christos
41d09357f2
Instead of putting a full copy of realpath here, use the system's realpath.
2007-05-24 18:18:43 +00:00
christos
a59f86365c
coverity CID 4378: fix bogus comparison that lead into dead code.
2007-05-16 20:49:35 +00:00
msaitoh
8ce1f4fff2
fix typos
2007-04-29 20:23:34 +00:00
plunky
4796b4c1d9
escape * and - properly
2007-04-13 00:40:11 +00:00
hubertf
7ce5824ba3
Remove unused ctype.h
...
From: Slava Semushin <php-coder@altlinux.ru>
2007-03-10 01:16:17 +00:00
dogcow
c2a791c7b8
mm, void * arithmetic.
2007-03-04 09:23:32 +00:00
wiz
bda881e00b
Add -E to SYNOPSIS. Fix typo. Bump date for previous.
2006-12-23 09:43:47 +00:00
he
7700f97e62
Use C99 initializer.
2006-12-10 17:33:01 +00:00
christos
ddbf1b0dd9
Sync with OpenBSD systrace 1.6d.
...
XXX: Some of the compat-linux systrace is disabled.
From elad.
2006-12-10 01:22:02 +00:00
cbiere
28fb298561
Added missing F_GETLK, F_SETLK, F_SETLKW to print_fcntlcmd().
2006-11-12 23:29:37 +00:00
christos
5b08cf393d
c99 initializer
2006-10-16 00:43:00 +00:00
christos
e6c35f2090
2 fixes from Elad:
...
1. fix the symlink issue mentioned in:
http://marc.theaimsgroup.com/?l=openbsd-tech&m=115513754417683&w=2
2. handle socket(2) versioning.
2006-08-21 01:35:11 +00:00
mrg
aadd7d4847
sprinkle some -fno-strict-aliasing and -Wno-pointer-sign with GCC4.
2006-05-11 23:16:28 +00:00
mrg
084c052803
quell GCC 4.1 uninitialised variable warnings.
...
XXX: we should audit the tree for which old ones are no longer needed
after getting the older compilers out of the tree..
2006-05-10 21:53:14 +00:00
provos
9244f58a4e
translate sendmsg so that tools like nslookup will show remote addresses;
...
i waited for three years and nobody did this; had to do it myself :-(
2006-04-16 05:19:02 +00:00
provos
fed8136a4e
add new system calls (__lstat30 and __stat30) that should have been added
...
for argument translation in Systrace
2006-04-15 20:35:24 +00:00
peter
c8593a1a3c
Wrap long lines.
2006-03-18 00:35:02 +00:00
peter
dfd65180e1
Don't try to dereference pw when it's NULL.
...
Fixes Coverity CID 900.
2006-03-18 00:32:34 +00:00
peter
6dcaf25d17
Free allocated space upon failure.
...
Fixes Coverity CID 1661.
2006-03-18 00:14:50 +00:00
peter
c75c0a8549
Change a return to "goto out" so that fclose will be called.
...
Fixes Coverity CID 1881.
2006-03-18 00:12:02 +00:00
elad
9d002bc47d
Give systrace its own version of realpath() that does what it wants,
...
call it intercept_realpath().
Unbreaks systrace.
2005-12-31 12:33:41 +00:00
elad
2fc1513987
The emulation for these should be "native", not "netbsd".
...
Noted by Ray Lai.
2005-10-26 21:17:23 +00:00
elad
d8a0e22d8a
Adjust comment. Noted by Rui Paulo.
2005-09-07 19:15:49 +00:00
elad
f777d75b5c
Catch up with 64 bit inode changes.
2005-09-07 19:04:57 +00:00
elad
e6a2d9e984
Simplify man-page a bit.
...
Patch from Patrick Welche.
2005-09-03 11:44:45 +00:00
elad
3752840791
Add a new keyword, ``topdir'', that grants access only if the file is
...
in a hierarchy below the specified path.
2005-08-24 19:09:03 +00:00
elad
3df38a6c89
Make inpath work like strstr again. :)
2005-08-10 21:53:01 +00:00
elad
9d164b22bc
Add comments.
2005-08-10 21:33:36 +00:00
elad
e4088913b5
Separate constructing the path to the policy away from systrace_addpolicy() and
...
into systrace_getpolicyfilename().
2005-08-10 18:19:21 +00:00
elad
4e11de6548
Further correct handling of `inpath'.
...
The path in the policy is not normalized, and shouldn't be. We accept
only an absolute path, possibly with one trailing slash. Make note of
that in the manpage.
2005-07-04 16:32:30 +00:00
elad
931e7a5f52
Make `inpath' work as expected. Closes PR 29677.
...
Reported by Christian Biere, based on usenet post by John Wong.
2005-07-01 17:12:41 +00:00
elad
1d53f8bfa8
Use strcmp() when comparing strings in systrace.
...
Reported by Christian Biere in PR29676.
2005-07-01 16:12:11 +00:00
elad
1b7133edad
From marius@openbsd:
...
Fix an issue when scripts are executed under systrace where the argv[0]
would be normalized, and hence break scripts that depend on how they were
called.
2005-06-27 17:11:20 +00:00
elad
8ebc2e9bee
From marius@openbsd:
...
Add an exec message so that whenever a set-uid/gid process executes a new
image which we may control, the exec does not go by unnoticed.
2005-06-26 19:58:29 +00:00
christos
6310b59691
sprinkle a little const, and now everything compiles with WARNS=3
2005-06-26 19:10:48 +00:00
elad
03d49eb07f
From provos, via OpenBSD:
...
Prevent dereferencing possibly freed pointer.
2005-06-25 21:48:11 +00:00
elad
5cd24996d5
From marius@openbsd: (PR 3140)
...
If a string considered a filename is too long, don't exit but just let the
syscall fail, it might not actually be a filename.
2005-06-25 18:51:03 +00:00
elad
b53ff10682
From rohee@openbsd:
...
Use strlcpy() instead of snprintf() where possible.
2005-06-25 18:47:42 +00:00
elad
ddb0410ecc
From deraadt@openbsd:
...
Wrap bind() to AF_UNIX with umask() to avoid race.
2005-06-25 18:41:30 +00:00
christos
671011e703
Simplify and fix the case where we have both known and unknown flags.
2005-06-25 14:37:33 +00:00
elad
8b57c1a70c
Add translation for mmap()'s prot values.
2005-06-25 12:53:32 +00:00
elad
cc0def8774
Add translation for mprotect()'s prot values.
2005-06-25 12:22:43 +00:00
elad
4d20624823
Improve readability. Order syscalls, add numbers where possible.
2005-06-25 12:17:57 +00:00
christos
250ff65369
Const poisoning.
2005-06-24 23:21:09 +00:00
he
0a5aea28f2
Initialize ipid in two functions to NULL, to appease -Wuninitialized.
...
Marked with XXXGCC for dreamcast (found while compiling for it).
Reviewed (in slightly different form) by lukem.
2005-06-07 09:00:18 +00:00
lukem
5166671bc3
appease gcc -Wuninitialized
2005-06-01 15:41:19 +00:00
provos
d6497b197c
provide translation for fcntl cmd names; requested by Nicolai Johannes
2005-05-07 15:11:02 +00:00
wiz
50175a3a4d
From jmc@openbsd:
...
-c option take names as well as numerical ids. checked w/ sturm@
diff from ray.
2005-04-23 10:56:54 +00:00
provos
d830f0d651
increase the maximum length of allowable system call names
2004-12-01 03:30:07 +00:00
dsl
238960af7e
Add (unsigned char) cast to ctype function
2004-10-29 19:51:36 +00:00