[Systrace] (linux) new userland snapshot works better, but...

[Caspar Clemens Mierau]

Hi there,


the new snapshot (2004-01-09) works definitely a bit better. I compile
it as usual:

1.) setting "1.4" to "1.5" in "configure"
2.) adding "2.50" to autoconf-binary-call in "configure"
3.) removing netbsd, openbsd and darwin stuff from configure (otherwise
"make" wants to compile for netbsd. dunno why).
4.) configure, make, make install

what newly works is "systrace -A"

so "systrace -A ls" brings a ~/.systrace/bin_ls" with this content:

----
Policy: /bin/ls, Emulation: linux
  linux-newuname: permit
  linux-brk: permit
  linux-fsread: filename eq "/etc/ld.so.preload" then permit
  linux-fsread: filename eq "/etc/ld.so.cache" then permit
  linux-fstat64: permit
  linux-old_mmap: permit
  linux-close: permit
  linux-fsread: filename eq "/lib/librt.so.1" then permit
  linux-read: permit
  linux-mprotect: permit
  linux-fsread: filename eq "/lib/libc.so.6" then permit
  linux-fsread: filename eq "/lib/libpthread.so.0" then permit
  linux-munmap: permit
  linux-getrlimit: permit
  linux-setrlimit: permit
  linux-getpid: permit
  linux-rt_sigaction: permit
  linux-rt_sigprocmask: permit
  linux-sysctl: permit
  linux-ioctl: permit
  linux-fsread: filename eq "/dev/null" then permit
  linux-fsread: filename eq "/home/ccm/.systrace" then permit
  linux-fcntl64: permit
  linux-getdents64: permit
  linux-ni_syscall-1exit: permit
----

but...

This is actually the only thin that works and only once. If I call this
again with "-a" or "-A" I'm just getting a "Killed". When using systrace
without parameters for using the gui I get some questions for new rules
and then the very program called with systrace hangs.

Thanks for your help,

ccm.

p.s.:

Debian woody 3.0
Kernel: 2.4.24 - latest systrace kernel patch for 2.4.20 (1.4)



-- 
Caspar Clemens Mierau
Rosenthaler Straße 40/41h
10178 Berlin

Tel.: 0171-1408435