Aren
/
NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
121,303 Commits 606 Branches 0 Tags 3.1 GiB
Commit Graph

100 Commits

Author SHA1 Message Date
wiz 6fc98bf82d Add -C to usage. 2003-11-28 23:32:25 +00:00
wiz 7978aff203 Bump date for previous (hi niels!). 
Sort options.
 2003-11-28 23:32:02 +00:00
provos 61d0495091 support for cradle mode by marius at monkey.org; cradle mode allows the 
systrace UI to be attached and re-attached, it also multiplexes across
systrace process so that one UI can function as central notification
 2003-11-28 21:53:32 +00:00
provos 2244ab26a9 allow underscores in usernames 2003-11-18 05:28:05 +00:00
fvdl 84f47d78af Don't initialize an integer field with NULL. 2003-10-21 02:11:21 +00:00
wiz a3390acd07 Punctuation improvement from jmc@openbsd. 2003-09-07 15:58:58 +00:00
wiz 6c3a1a5dfb Some small tweaks from jmc@openbsd: 
- .Bk/.Ek for SYNOPSIS
 - .Ev for environment variables
 - fix bogus -offsets
 2003-09-06 16:39:34 +00:00
cb 5f734a1850 fix a race condition between path resolution in userland 
and the subsequent namei(): inform the kernel portion of
valid filenames and then disallow symlink lookups for
those filenames by means of a hook in namei().
with suggestions from provos@

also, add (currently unused) seqnr field to struct
systrace_replace, from provos@
 2003-08-25 09:12:42 +00:00
itojun e0e82d2080 typo 2003-08-20 01:28:44 +00:00
provos ab6fc8a1fd fixed contrived race condition during attachment; from marius@monkey.org 2003-08-02 14:45:08 +00:00
provos 037feaaf20 avoid warning due to name collision. 2003-08-02 14:34:35 +00:00
provos 2e1af85ab0 normalize CWD for cases where CWD has a symlink in it. should solve 
problems where CWD policies would not match.
 2003-08-02 14:31:10 +00:00
provos 08ab84f25d introduce normalize filename function. 2003-08-02 14:29:33 +00:00
provos 43914d5f2f change CWD handling. CWD is fixed to the CWD of the systrace process. 2003-08-02 14:24:30 +00:00
lukem 8ecf6c5100 revert previous; lossage was caused by local makefile changes 2003-08-01 11:09:38 +00:00
lukem 913e4f842e add explit dependency for lex.c on parse.h 2003-08-01 10:49:26 +00:00
provos 5edbacc575 escape \n and \r, too 2003-08-01 06:15:02 +00:00
provos 4cd77cec75 get rid of unnecessary groupnames array 2003-08-01 05:42:48 +00:00
provos 2268d69749 support for a new kernel message that informs userland that an in-kernel 
policy has been freed.  this allows us to enforce the kernel policy size
limit for users while users are still able to execute an arbitary number
of applications;  the protocol change is backwards compatible.
 2003-06-03 04:33:44 +00:00
provos c57cb7fe98 escape " and \ to \" and \\; with the help of marius@monkey.org; 2003-06-03 01:20:06 +00:00
provos 70f2418ba2 do not free memory that still may be referenced later 2003-06-01 00:12:34 +00:00
wiz 8361a7103e Sync usage with man page. 2003-05-21 06:26:07 +00:00
wiz 9d0fdf5d2a Replace < and > with \*[Lt] and \*[Gt] resp. for HTML output. 
Sort options. Bump date for last.
 2003-05-21 06:23:29 +00:00
provos bd80d3ced7 permit numberic values for uid and gid; allow "<" and ">" for less and 
greater; requested by dugsong
 2003-05-20 22:45:13 +00:00
provos 4a6e1b3b24 fix EOF on input bug; from mpech@prosoft 2003-04-23 17:44:59 +00:00
wiz 8dda1d8092 Use Dq and Sq. Drop a trailing space. 2003-04-16 10:17:26 +00:00
itojun a18a285e73 need 11 chars for %u. Peter Valchev 2003-04-16 08:07:51 +00:00
provos 7685de2195 use LOGIN_NAME_MAX instead of MAXLOGNAME; closes pr/21048 2003-04-09 17:50:08 +00:00
atatat 55a73f6d52 mdkdir -> mkdir 2003-03-26 17:00:57 +00:00
provos e3cb39834b mention "parse error" on stdout for interactive policy generation 2003-03-26 03:40:02 +00:00
provos a2468a8d04 new "ask" action. creates a new rule that prompts the user for an 
action but allows only yes or no answer.  inspired from talking
with dugsong@monkey
 2003-03-25 23:17:29 +00:00
provos 5173f83708 recognize process group pid 2003-03-25 23:15:22 +00:00
provos 488a952788 better -c parsing; from camiel@sentia 2003-03-25 23:04:48 +00:00
provos 66570390e4 More details and a few improvement for style. from ian@darwinsys 2003-03-25 23:00:05 +00:00
provos 2b37f26aed mkdir requires unlinkname as a translator; unlinkname does not return 
<non-existent filename> errors any longer.
 2003-03-25 22:58:24 +00:00
provos f605994ea3 rename was using an incorrect translation. 2003-03-25 22:54:59 +00:00
provos 887e433ee2 bug in profile feedback optimization; found by dirt@monkey 2003-03-25 22:48:42 +00:00
provos 4ff1bfdbd5 allow logging for untranslated syscalls; from anil@recoil.org 2002-12-15 19:05:31 +00:00
scw f7aebc0017 Cast from register_t to void * via intptr_t. 2002-12-06 09:49:36 +00:00
thorpej 5759456a18 Avoid confict with reserved identifier "log". 2002-12-06 01:43:18 +00:00
provos fec70f4a84 typos; fgsch@olimpo.com.br 2002-12-05 19:33:39 +00:00
provos e9f87b6c2c better parsing of # comments 2002-12-04 03:19:05 +00:00
provos da50ee4397 prevent attempt to use in-kernel fastpath for aliased system calls. 2002-11-25 06:25:09 +00:00
provos 048da773ed error messages need to go to stderr 2002-11-23 17:42:45 +00:00
provos 49d6b23841 check for trans_size is not needed. 2002-11-15 21:36:25 +00:00
provos 695ad5ee17 add support for regular expressions to be more flexible with policy string 
matching.
 2002-11-02 20:04:20 +00:00
provos c27faa29c9 performance improvement by omitting a redundant getcwd. 2002-11-02 19:57:02 +00:00
provos 98c03e54fd register pidname and signame translation for kill(2) 2002-11-02 19:49:21 +00:00
provos c989923700 rename exported variables to avoid name space polution. 2002-11-02 19:43:27 +00:00
provos e93fe1e2ba NULL to 0; from navin@gdit.iiit.net 2002-11-02 16:27:46 +00:00