-28fix systrace with chroot. from provosJun-ichiro itojun Hagino
2002-08-08if getcwd fails and we continue dont restcwd.Niels Provos
2002-08-07deal better with interrupted system callsNiels Provos
2002-08-05uid and gid are not guaranteed to be aligned on a register_t sized boundary.Jason Wright
2002-08-05increase buffer size for getstring, useful for execve arguments.Niels Provos
2002-08-04keep track of ppid and allow matching rules to be logged via syslog.Niels Provos
2002-08-02performance improvement, reduces number of ioctl callsNiels Provos
2002-08-01correctly separate execve argv arguments. increase buffer size forNiels Provos
2002-08-01the last component in a filename for unlink may be a symlinkNiels Provos
2002-07-30sometimes no-return syscalls (execve) emit errno < 0. ignore them.Jun-ichiro itojun Hagino
2002-07-30solve a problem with realpath when the last component of the path isNiels Provos
2002-07-22add seqnr to message from kernel, userland needs to quote correct seqnr.Niels Provos
2002-07-19constify, have missing prototypes, use pedantic compilation options.Jun-ichiro itojun Hagino
2002-07-16internal uid/gid tracking. permit can not detach systrace, useful forNiels Provos
2002-07-12some clean up. install argument replacements only if we are going toNiels Provos
2002-07-10make it work with chrootNiels Provos
2002-07-10do not close fds in daemon.Niels Provos
2002-07-09allow systrace to run in the background if possible so that the executedNiels Provos
2002-07-09support for system call aliasing. stat/fstat/readlink/access etc... getsNiels Provos
2002-07-09Potential off-by-five, ok provos@Daniel Hartmeier
2002-07-07missing error checks on strdup. from cloder@acm.orgNiels Provos
2002-06-28KNFTheo de Raadt
2002-06-21rewrite all system call arguments in the permit case. use realpathNiels Provos
2002-06-19more careful buffer handling; pointed out by deraadt@Niels Provos
2002-06-10support attaching to a running process; some code by fries@Niels Provos
2002-06-04complain about missing device only once. from deraadt@Niels Provos
2002-06-04KNFTheo de Raadt