| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2007-05-29 | remove compat netbsd stuff | Otto Moerbeek | |
| 2006-07-02 | sync with systrace 1.6d, keeping local changes | Nikolay Sturm | |
| tests and feedback by a few | |||
| 2006-05-02 | some type cleanup | Nikolay Sturm | |
| with feedback from kettenis | |||
| 2006-01-01 | add PTRACE and RTHREADS defines | Nikolay Sturm | |
| ok miod | |||
| 2004-07-09 | #ifdef hpux only for m68k or hppa; this needs a revisit since this shows | Theo de Raadt | |
| something flawed in the way that the emulation system calls are being handled | |||
| 2004-07-09 | oops committed the old version | Michael Shalayeff | |
| 2004-07-09 | better includes for syscalls from kernel | Michael Shalayeff | |
| 2004-07-07 | fix an issue when scripts are exec'd under systrace where | marius eriksen | |
| the argv[0] would be normalized, and hence break scripts that depend on how they were called. this fixes an issue in the ports builds. ok provos@ deraadt@; lots of testing during hackathon sturm@ naddy@ | |||
| 2004-06-23 | a few fixes to systrace | marius eriksen | |
| - add an exec message so that whenever a set-uid/gid process exec's a new image which we may control, the exec does not go by unnoticed. - take special care to check for P_SUGIDEXEC as well as P_SUGID, corresponding to the same changes that were made in the ptrace code a while ago ok niels@, sturm@; thanks to naddy for testing | |||
| 2003-10-22 | from NetBSD: | Nikolay Sturm | |
| initialise an integer field with 0 instead of NULL ok provos, itojun, avsm, fgsch | |||
| 2003-10-08 | originally from cb@openbsd.org, adapted by provos | Nikolay Sturm | |
| itojun@ ok fix a race condition between path resolution in userland and the subsequent namei(): inform the kernel portion of valid filenames and then disallow symlink lookups for those filenames by means of a hook in namei(). with suggestions from provos@ also, add (currently unused) seqnr field to struct systrace_replace, from provos@ | |||
| 2003-08-23 | teach systrace about "aout" emul; henning@ ok. | Federico G. Schwindt | |
| 2003-07-19 | - sync with NetBSD or Niels' tarball where appropriate | Nikolay Sturm | |
| - keeps local changes - fixes a bug in profile feedback optimization and avoids symbol conflicts with errno - new feature: "ask" action itojun@ ok | |||
| 2003-06-16 | - limited number of processes per systrace | Jun-ichiro itojun Hagino | |
| - escape fixes for special characters markus, sturm ok. from provos | |||
| 2002-12-04 | rename to a new ioctl | Michael Shalayeff | |
| 2002-11-26 | avoid symbol conflict with "errno" | Jun-ichiro itojun Hagino | |
| 2002-11-26 | performance improvement by omitting a redundant getcwd. | Jun-ichiro itojun Hagino | |
| from provos | |||
| 2002-10-16 | support for privilege elevation. | Jun-ichiro itojun Hagino | |
| with privilege elevation no suid or sgid binaries are necessary any longer. Applications can be executed completely unprivileged. Systrace raises the privileges for a single system call depending on the configured policy. Idea from discussions with Perry Metzger, Dug Song and Marcus Watts. from provos | |||
| 2002-10-09 | predicates are part of the grammar now; in non-root case, predicates are | Jun-ichiro itojun Hagino | |
| evaluated only once; in root case, predicates and variable expansion are dynamic. from provos | |||
| 2002-08-28 | avoid symbol conflict (errno) | Jun-ichiro itojun Hagino | |
| 2002-08-28 | fix systrace with chroot. from provos | Jun-ichiro itojun Hagino | |
| 2002-08-07 | deal better with interrupted system calls | Niels Provos | |
| 2002-07-30 | sync function decl and prototype (static-ness) | Jun-ichiro itojun Hagino | |
| 2002-07-22 | add seqnr to message from kernel, userland needs to quote correct seqnr. | Niels Provos | |
| avoids problems where tsleep has been interrupted by a signal. | |||
| 2002-07-19 | constify, have missing prototypes, use pedantic compilation options. | Jun-ichiro itojun Hagino | |
| niels ok | |||
| 2002-07-06 | Remove kernel support for NTP. ok deraadt@ and tholo@ | Thomas Nordin | |
| 2002-06-21 | rewrite all system call arguments in the permit case. use realpath | Niels Provos | |
| when we still have the root and we of the monitored process. this eliminates almost all race coniditions. | |||
| 2002-06-10 | support attaching to a running process; some code by fries@ | Niels Provos | |
| 2002-06-04 | KNF | Theo de Raadt | |
| 2002-06-04 | no absolute includes, changed to relatives; from deraadt@ | Niels Provos | |
| 2002-06-04 | __FUNCTION__ -> __func__ from espie@ | Niels Provos | |
| 2002-06-04 | initial import of systrace. don't touch this, more stuff coming in a while | Niels Provos | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |