wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

	Commit message (Collapse)	Author	Age	Files	Lines
*	add a new message: inject. this allows the tracer to to inject buffers into	marius	2004-11-07	1	-12/+89
\| \| \| \| \| \| \|	the stackgap. this in turn allows for argument replacement with indirection. for example replacing an entire envp or struct pollfd. ok provos@ millert@
*	fix an issue when scripts are exec'd under systrace where	marius	2004-07-07	1	-31/+108
\| \| \| \| \| \| \| \| \|	the argv[0] would be normalized, and hence break scripts that depend on how they were called. this fixes an issue in the ports builds. ok provos@ deraadt@; lots of testing during hackathon sturm@ naddy@
*	a few fixes to systrace	marius	2004-06-23	1	-18/+61
\| \| \| \| \| \| \| \| \| \| \| \|	- add an exec message so that whenever a set-uid/gid process exec's a new image which we may control, the exec does not go by unnoticed. - take special care to check for P_SUGIDEXEC as well as P_SUGID, corresponding to the same changes that were made in the ptrace code a while ago ok niels@, sturm@; thanks to naddy for testing
*	typos from Tom Cosgrove;	jmc	2003-10-21	1	-3/+3
\|
*	originally from cb@netbsd.org, adapted by provos	sturm	2003-10-08	1	-72/+144
\| \| \| \| \| \| \| \| \| \| \| \| \|	itojun@ ok fix a race condition between path resolution in userland and the subsequent namei(): inform the kernel portion of valid filenames and then disallow symlink lookups for those filenames by means of a hook in namei(). with suggestions from provos@ also, add (currently unused) seqnr field to struct systrace_replace, from provos@
*	Replace select backends with poll backends. selscan() and pollscan()	millert	2003-09-23	1	-14/+16
\| \| \| \| \| \| \|	now call the poll backend. With this change we implement greater poll(2) functionality instead of emulating it via the select backend. Adapted from NetBSD and including some changes from FreeBSD. Tested by many, deraadt@ OK
*	change arguments to suser. suser now takes the process, and a flags	tedu	2003-08-15	1	-3/+3
\| \| \| \| \| \| \| \| \|	argument. old cred only calls user suser_ucred. this will allow future work to more flexibly implement the idea of a root process. looks like something i saw in freebsd, but a little different. use of suser_ucred vs suser in file system code should be looked at again, for the moment semantics remain unchanged. review and input from art@ testing and further review miod@
*	- limited number of processes per systrace	itojun	2003-06-16	1	-4/+43
\| \| \| \| \|	- escape fixes for special characters markus, sturm ok. from provos
*	unbreak	henning	2003-03-28	1	-2/+1
\| \| \| \| \| \|	STRIOCCLONE and SYSTR_CLONE have the same value now ok mickey@
*	Fix a crash in the systrace found by form@	art	2003-02-20	1	-55/+57
\| \| \| \| \| \| \|	One is a kernel fix that changes the lockin and one is a userland fix that prevents dereferencing a freed pointer. From provos deraadt@ ok
*	statement after label.	art	2002-12-12	1	-1/+2
\|
*	rename the clone ioctl to avoid clashing w/ the sockio; provos@ ok	mickey	2002-12-04	1	-1/+2
\|
*	Be more careful with illegal syscall numbers.	art	2002-11-10	1	-1/+6
\|
*	add id tags.	fgsch	2002-10-25	1	-0/+1
\|
*	support for privilege elevation.	itojun	2002-10-16	1	-56/+152
\| \| \| \| \| \| \| \| \| \| \|	with privilege elevation no suid or sgid binaries are necessary any longer. Applications can be executed completely unprivileged. Systrace raises the privileges for a single system call depending on the configured policy. Idea from discussions with Perry Metzger, Dug Song and Marcus Watts. from provos
*	new message to track uid/gid changes	itojun	2002-10-09	1	-0/+32
\| \| \| \|	from provos
*	cast size_t to u_long on printing. from netbsd	itojun	2002-08-28	1	-4/+4
\|
*	return EBUSY in processready	provos	2002-08-07	1	-2/+2
\|
*	minor KNF. pid_t is unsigned.	itojun	2002-07-30	1	-6/+6
\|
*	whitespace at EOL	itojun	2002-07-30	1	-10/+10
\|
*	better uid/gid tracking; okay deraadt@	provos	2002-07-24	1	-5/+18
\|
*	prevent double free in some error conditions; from xs@kittenz.org	provos	2002-07-23	1	-1/+3
\|
*	add seqnr to message from kernel, userland needs to quote correct seqnr.	provos	2002-07-22	1	-0/+9
\| \| \| \|	avoids problems where tsleep has been interrupted by a signal.
*	two more missing systrace_lock	itojun	2002-07-21	1	-0/+4
\|
*	need systrace_lock/unlock around lockmgr lock operation. provos ok	itojun	2002-07-21	1	-0/+2
\|
*	comment clarification. niels ok	itojun	2002-07-20	1	-1/+2
\|
*	minor KNF	itojun	2002-07-19	1	-1/+1
\|
*	whitespace	itojun	2002-07-19	1	-7/+7
\|
*	tabify	itojun	2002-07-19	1	-7/+7
\|
*	do not call unlock when the lock is not locked; found by millert@	provos	2002-07-13	1	-27/+29
\|
*	in the error case, just remove an installed argument replacement, it is not	provos	2002-07-12	1	-2/+6
\| \| \| \|	needed
*	system call argument rewriting framework via stackgap; okay art@	provos	2002-06-21	1	-12/+124
\|
*	more __FUNCTION__ slaughter	espie	2002-06-10	1	-10/+10
\|
*	new ioctl that reports the current emulation a process uses; needed for	provos	2002-06-10	1	-1/+15
\| \| \| \|	attaching to a running process
*	make fsystrace available in systrace.h; keep some more stats.	provos	2002-05-19	1	-23/+3
\|
*	when detaching form a process don't forget to remove posted messages.	provos	2002-05-18	1	-8/+12
\|
*	systrace facility, used to enforce and generate policies for system calls	provos	2002-05-16	1	-0/+1249
	okay deraadt@