/[path-sandbox]/trunk/libsandbox/libsandbox.c
Gentoo

Log of /trunk/libsandbox/libsandbox.c

Parent Directory Parent Directory | Revision Log Revision Log

Links to HEAD: (view) (download) (as text) (annotate)
Revision 370 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Nov 9 10:29:58 2008 UTC (4 years, 6 months ago) by vapier
File length: 26954 byte(s)
Diff to previous 369 
consolidate all random system includes into headers.h
Revision 369 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Nov 9 09:48:28 2008 UTC (4 years, 6 months ago) by vapier
File length: 27200 byte(s)
Diff to previous 357 
cleanup whitespace and comments -- no functional changes
Revision 357 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Oct 23 23:49:35 2007 UTC (5 years, 7 months ago) by vapier
File length: 27898 byte(s)
Diff to previous 345 
mark the new "e" fopen() flag as safe
Revision 345 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Aug 20 12:04:04 2006 UTC (6 years, 9 months ago) by vapier
File length: 27897 byte(s)
Diff to previous 344 
insert/delete whitespace
Revision 344 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jul 13 16:18:29 2006 UTC (6 years, 10 months ago) by azarah
File length: 27934 byte(s)
Diff to previous 342 
Punt vim indentation line.
Revision 342 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jul 13 16:16:30 2006 UTC (6 years, 10 months ago) by azarah
File length: 27970 byte(s)
Diff to previous 331 
Punt old copyright stuff, as nearly everything was rewrited.  If something is was not and is pointed out, I will rectify it.
Revision 331 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 12 16:53:51 2006 UTC (6 years, 10 months ago) by azarah
File length: 28161 byte(s)
Diff to previous 329 
Make sure we do not segfault with invalid mode passed to fopen() and co.  Add note about allowing different errno to be returned.
Revision 329 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 12 15:49:47 2006 UTC (6 years, 10 months ago) by azarah
File length: 27951 byte(s)
Diff to previous 322 
Update for librcutil dynbuf function name changes.
Revision 322 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Jul 11 16:00:08 2006 UTC (6 years, 10 months ago) by azarah
File length: 27942 byte(s)
Diff to previous 318 
Convert getcmdline() to use dynbuf functions cleaning up nicely.
Revision 318 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Jul 10 07:21:53 2006 UTC (6 years, 10 months ago) by azarah
File length: 28252 byte(s)
Diff to previous 317 
Add wrapper for internal use of getcwd().
Revision 317 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Jul 10 07:16:56 2006 UTC (6 years, 10 months ago) by azarah
File length: 28289 byte(s)
Diff to previous 315 
Move wrappers out of libsandbox.c.  Move IO functions to
libsbutil.
Revision 315 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jul 9 20:38:41 2006 UTC (6 years, 10 months ago) by azarah
File length: 46457 byte(s)
Diff to previous 312 
Start moving libsandbox only related stuff out of libsbutil.
Revision 312 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jul 9 20:09:20 2006 UTC (6 years, 10 months ago) by azarah
File length: 46433 byte(s)
Diff to previous 311 
Use defines for proc directories/files.
Revision 311 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jul 9 19:59:15 2006 UTC (6 years, 10 months ago) by azarah
File length: 46303 byte(s)
Diff to previous 310 
Use PAGE_SIZE to read proc files.
Revision 310 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jul 9 19:21:33 2006 UTC (6 years, 10 months ago) by azarah
File length: 46161 byte(s)
Copied from: trunk/src/libsandbox.c revision 309
Diff to previous 309 
Move libsandbox to its own directory.
Revision 309 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jul 9 19:13:57 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 46161 byte(s)
Diff to previous 308 
As we are using a symbol map for libsandbox, its no longer needed
to have all the internal functions static, and thus we can break
things out a bit and make the source layout more sane.  Start by
moving librcutil to libsbutil, and adding all the defines and
helper functions needed by both libsandbox and sandbox.
Revision 308 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jul 9 17:52:07 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 46192 byte(s)
Diff to previous 307 
Reformat previous added code a bit, and add debug messages
and even more error checking.  Abort on some more unrecoverable
errors.
Revision 307 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jul 9 17:48:43 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 45363 byte(s)
Diff to previous 306 
Apply patch to make reading and writing more reliable.
Patch from Alex Unleashed <unledev@gmail.com>.
Revision 306 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jul 9 16:30:14 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44557 byte(s)
Diff to previous 290 
Fix access call strncmp's, patch from
Alex Unleashed <unledev@gmail.com>.
Revision 290 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jul 6 17:25:46 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44557 byte(s)
Diff to previous 283 
Use debug versions of malloc(), realloc() and calloc().
Revision 283 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jul 6 08:49:13 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44550 byte(s)
Diff to previous 279 
Remove last libsandbox-only functions in favour for ones provided
by librcutil.  Setup log_domain properly for debugging.
Revision 279 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 5 16:34:00 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44446 byte(s)
Diff to previous 271 
Rename EINFO, etc to SB_EINFO, etc to not conflict with macros from
librcutil.
Revision 271 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 5 15:14:07 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44425 byte(s)
Diff to previous 270 
Use is_env_on(ENV_SANDBOX_ON) now that we have is_env_on().
Revision 270 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 5 15:11:17 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44545 byte(s)
Diff to previous 264 
Abort on possible security breach.
Revision 264 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Jul 4 15:10:37 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44534 byte(s)
Diff to previous 263 
Small logic simplification.
Revision 263 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Jul 4 14:58:16 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44596 byte(s)
Diff to previous 262 
Add is_env_off().  Also check for true/false. Use is_env_*.
Revision 262 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Jul 4 14:35:18 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44872 byte(s)
Diff to previous 261 
Slightly adjust log format header.
Revision 261 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Jul 4 14:32:38 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44860 byte(s)
Diff to previous 259 
Theoretically add support to terminate immediately if we had an access violation,
bug #138499.  Uses environment variable SANDBOX_ABORT.
Revision 259 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Jul 4 12:44:54 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 44715 byte(s)
Diff to previous 258 
Change log format, and add more info, especially cmdline, bug #138501.
Revision 258 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Fri Jun 30 11:13:24 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 41394 byte(s)
Diff to previous 257 
Use EERROR for OOM message instead of EWARN.
Revision 257 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Fri Jun 30 11:10:35 2006 UTC (6 years, 10 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 41393 byte(s)
Diff to previous 253 
Fix possible huge overflow with logging code.
Revision 253 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue May 9 09:30:16 2006 UTC (7 years ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 40825 byte(s)
Diff to previous 252 
Do not free buffer returned by getcwd() if it was not obtained by getcwd(),
bug #125701, thanks Mike.
Revision 252 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon May 8 14:15:00 2006 UTC (7 years ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 40652 byte(s)
Diff to previous 248 
Comment egetcwd() some more, and fix a double-free.
Revision 248 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed May 3 11:18:28 2006 UTC (7 years ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 40175 byte(s)
Diff to previous 246 
If glibc/kernel side of getcwd() screwed up, return ENAMETOOLONG.
Revision 246 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Apr 25 08:25:37 2006 UTC (7 years ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 40148 byte(s)
Diff to previous 235 
Try to triple check getcwd() sanity.  Do not think it will help for
bug #125701, but we try.
Revision 235 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 5 22:49:20 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 39751 byte(s)
Diff to previous 228 
More configure related cleanups. Define HAVE_RTLD_NEXT
via config.h.
Revision 228 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 5 14:06:58 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 39838 byte(s)
Diff to previous 226 
Small tweak.
Revision 226 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 5 13:54:04 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 39838 byte(s)
Diff to previous 224 
Cleanup RTLD defines.
Revision 224 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 5 13:40:36 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 39625 byte(s)
Diff to previous 221 
More changes to try and resolve OSes with generic getcwd() implementations.
Revision 221 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 5 11:08:26 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 38367 byte(s)
Diff to previous 220 
Add sandbox_on variable to tweak internally if sandbox is on or off.
Revision 220 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 5 10:10:47 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 38321 byte(s)
Diff to previous 219 
Rather check for RTLD_NEXT than glibc.  Some other cleanups.
Revision 219 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 5 09:54:40 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 38317 byte(s)
Diff to previous 216 
More bsd fixes.
Revision 216 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 5 09:28:34 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 38329 byte(s)
Diff to previous 211 
Rename sandbox_futils.c to sandbox_utils.c.  Add gstrndup() and gbasename()
to sandbox_utils.c.  Add check for glibc, and fixup things to not need glibc
only extensions if not needed for versioned symbols.
Revision 211 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sat Dec 3 11:42:38 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 38246 byte(s)
Diff to previous 197 
Change default prefix '__' to '_DEFAULT' suffix to avoid confusion
some people seem to have.
Revision 197 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Dec 1 11:56:29 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 38198 byte(s)
Diff to previous 196 
Wrap mkfifo() as it seems it was missing.
Revision 196 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Dec 1 11:33:20 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 37841 byte(s)
Diff to previous 192 
Wrap mknod() as well.  Misc cleanups.
Revision 192 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Dec 1 10:45:43 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 37783 byte(s)
Diff to previous 191 
Rename filter_path() to resolve_path() and other renames for clarity.
Revision 191 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Dec 1 10:40:09 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 37707 byte(s)
Diff to previous 189 
Cleanup local defines for egetcwd() and erealpath().
Revision 189 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Dec 1 09:46:17 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 37833 byte(s)
Diff to previous 183 
Remove the SB_STATIC and including of getcwd.c, etc voodoo, as we new use a
symbol map, and all non-exported symbols are local.  Cleanup getcwd.c, as
the generic getcwd for older 2.4 kernels do not work properly anyhow, and
just makes things slower.  Some other warning fixes.
Revision 183 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Nov 30 22:54:36 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 37962 byte(s)
Diff to previous 178 
Use versioned symbols on supported libc's for functions we wrap, as well as
provide all versions of specific functions.  Some syntax cleanups.
Revision 178 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Nov 28 10:52:03 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/src/libsandbox.c
File length: 37586 byte(s)
Copied from: trunk/libsandbox.c revision 173
Diff to previous 173 
Reorder source layout.
Revision 173 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Nov 28 10:05:52 2005 UTC (7 years, 5 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37586 byte(s)
Diff to previous 170 
Cleanup environ variables.
Revision 170 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Nov 1 16:02:30 2005 UTC (7 years, 6 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37487 byte(s)
Diff to previous 166 
Do not pass mode to true_open and true_open64 if not needed.  Should fix a
segfault in some cases.
Revision 166 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Sep 12 06:50:53 2005 UTC (7 years, 8 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37343 byte(s)
Diff to previous 164 
Make libsb_fini() do cleanup a bit more complete just in case we get another
uClibc 'call preloaded library fini before that of app' issue ... probably
will not help much, but we try.
Revision 164 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Sep 4 11:17:09 2005 UTC (7 years, 8 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37260 byte(s)
Diff to previous 163 
Also allow symlink() system call to operate on a symlink in a writable path
that points to non-writable path, bug #104711.
Revision 163 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Aug 29 15:39:19 2005 UTC (7 years, 8 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37215 byte(s)
Diff to previous 162 
Remove debug code I forgot to remove.
Revision 162 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Aug 29 15:38:02 2005 UTC (7 years, 8 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37277 byte(s)
Diff to previous 156 
Form cleanups.
Revision 156 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Fri Aug 5 13:33:54 2005 UTC (7 years, 9 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37211 byte(s)
Diff to previous 154 
Do not give an access violation if the access() system call do not have
write/read access - it does not actually modify, so we only need to return
not being able to write/read.  Noted by Andres Loeh <kosmikus@gentoo.org>,
bug #101433.
Revision 154 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Aug 1 08:08:08 2005 UTC (7 years, 9 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 36789 byte(s)
Diff to previous 153 
Add support for SANDBOX_VERBOSE (enabled by default).  Adjust SANDBOX_DEBUG
to only enable if equal to 1 or yes.
Revision 153 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Aug 1 07:57:35 2005 UTC (7 years, 9 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 36425 byte(s)
Diff to previous 145 
Still do normal log if debugging is requested.
Revision 145 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Fri Jul 8 14:52:26 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 35770 byte(s)
Diff to previous 144 
Try to cleanup and make error handling/printing consistent.
Revision 144 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jul 7 22:58:16 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 35751 byte(s)
Diff to previous 142 
Cleanup access/log printing.  Make access printing honour NOCOLOR.  Fix log
printing's last line not honouring NOCOLOR.
Revision 142 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jul 7 22:14:57 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 35762 byte(s)
Diff to previous 140 
Remove unused includes and variables.
Revision 140 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jul 7 22:01:14 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 35832 byte(s)
Diff to previous 138 
Redo the interface of the get_* functions so that we do not leak memory.
Revision 138 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jul 7 13:01:31 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 35866 byte(s)
Diff to previous 137 
Fix possible segfault in env init code.
Revision 137 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 6 21:33:23 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 35801 byte(s)
Diff to previous 136 
Cleanup init_env_entries() and check_prefixes().
Revision 136 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 6 19:41:26 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 36398 byte(s)
Diff to previous 135 
Add check_prefixes() with major cleanup on check_access().
Revision 135 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 6 18:40:01 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37637 byte(s)
Diff to previous 134 
Clean up logging in libsandbox.c, and hopefully make it more consistant.
Revision 134 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 6 17:35:30 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 38555 byte(s)
Diff to previous 133 
Change log dir to /var/log/sandbox/.  Make sure the sandboxed process cannot write to it.
Revision 133 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 6 00:36:46 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 38905 byte(s)
Diff to previous 132 
Remove unused 'pids file' code.
Revision 132 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jul 6 00:12:49 2005 UTC (7 years, 10 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 39915 byte(s)
Diff to previous 122 
Remove unused variables.
Revision 122 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Jun 14 21:59:07 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 39958 byte(s)
Diff to previous 121 
Label rename for clarity.
Revision 121 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue Jun 14 21:57:00 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 39949 byte(s)
Diff to previous 120 
Cleanup the fail_nametoolong stuff a bit more.
Revision 120 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sat Jun 11 10:04:07 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 41002 byte(s)
Diff to previous 119 
Remove hopefully the last ld.so.preload bits we do not use anymore.
Revision 119 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sat Jun 11 10:01:11 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 41103 byte(s)
Diff to previous 118 
Remove the unneeded canonicalize() calls in the wrappers - we do it anyhow
in check_syscall().  Should speed things up a bit (at least for the getcwd()
and long path name test it goes down to under a second, and not 10+ seconds
like before).  Also warn if we skip checking due to the canonicalized path
being too long.
Revision 118 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sat Jun 11 08:54:24 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 42100 byte(s)
Diff to previous 117 
More comment/readability cleanups
Revision 117 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sat Jun 11 07:25:36 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 42076 byte(s)
Diff to previous 114 
Some strncpy/strncat and other cleanups.
Revision 114 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jun 9 16:53:13 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 42214 byte(s)
Diff to previous 113 
Move symlink hack down a bit to try and minimize on the amount of lstat()
calls we do.
Revision 113 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jun 9 16:47:21 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 42188 byte(s)
Diff to previous 112 
Add hack to allow writing to /proc/self/fd (or /dev/fd), bug #91516.
Revision 112 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jun 9 15:47:25 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 41813 byte(s)
Diff to previous 110 
Add wrapper for access() function, bug #85413.
Revision 110 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jun 9 14:42:11 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 40888 byte(s)
Diff to previous 109 
Make sure our true_* pointers are initialized to NULL, and that we check for
all references that they are valid.
Revision 109 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Jun 9 14:32:28 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 40686 byte(s)
Diff to previous 107 
Be default we will fail if the path name we try to canonicalize is too long.
This however could cause issues with some things (bug #94630 and #21766), so
if fail_nametoolong == 0, canonicalize() will return a null length string and
do not fail.
Revision 107 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jun 8 13:39:53 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 39727 byte(s)
Diff to previous 106 
Whitespace fixes.
Revision 106 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Jun 8 13:37:18 2005 UTC (7 years, 11 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 39803 byte(s)
Diff to previous 104 
Fix incorrect free of non-malloc'd array, bug #92313 and #94020.  Fix noted
by Marcus D. Hanwell <cryos@gentoo.org>.
Revision 104 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Jun 5 07:45:28 2005 UTC (7 years, 11 months ago) by vapier
Original Path: trunk/libsandbox.c
File length: 39833 byte(s)
Diff to previous 101 
whitespace tweaks
Revision 101 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Fri May 13 15:23:28 2005 UTC (8 years ago) by azarah
Original Path: trunk/libsandbox.c
File length: 39843 byte(s)
Diff to previous 100 
General cleanups.
Revision 100 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Fri May 13 14:18:05 2005 UTC (8 years ago) by azarah
Original Path: trunk/libsandbox.c
File length: 39907 byte(s)
Diff to previous 99 
Various LD_PRELOAD cleanups.  Do not unset LD_PRELOAD for parent.
Revision 99 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Fri May 13 13:30:51 2005 UTC (8 years ago) by azarah
Original Path: trunk/libsandbox.c
File length: 39901 byte(s)
Diff to previous 76 
Modify get_sandbox_pids_file(), get_sandbox_log() and get_sandbox_debug_log()
to use TMPDIR if present in environment.
Revision 76 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun May 8 11:27:37 2005 UTC (8 years ago) by ferringb
Original Path: trunk/libsandbox.c
File length: 39826 byte(s)
Diff to previous 74 
rewrote sbcontext caching so it accounts for env changes since lib initialization.
Revision 74 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed May 4 15:33:47 2005 UTC (8 years ago) by azarah
Original Path: trunk/libsandbox.c
File length: 38127 byte(s)
Diff to previous 71 
Add rename support of symlinks pointing to protected files/directories.
Revision 71 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed May 4 14:46:50 2005 UTC (8 years ago) by azarah
Original Path: trunk/libsandbox.c
File length: 38082 byte(s)
Diff to previous 66 
Do not reset already set LD_PRELOAD when starting sandbox.  If LD_PRELOAD is
already set, init of the env vars fails for some reason, so do this later on,
and do not warn (bug #91431).
Revision 66 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Tue May 3 10:56:19 2005 UTC (8 years ago) by azarah
Original Path: trunk/libsandbox.c
File length: 38118 byte(s)
Diff to previous 54 
Do not init the env entries with each call, as it creates too many calls to
lstat, etc.  Should speedup things a bit.
Revision 54 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Apr 28 22:41:57 2005 UTC (8 years ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37707 byte(s)
Diff to previous 47 
Do not append '/' to pathname in filter_path() if it already ends with it.
Revision 47 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Apr 28 15:49:30 2005 UTC (8 years ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37648 byte(s)
Diff to previous 43 
Only check for /dev/{null,zero} for unlink hack, else ricers using /dev/shm
have issues; bug #90592.
Revision 43 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sat Apr 23 20:44:15 2005 UTC (8 years, 1 month ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37594 byte(s)
Diff to previous 40 
Make sure all functions used in libsandbox.c is declared static.  Define
SB_STATIC in localdecls.h for this.  Include sandbox_futils.c rather than
linking with its object.  Hopefully this will fix bug #90153.
Revision 40 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Mar 21 23:30:13 2005 UTC (8 years, 2 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37578 byte(s)
Diff to previous 39 
Allow lchown a symlink in write-allowed path pointing to write-denied target.
Revision 39 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Mar 21 08:54:02 2005 UTC (8 years, 2 months ago) by genone
Original Path: trunk/libsandbox.c
File length: 37531 byte(s)
Diff to previous 37 
show resolved symlinks in log
Revision 37 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Mar 14 00:28:10 2005 UTC (8 years, 2 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37278 byte(s)
Diff to previous 36 
Seems -nostdlib was the problem with the constructor/destructor - remove it
from Makefile.am, and change the constructor/destructor names again.
Revision 36 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Mar 13 23:29:28 2005 UTC (8 years, 2 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37496 byte(s)
Diff to previous 35 
Also rename the _init() and _fini() declarations.
Revision 35 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Mar 13 23:23:00 2005 UTC (8 years, 2 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 37500 byte(s)
Diff to previous 32 
Fixup the constructor/destructor function names again (they should be _init()
and _fini() it seems, and not being called caused sandbox_lib_path to be
unset, and thus breaking the execve() wrapper's LD_PRELOAD protection).
Add both the path in given SANDBOX_x variable, as well as its symlink
resolved path in init_env_entries().  Modify filter_path() to be able to
resolve paths without resolving symlinks, as well as to be able to resolve
symlinks.  Fix a possible segfault in check_access().  Add symlink resolving
to check_access() resolving bug #31019.  Add 'hack' for unlink, as the fix
for bug #31019 cause access violations if we try to remove a symlink that is
not in protected path, but points to a protected path.  Fix a memory leak in
sandbox.c (sandbox_pids_file in main()).  Fix the realpath() calls in main()
(sandbox.c) being unchecked.  Fix the debug logname not having the pid in it
(pid_string was uninitialized).  General syntax cleanups.
Revision 32 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Mar 2 17:30:16 2005 UTC (8 years, 2 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 32684 byte(s)
Diff to previous 30 
Hack to make sure sandboxed process cannot remove a device node, bug #79836.
Revision 30 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Mar 2 09:04:45 2005 UTC (8 years, 2 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 32834 byte(s)
Diff to previous 29 
White space fixes.
Revision 29 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Mar 2 09:01:36 2005 UTC (8 years, 2 months ago) by azarah
Original Path: trunk/libsandbox.c
File length: 33215 byte(s)
Diff to previous 28 
Fix inverse test logic in canonicalize.c, use a strncpy.  Fix gcc warning in
getcwd.c.  Add symbols.in and logic to Makefile.am to generate symbol versions
for glibc and other libc's that use this.  Update libsandbox.c to use these
symbol versions if available.  Fix exec wrapper to re-export LD_PRELOAD if the
process unset it.
Revision 28 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Wed Mar 2 05:48:12 2005 UTC (8 years, 2 months ago) by ferringb
Original Path: trunk/libsandbox.c
File length: 32959 byte(s)
Diff to previous 26 
killed off _init and _fini in favor of
void __attribute__ ((constructor)) init_func and
void __attribute__ ((destructor)) closing_func.  _(init|func) were deprecated.
Revision 26 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Mon Dec 6 21:42:51 2004 UTC (8 years, 5 months ago) by ferringb
Original Path: trunk/libsandbox.c
File length: 32794 byte(s)
Diff to previous 25 
hopefully cvs is done being stupid.  Compilation fixes, along w/ make dist fix.
Revision 25 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Dec 5 06:14:21 2004 UTC (8 years, 5 months ago) by ferringb
Original Path: trunk/libsandbox.c
File length: 32795 byte(s)
Diff to previous 24 
compilation fixups.
Revision 24 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Sun Dec 5 05:42:10 2004 UTC (8 years, 5 months ago) by ferringb
Original Path: trunk/libsandbox.c
File length: 32770 byte(s)
Diff to previous 22 
should make things compile again
Revision 22 - (view) (download) (as text) (annotate) - [select for diffs]
Modified Thu Dec 2 05:20:50 2004 UTC (8 years, 5 months ago) by vapier
Original Path: trunk/libsandbox.c
File length: 32768 byte(s)
Diff to previous 2 
need to include config.h
Revision 2 - (view) (download) (as text) (annotate) - [select for diffs]
Added Fri Nov 19 22:03:42 2004 UTC (8 years, 6 months ago) by ferringb
Original Path: trunk/libsandbox.c
File length: 32748 byte(s) 
Initial revision

This form allows you to request diffs between any two revisions of this file. For each of the two "sides" of the diff, enter a numeric revision.

  Diffs between and
  Type of Diff should be a

Sticky Revision:
  ViewVC Help
Powered by ViewVC 1.1.13