| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2003-10-08 | originally from cb@netbsd.org, adapted by provos | Nikolay Sturm | |
| itojun@ ok fix a race condition between path resolution in userland and the subsequent namei(): inform the kernel portion of valid filenames and then disallow symlink lookups for those filenames by means of a hook in namei(). with suggestions from provos@ also, add (currently unused) seqnr field to struct systrace_replace, from provos@ | |||
| 2003-06-16 | - limited number of processes per systrace | Jun-ichiro itojun Hagino | |
| - escape fixes for special characters markus, sturm ok. from provos | |||
| 2003-03-28 | fake off the SYSTR_CLONE through a normally numbered other ioctl; as of ↵ | Michael Shalayeff | |
| previous rename; after discussion w/ niels | |||
| 2002-12-04 | rename the clone ioctl to avoid clashing w/ the sockio; provos@ ok | Michael Shalayeff | |
| 2002-10-25 | add id tags. | Federico G. Schwindt | |
| 2002-10-16 | support for privilege elevation. | Jun-ichiro itojun Hagino | |
| with privilege elevation no suid or sgid binaries are necessary any longer. Applications can be executed completely unprivileged. Systrace raises the privileges for a single system call depending on the configured policy. Idea from discussions with Perry Metzger, Dug Song and Marcus Watts. from provos | |||
| 2002-10-09 | new message to track uid/gid changes | Jun-ichiro itojun Hagino | |
| from provos | |||
| 2002-07-24 | better uid/gid tracking; okay deraadt@ | Niels Provos | |
| 2002-07-22 | add seqnr to message from kernel, userland needs to quote correct seqnr. | Niels Provos | |
| avoids problems where tsleep has been interrupted by a signal. | |||
| 2002-06-21 | system call argument rewriting framework via stackgap; okay art@ | Niels Provos | |
| 2002-06-16 | forgot copyright, pointed out by christos@netbsd | Niels Provos | |
| 2002-06-10 | new ioctl that reports the current emulation a process uses; needed for | Niels Provos | |
| attaching to a running process | |||
| 2002-06-02 | explicit padding; okay deraadt@ | Niels Provos | |
| 2002-05-19 | make fsystrace available in systrace.h; keep some more stats. | Niels Provos | |
| 2002-05-16 | systrace facility, used to enforce and generate policies for system calls | Niels Provos | |
| okay deraadt@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |