Aren
/
NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
144,857 Commits 606 Branches 0 Tags 3.1 GiB
Commit Graph

141 Commits

Author SHA1 Message Date
peter c8593a1a3c Wrap long lines. 2006-03-18 00:35:02 +00:00
peter dfd65180e1 Don't try to dereference pw when it's NULL. 
Fixes Coverity CID 900.
 2006-03-18 00:32:34 +00:00
peter 6dcaf25d17 Free allocated space upon failure. 
Fixes Coverity CID 1661.
 2006-03-18 00:14:50 +00:00
peter c75c0a8549 Change a return to "goto out" so that fclose will be called. 
Fixes Coverity CID 1881.
 2006-03-18 00:12:02 +00:00
elad 9d002bc47d Give systrace its own version of realpath() that does what it wants, 
call it intercept_realpath().
Unbreaks systrace.
 2005-12-31 12:33:41 +00:00
elad 2fc1513987 The emulation for these should be "native", not "netbsd". 
Noted by Ray Lai.
 2005-10-26 21:17:23 +00:00
elad d8a0e22d8a Adjust comment. Noted by Rui Paulo. 2005-09-07 19:15:49 +00:00
elad f777d75b5c Catch up with 64 bit inode changes. 2005-09-07 19:04:57 +00:00
elad e6a2d9e984 Simplify man-page a bit. 
Patch from Patrick Welche.
 2005-09-03 11:44:45 +00:00
elad 3752840791 Add a new keyword, ``topdir'', that grants access only if the file is 
in a hierarchy below the specified path.
 2005-08-24 19:09:03 +00:00
elad 3df38a6c89 Make inpath work like strstr again. :) 2005-08-10 21:53:01 +00:00
elad 9d164b22bc Add comments. 2005-08-10 21:33:36 +00:00
elad e4088913b5 Separate constructing the path to the policy away from systrace_addpolicy() and 
into systrace_getpolicyfilename().
 2005-08-10 18:19:21 +00:00
elad 4e11de6548 Further correct handling of `inpath'. 
The path in the policy is not normalized, and shouldn't be. We accept
only an absolute path, possibly with one trailing slash. Make note of
that in the manpage.
 2005-07-04 16:32:30 +00:00
elad 931e7a5f52 Make `inpath' work as expected. Closes PR 29677. 
Reported by Christian Biere, based on usenet post by John Wong.
 2005-07-01 17:12:41 +00:00
elad 1d53f8bfa8 Use strcmp() when comparing strings in systrace. 
Reported by Christian Biere in PR29676.
 2005-07-01 16:12:11 +00:00
elad 1b7133edad From marius@openbsd: 
Fix an issue when scripts are executed under systrace where the argv[0]
would be normalized, and hence break scripts that depend on how they were
called.
 2005-06-27 17:11:20 +00:00
elad 8ebc2e9bee From marius@openbsd: 
Add an exec message so that whenever a set-uid/gid process executes a new
image which we may control, the exec does not go by unnoticed.
 2005-06-26 19:58:29 +00:00
christos 6310b59691 sprinkle a little const, and now everything compiles with WARNS=3 2005-06-26 19:10:48 +00:00
elad 03d49eb07f From provos, via OpenBSD: 
Prevent dereferencing possibly freed pointer.
 2005-06-25 21:48:11 +00:00
elad 5cd24996d5 From marius@openbsd: (PR 3140) 
If a string considered a filename is too long, don't exit but just let the
syscall fail, it might not actually be a filename.
 2005-06-25 18:51:03 +00:00
elad b53ff10682 From rohee@openbsd: 
Use strlcpy() instead of snprintf() where possible.
 2005-06-25 18:47:42 +00:00
elad ddb0410ecc From deraadt@openbsd: 
Wrap bind() to AF_UNIX with umask() to avoid race.
 2005-06-25 18:41:30 +00:00
christos 671011e703 Simplify and fix the case where we have both known and unknown flags. 2005-06-25 14:37:33 +00:00
elad 8b57c1a70c Add translation for mmap()'s prot values. 2005-06-25 12:53:32 +00:00
elad cc0def8774 Add translation for mprotect()'s prot values. 2005-06-25 12:22:43 +00:00
elad 4d20624823 Improve readability. Order syscalls, add numbers where possible. 2005-06-25 12:17:57 +00:00
christos 250ff65369 Const poisoning. 2005-06-24 23:21:09 +00:00
he 0a5aea28f2 Initialize ipid in two functions to NULL, to appease -Wuninitialized. 
Marked with XXXGCC for dreamcast (found while compiling for it).

Reviewed (in slightly different form) by lukem.
 2005-06-07 09:00:18 +00:00
lukem 5166671bc3 appease gcc -Wuninitialized 2005-06-01 15:41:19 +00:00
provos d6497b197c provide translation for fcntl cmd names; requested by Nicolai Johannes 2005-05-07 15:11:02 +00:00
wiz 50175a3a4d From jmc@openbsd: 
-c option take names as well as numerical ids. checked w/ sturm@
diff from ray.
 2005-04-23 10:56:54 +00:00
provos d830f0d651 increase the maximum length of allowable system call names 2004-12-01 03:30:07 +00:00
dsl 238960af7e Add (unsigned char) cast to ctype function 2004-10-29 19:51:36 +00:00
jdolecek 0e3af04f6a use native syscallnames[] array for 'aout' and 'aoutm68k' "emulations" - it's 
only used for syscall name <-> number translations, and the native array
is guaranteed to be superset of the former 'aout' and 'aoutm68k' arrays

this re-adds 'aoutm68k' support, and replaces change made in 1.14

g/c #include's which are no longer needed (including aout_syscalls.c), and
also add some comments for the emulations[] array
 2004-09-12 11:05:43 +00:00
jdolecek c2ce3ec2d5 constify 2004-09-12 09:25:59 +00:00
he 72ed8803cf Remove references to aoutm68k_syscalls.c, following that file's removal. 2004-09-10 18:30:20 +00:00
provos 3afd9aba5f the special filename "" does not receive translation and is going to fail. 
previously, systrace would normalize it to $CWD/.; found by Nikolay Sturm
from OpenBSD.
 2004-01-24 03:44:46 +00:00
kleink e71a15405c Avoid using structure initializers with struct timeval. 2004-01-21 22:50:56 +00:00
provos 80b9ef16f9 off-by-one; found by Nikolay Sturm from OpenBSD 2004-01-17 18:54:32 +00:00
jmmv b635f565e7 Homogenize usage messages: make the 'usage' word all lowercase, as this seems 
to be the most common practice in our tree.
 2004-01-05 23:23:32 +00:00
wiz 6fc98bf82d Add -C to usage. 2003-11-28 23:32:25 +00:00
wiz 7978aff203 Bump date for previous (hi niels!). 
Sort options.
 2003-11-28 23:32:02 +00:00
provos 61d0495091 support for cradle mode by marius at monkey.org; cradle mode allows the 
systrace UI to be attached and re-attached, it also multiplexes across
systrace process so that one UI can function as central notification
 2003-11-28 21:53:32 +00:00
provos 2244ab26a9 allow underscores in usernames 2003-11-18 05:28:05 +00:00
fvdl 84f47d78af Don't initialize an integer field with NULL. 2003-10-21 02:11:21 +00:00
wiz a3390acd07 Punctuation improvement from jmc@openbsd. 2003-09-07 15:58:58 +00:00
wiz 6c3a1a5dfb Some small tweaks from jmc@openbsd: 
- .Bk/.Ek for SYNOPSIS
 - .Ev for environment variables
 - fix bogus -offsets
 2003-09-06 16:39:34 +00:00
cb 5f734a1850 fix a race condition between path resolution in userland 
and the subsequent namei(): inform the kernel portion of
valid filenames and then disallow symlink lookups for
those filenames by means of a hook in namei().
with suggestions from provos@

also, add (currently unused) seqnr field to struct
systrace_replace, from provos@
 2003-08-25 09:12:42 +00:00
itojun e0e82d2080 typo 2003-08-20 01:28:44 +00:00