| Commit message (Expand) | Author | Age | Files | Lines |
* | Add tame(2) to file(1) and drop the old systrace(4) sandbox. tame(2) is | nicm | 2015-10-04 | 3 | -168/+44 |
* | Repair tame() error check to be == -1 | deraadt | 2015-10-04 | 2 | -4/+4 |
* | Add ktracing of tame()'s arguments' values | guenther | 2015-10-03 | 4 | -26/+30 |
* | option LFS is dead, but we missed option ACCOUNTING here | guenther | 2015-10-03 | 1 | -3/+3 |
* | you can't edit stdin in place. check for this before the hack that | tedu | 2015-10-03 | 1 | -1/+3 |
* | Now that dc(1) no longer supports !command with popen(), we can start | deraadt | 2015-10-03 | 1 | -1/+7 |
* | delete documentation for ! command | deraadt | 2015-10-03 | 1 | -6/+2 |
* | disable ! command, makes dc(1) more tameable | otto | 2015-10-03 | 1 | -10/+2 |
* | wc only opens files read-only, proceses them, and spits results to stdout. | deraadt | 2015-10-03 | 1 | -1/+4 |
* | As pointed out by tobiasu, ed-style patches still use popen() and execute | deraadt | 2015-10-03 | 1 | -2/+2 |
* | - Simplify use of ctype functions. | tim | 2015-10-03 | 1 | -16/+8 |
* | tame "stdio" right between setlocale and getopt, it is easy to review | deraadt | 2015-10-03 | 1 | -1/+4 |
* | Fix wrong cast. | zhuk | 2015-10-03 | 1 | -2/+2 |
* | grep only opens files read-only, reads via stdio or other methods, performs | deraadt | 2015-10-03 | 1 | -1/+4 |
* | tame "stdio getpw rpath" can be done quite early after the getopt. | deraadt | 2015-10-03 | 1 | -1/+4 |
* | leave does a fork, but other than that it is boring stdio. | deraadt | 2015-10-03 | 1 | -2/+5 |
* | gzip can use tame "stdio wpath cpath fattr". this blocks a lot of | deraadt | 2015-10-03 | 1 | -1/+4 |
* | BIO_get_fd() could return fd 0; fix error condition. Found at | deraadt | 2015-10-03 | 1 | -2/+2 |
* | switch from using the systrace-based sandbox to the tame-based sandbox. | deraadt | 2015-10-03 | 1 | -2/+2 |
* | patch appears to work fully with tame "stdio rpath wpath cpath tmppath fattr". | deraadt | 2015-10-03 | 1 | -1/+4 |
* | uniq has a complicated initialization around getopt. beforehands, we | deraadt | 2015-10-03 | 1 | -1/+7 |
* | script is two processes. the main io-loop process can be locked down with | deraadt | 2015-10-03 | 1 | -1/+7 |
* | finger can either do local users only, or in in remote users. (who | deraadt | 2015-10-03 | 1 | -1/+10 |
* | whois uses dns to lookup whois servers, and then opens sockets to them. | deraadt | 2015-10-03 | 1 | -1/+4 |
* | even before it reaches getopt(), this program will never do more than | deraadt | 2015-10-03 | 1 | -1/+4 |
* | sed only works on files, so the obvious goal is to remove it's network | deraadt | 2015-10-03 | 1 | -1/+9 |
* | update the -t args list; ok guenther | jmc | 2015-10-02 | 2 | -5/+5 |
* | use limits.h instead of sys/param.h to get PATH_MAX | deraadt | 2015-10-02 | 2 | -3/+3 |
* | avoid sys/param.h, by using PATH_MAX | deraadt | 2015-10-02 | 1 | -1/+1 |
* | fix email | deraadt | 2015-10-02 | 1 | -2/+2 |
* | Replace %s in the format string, with its value (macro). | ratchov | 2015-10-02 | 1 | -2/+2 |
* | As the socket path is known, use its size rather that PATH_MAX. | ratchov | 2015-10-02 | 1 | -5/+5 |
* | use macros instead of hard-coded strings for unix sockets paths | ratchov | 2015-10-02 | 1 | -4/+4 |
* | Add ktracing of argv and envp to execve(2), with envp not traced by default | guenther | 2015-10-02 | 5 | -48/+111 |
* | a sandbox using tame | deraadt | 2015-10-02 | 1 | -0/+71 |
* | re-order system calls in order of risk, ok i'll be honest, ordered this | deraadt | 2015-10-02 | 1 | -12/+19 |
* | update currency exchange rates; | jmc | 2015-10-01 | 1 | -38/+38 |
* | Another s/M_ASN1_INTEGER_free/ASN1_INTEGER_free/. | jsing | 2015-10-01 | 1 | -2/+2 |
* | Check to see if the file to be opened is a directory as soon as is | lum | 2015-09-29 | 1 | -5/+27 |
* | rename random.c to util.c so it doesn't look scary. (util.c repo copied) | tedu | 2015-09-29 | 2 | -513/+3 |
* | Delete the final, inscrutable NOSTRICT and VARARGS lint comments | guenther | 2015-09-29 | 4 | -9/+4 |
* | Mark eread(), veread(), and eformat() as printf-like and | guenther | 2015-09-29 | 5 | -14/+13 |
* | Make dired mode treat a double '/' in a path like fundamental mode. | lum | 2015-09-28 | 1 | -2/+2 |
* | Mark diag() as printf-like | guenther | 2015-09-27 | 2 | -5/+4 |
* | Mark all the error printing functions as printf-like; fix two format | guenther | 2015-09-27 | 3 | -18/+18 |
* | lint is dead: delete the trivial uses of /* VARARGS[0-9]+ */ | guenther | 2015-09-27 | 1 | -2/+1 |
* | whitespace | jasper | 2015-09-26 | 8 | -53/+52 |
* | tweak previous; | jmc | 2015-09-26 | 1 | -3/+4 |
* | Add transpose-paragraphs. ok jasper@ | lum | 2015-09-26 | 4 | -5/+53 |
* | briefly document -T tree output | schwarze | 2015-09-26 | 1 | -2/+42 |