| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2012-08-23 | Reopen the systrace file in the process that will actually attach to the | Philip Guenthe | |
| target process(es), so that systrace files can be made unsharable. ok djm@ | |||
| 2012-03-02 | Fix handling of 'offend' (OFFset from the END of the arg list) | Matthew Dempsky | |
| arguments in systrace(1). In intercept_translate(), argsize is actually the number of *bytes* taken up by the arguments, not the number of arguments. ok ajacoutot, sthen, dcoppa | |||
| 2011-10-18 | Bump intercept_get_string() internal buffer to allow strings up to | Matthew Dempsky | |
| ARG_MAX long, so that ic_trargv can execute reliably. Thanks to Olivier Cherrier for reporting and helping to diagnose the problem. ok deraadt@ | |||
| 2011-09-18 | Add support for *at(2) system calls to systrace(1). | Matthew Dempsky | |
| ok deraadt@, sthen@, jasper@ | |||
| 2011-07-04 | remove compat_svr4 | Ted Unangst | |
| 2011-04-05 | Remove FREEBSD_COMPAT bits and obsolete RTHREAD define | Philip Guenthe | |
| 2010-07-05 | compat_bsdos is gone | Ted Unangst | |
| 2010-07-02 | remove userland bits of compat_sunos | Ted Unangst | |
| 2010-07-01 | another day, another compat gets removed. today is ibcs2's turn | Ted Unangst | |
| 2010-06-30 | remove compat_osf1. ok deraadt miod | Ted Unangst | |
| 2010-06-29 | Remove COMPAT_HPUX. No one wanted to support it and its fewmets were | Philip Guenthe | |
| blocking other cleanups ok miod@ | |||
| 2010-06-29 | ultrix compat is going away... | Ted Unangst | |
| 2010-05-29 | repair a format-string call to setproctitle() (in a different way from | Theo de Raadt | |
| the Gleydson Soares's report submission) | |||
| 2010-04-20 | fix trailing slashes in filenames behavior by *not* fixing it in systrace. | Ted Unangst | |
| code from netbsd. ok deraadt | |||
| 2009-11-12 | Only allocate memory for the regex after we've validated it instead | Todd C. Miller | |
| of allocating and later freeing if we didn't use it. OK deraadt@ miod@ | |||
| 2009-11-12 | memory leak if regex fails, found by parfait; ok miod | Theo de Raadt | |
| 2007-11-26 | typos; ok jmc@ | Martynas Venckus | |
| sys/netinet/in_pcb.c and sys/net/bridgestp.c ok henning@ sys/dev/pci/bktr/* ok jakemsr@ | |||
| 2007-09-02 | use calloc() to avoid malloc(n * m) overflows; checked by djm canacar jsg | Theo de Raadt | |
| 2007-06-15 | keep trailing slashes in path normalization, as these might result in | Nikolay Sturm | |
| errors otherwise hidden by systrace noticed by naddy, ok ray on an earlier version of this diff | |||
| 2007-06-06 | don;t try to handle obsolete protocols, print functions so cosmetics only | Henning Brauer | |
| ok otto ray | |||
| 2007-05-31 | convert to new .Dd format; | Jason McIntyre | |
| 2007-05-29 | remove compat netbsd stuff | Otto Moerbeek | |
| 2007-05-15 | don't assume 4-byte aligned memory when intercepting a string | Nikolay Sturm | |
| this should get rid of systrace: intercept_get_string: ioctl: Invalid argument no objections from provos, ok otto | |||
| 2006-09-19 | Use S_IS* macros insted of masking with S_IF* flags. The latter may | Otto Moerbeek | |
| have multiple bits set, which leads to surprising results. Spotted by/partly from Paul Stoeber, more to come. ok ho@ miod@ hshoexer@ | |||
| 2006-08-14 | Adapt revision 1.18 change for symlink(2): | Ray Lai | |
| only resolve symlinks in the dirname of rename()'s arguments, but not in the filename ``looks sane to me'' sturm@, fixes espie@'s problem, ``Seems reasonable.'' provos@. | |||
| 2006-07-02 | sync with systrace 1.6d, keeping local changes | Nikolay Sturm | |
| tests and feedback by a few | |||
| 2006-06-30 | handcrafted depend and CLEANFILES no longer needed since this is now | Otto Moerbeek | |
| done by bsd.*.mk | |||
| 2006-06-10 | add a translation for sendmsg() | Nikolay Sturm | |
| from provos, with feedback from ray and pat | |||
| 2006-05-03 | be more clear about policy inheritance | Nikolay Sturm | |
| help and ok jmc, provos | |||
| 2006-05-02 | some type cleanup | Nikolay Sturm | |
| with feedback from kettenis | |||
| 2006-04-26 | ARGSUSED and a FALLTHROUGH to please lint | Nikolay Sturm | |
| ok deraadt | |||
| 2006-04-03 | add translation for mknod | Nikolay Sturm | |
| ok provos | |||
| 2006-03-25 | only resolve symlinks in the dirname of rename()'s arguments, | Nikolay Sturm | |
| but not in the filename ok provos, no objections from tedu (who doesn't use systrace) | |||
| 2006-03-18 | fix problems found by Coverity via NetBSD: | Robert Nagy | |
| - systrace.c: Don't try to dereference pw when it's NULL. Coverity CID 900 - parse.y: free allocated space on failure Coverity CID 1661 - policy.c: Change a return to "goto out" so that fclose will be called. Coverity CID 1881 ok sturm@, ray@ | |||
| 2006-03-12 | add a few new translations, partly from NetBSD | Nikolay Sturm | |
| ok provos@, deraadt@ | |||
| 2006-03-06 | convert permanent privilege revocation to use setresuid/setresgid; | Damien Miller | |
| ok henning@ | |||
| 2006-01-01 | add PTRACE and RTHREADS defines | Nikolay Sturm | |
| ok miod | |||
| 2005-05-03 | some snprintf() -> strlcpy to improve readibility (and speed?) | Nikolay Sturm | |
| from rohee@, ok millert@ before 3.7 | |||
| 2005-04-23 | -c option may take either integer or name, not just integer; | Jason McIntyre | |
| diff from ray; ok sturm@ | |||
| 2005-03-10 | wrap bind() to AF_UNIX with umask() to avoid race | Theo de Raadt | |
| 2004-07-09 | #ifdef hpux only for m68k or hppa; this needs a revisit since this shows | Theo de Raadt | |
| something flawed in the way that the emulation system calls are being handled | |||
| 2004-07-09 | oops committed the old version | Michael Shalayeff | |
| 2004-07-09 | better includes for syscalls from kernel | Michael Shalayeff | |
| 2004-07-07 | fix an issue when scripts are exec'd under systrace where | marius eriksen | |
| the argv[0] would be normalized, and hence break scripts that depend on how they were called. this fixes an issue in the ports builds. ok provos@ deraadt@; lots of testing during hackathon sturm@ naddy@ | |||
| 2004-06-24 | if we have detached after an exec, bail out early, and avoid a double free. | marius eriksen | |
| ok provos@, "works fine" sturm@ | |||
| 2004-06-23 | a few fixes to systrace | marius eriksen | |
| - add an exec message so that whenever a set-uid/gid process exec's a new image which we may control, the exec does not go by unnoticed. - take special care to check for P_SUGIDEXEC as well as P_SUGID, corresponding to the same changes that were made in the ptrace code a while ago ok niels@, sturm@; thanks to naddy for testing | |||
| 2004-03-30 | if a string considered a filename is too long, don't exit but just let | Nikolay Sturm | |
| the syscall fail, it might not actually be a filename fixes pr 3140, ok provos@ | |||
| 2004-02-01 | make documentation of cradle mode (-C) clearer, and give an example of why | Jason McIntyre | |
| it might be used; mostly based on sturm@'s explanation when i hassled him about it, and committed by niels@ to main systrace repository; | |||
| 2004-01-30 | The empty filename does not receive normalization. | Nikolay Sturm | |
| System calls are supposed to fail on it. from provos@, ok markus@ | |||
| 2004-01-23 | support for cradle mode by marius at monkey.org; cradle mode allows the | Nikolay Sturm | |
| systrace UI to be attached and re-attached, it also multiplexes across systrace process so that one UI can function as central notification from provos@, ok markus@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |