| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Add tame(2) to file(1) and drop the old systrace(4) sandbox. tame(2) is |   nicm | 2015-10-04 | 3 | -168/+44 |
| * | Repair tame() error check to be == -1 |   deraadt | 2015-10-04 | 2 | -4/+4 |
| * | Add ktracing of tame()'s arguments' values |   guenther | 2015-10-03 | 4 | -26/+30 |
| * | option LFS is dead, but we missed option ACCOUNTING here | guenther | 2015-10-03 | 1 | -3/+3 |
| * | you can't edit stdin in place. check for this before the hack that |   tedu | 2015-10-03 | 1 | -1/+3 |
| * | Now that dc(1) no longer supports !command with popen(), we can start | deraadt | 2015-10-03 | 1 | -1/+7 |
| * | delete documentation for ! command | deraadt | 2015-10-03 | 1 | -6/+2 |
| * | disable ! command, makes dc(1) more tameable |   otto | 2015-10-03 | 1 | -10/+2 |
| * | wc only opens files read-only, proceses them, and spits results to stdout. | deraadt | 2015-10-03 | 1 | -1/+4 |
| * | As pointed out by tobiasu, ed-style patches still use popen() and execute | deraadt | 2015-10-03 | 1 | -2/+2 |
| * | - Simplify use of ctype functions. |   tim | 2015-10-03 | 1 | -16/+8 |
| * | tame "stdio" right between setlocale and getopt, it is easy to review | deraadt | 2015-10-03 | 1 | -1/+4 |
| * | Fix wrong cast. |   zhuk | 2015-10-03 | 1 | -2/+2 |
| * | grep only opens files read-only, reads via stdio or other methods, performs | deraadt | 2015-10-03 | 1 | -1/+4 |
| * | tame "stdio getpw rpath" can be done quite early after the getopt. | deraadt | 2015-10-03 | 1 | -1/+4 |
| * | leave does a fork, but other than that it is boring stdio. | deraadt | 2015-10-03 | 1 | -2/+5 |
| * | gzip can use tame "stdio wpath cpath fattr". this blocks a lot of | deraadt | 2015-10-03 | 1 | -1/+4 |
| * | BIO_get_fd() could return fd 0; fix error condition. Found at | deraadt | 2015-10-03 | 1 | -2/+2 |
| * | switch from using the systrace-based sandbox to the tame-based sandbox. | deraadt | 2015-10-03 | 1 | -2/+2 |
| * | patch appears to work fully with tame "stdio rpath wpath cpath tmppath fattr". | deraadt | 2015-10-03 | 1 | -1/+4 |
| * | uniq has a complicated initialization around getopt. beforehands, we | deraadt | 2015-10-03 | 1 | -1/+7 |
| * | script is two processes. the main io-loop process can be locked down with | deraadt | 2015-10-03 | 1 | -1/+7 |
| * | finger can either do local users only, or in in remote users. (who | deraadt | 2015-10-03 | 1 | -1/+10 |
| * | whois uses dns to lookup whois servers, and then opens sockets to them. | deraadt | 2015-10-03 | 1 | -1/+4 |
| * | even before it reaches getopt(), this program will never do more than | deraadt | 2015-10-03 | 1 | -1/+4 |
| * | sed only works on files, so the obvious goal is to remove it's network | deraadt | 2015-10-03 | 1 | -1/+9 |
| * | update the -t args list; ok guenther |   jmc | 2015-10-02 | 2 | -5/+5 |
| * | use limits.h instead of sys/param.h to get PATH_MAX | deraadt | 2015-10-02 | 2 | -3/+3 |
| * | avoid sys/param.h, by using PATH_MAX | deraadt | 2015-10-02 | 1 | -1/+1 |
| * | fix email | deraadt | 2015-10-02 | 1 | -2/+2 |
| * | Replace %s in the format string, with its value (macro). |   ratchov | 2015-10-02 | 1 | -2/+2 |
| * | As the socket path is known, use its size rather that PATH_MAX. | ratchov | 2015-10-02 | 1 | -5/+5 |
| * | use macros instead of hard-coded strings for unix sockets paths | ratchov | 2015-10-02 | 1 | -4/+4 |
| * | Add ktracing of argv and envp to execve(2), with envp not traced by default | guenther | 2015-10-02 | 5 | -48/+111 |
| * | a sandbox using tame | deraadt | 2015-10-02 | 1 | -0/+71 |
| * | re-order system calls in order of risk, ok i'll be honest, ordered this | deraadt | 2015-10-02 | 1 | -12/+19 |
| * | update currency exchange rates; | jmc | 2015-10-01 | 1 | -38/+38 |
| * | Another s/M_ASN1_INTEGER_free/ASN1_INTEGER_free/. |   jsing | 2015-10-01 | 1 | -2/+2 |
| * | Check to see if the file to be opened is a directory as soon as is |   lum | 2015-09-29 | 1 | -5/+27 |
| * | rename random.c to util.c so it doesn't look scary. (util.c repo copied) | tedu | 2015-09-29 | 2 | -513/+3 |
| * | Delete the final, inscrutable NOSTRICT and VARARGS lint comments | guenther | 2015-09-29 | 4 | -9/+4 |
| * | Mark eread(), veread(), and eformat() as printf-like and | guenther | 2015-09-29 | 5 | -14/+13 |
| * | Make dired mode treat a double '/' in a path like fundamental mode. | lum | 2015-09-28 | 1 | -2/+2 |
| * | Mark diag() as printf-like | guenther | 2015-09-27 | 2 | -5/+4 |
| * | Mark all the error printing functions as printf-like; fix two format | guenther | 2015-09-27 | 3 | -18/+18 |
| * | lint is dead: delete the trivial uses of /* VARARGS[0-9]+ */ | guenther | 2015-09-27 | 1 | -2/+1 |
| * | whitespace |   jasper | 2015-09-26 | 8 | -53/+52 |
| * | tweak previous; | jmc | 2015-09-26 | 1 | -3/+4 |
| * | Add transpose-paragraphs. ok jasper@ | lum | 2015-09-26 | 4 | -5/+53 |
| * | briefly document -T tree output |   schwarze | 2015-09-26 | 1 | -2/+42 |
