From provos at citi.umich.edu Fri Mar 24 02:04:15 2006 From: provos at citi.umich.edu (Niels Provos) Date: Fri Mar 24 02:04:17 2006 Subject: [Systrace] Systrace 1.6: Phoenix Release In-Reply-To: <850f7cbe0603232303r3c9ddc30yf575ba8695849e9@mail.gmail.com> References: <850f7cbe0603232303r3c9ddc30yf575ba8695849e9@mail.gmail.com> Message-ID: <850f7cbe0603232304h6db2bf64ofe8ef9221d909918@mail.gmail.com> Hi, It has been over three years since I originally released Systrace and I am happy to announce Systrace 1.6: Phoenix Release. Although, Systrace has been integrated into OpenBSD and NetBSD, adoption by Linux has been hindered due to difficulties of getting our system call interposition interface integrated into the kernel. I recently took some time to implement a Ptrace-based backend for Systrace to make at least some of its features available to Linux users who do not want to patch their kernel. Although it's not complete yet, many applications work fine with it. Systrace enforces system call policies for applications by constraining the application's access to the system. Policy is generated interactively, automatically or magically. Systrace is not a MAC-system. It's purpose is to allow users to run untrusted applications like the latest malware collected by your honeypot. A quick reminder of what Systrace provides - confinement of complex or untrusted binary applications. - interactive policy generation with graphical user interface. - support for different emulations: GNU/Linux, BSDI, etc.. - non-interactive policy enforcement. - remote monitoring and intrusion detection. - automatic policy generation. Here is what a ptrace-based backend cannot provide: - tight security: a clever attacker can escape some of the sandbox by using cooperating threads to bypass the monitor. - performance: ptrace is very slow compared to native Systrace support in the kernel - transparency: ptrace is very intrusive. child status waiting, process groups, signal masking, etc. need to be emulated in userland. Yuck. - privilege elevation: not possible with ptrace - running binaries under emulation In any case, give Systrace a spin. If you like it, install Marius Eriksen's excellent kernel patches for Linux. You can find more information at http://www.citi.umich.edu/u/provos/systrace/ http://www.citi.umich.edu/u/provos/systrace/linux.html Regards, Niels Provos. From provos at citi.umich.edu Mon Mar 27 03:38:41 2006 From: provos at citi.umich.edu (Niels Provos) Date: Mon Mar 27 03:38:43 2006 Subject: [Systrace] Systrace 1.6a release Message-ID: <850f7cbe0603270038k65666bd7xa8cb9b8b2d5fc82b@mail.gmail.com> Another release to make Systrace work better on Linux's ptrace. The new release adds the following features: - support for multi-threaded applications - performance improvements - dont triggers a kernel bug that could crash your machine. As always, you can download it from: http://www.citi.umich.edu/u/provos/systrace/ Niels. From stephan at buckmaster.ca Mon Mar 27 08:10:22 2006 From: stephan at buckmaster.ca (Stephan Wehner) Date: Mon Mar 27 18:14:20 2006 Subject: [Systrace] Problem building systrace 1.6a Message-ID: <4427E43E.4060604@buckmaster.ca> Hi there, so I downloaded the new version of systrace, 1.6a and ran into problems on my Fedora Core 5 machine. The "simple regression tests" fail. I captured all with 'script', see below. I had to change the Makefile otherwise the linux/user.h file was not found. I don't know whether I dealt with that properly (see diff /tmp/Makefile Makefile line below) Here is the failure of the test: Performing simple regression tests nm: FAILED uniq: FAILED Another thing I can't understand is this, which occurs within running ./configure (see below as well) /home/stephan/downloads/systrace-1.6a/missing: Unknown `--run' option Try `/home/stephan/downloads/systrace-1.6a/missing --help' for more information What to do? Stephan Script started on Mon 27 Mar 2006 04:57:42 AM PST stephan@myosin:~/downloads:stephan@myosin downloads]$ tar zxf systrace-1.6a.tar.gz stephan@myosin:~/downloads:stephan@myosin downloads]$ cd systrace-1.6a stephan@myosin:~/downloads/systrace-1.6a: ./configure checking build system type... i686-pc-linux-gnu checking host system type... i686-pc-linux-gnu checking target system type... i686-pc-linux-gnu checking for a BSD-compatible install... /usr/bin/install -c checking whether build environment is sane... yes /home/stephan/downloads/systrace-1.6a/missing: Unknown `--run' option Try `/home/stephan/downloads/systrace-1.6a/missing --help' for more information configure: WARNING: `missing' script is too old or missing checking for gawk... gawk checking whether make sets $(MAKE)... yes checking whether make sets $(MAKE)... (cached) yes checking for gcc... gcc checking for C compiler default output file name... a.out checking whether the C compiler works... yes checking whether we are cross compiling... no checking for suffix of executables... checking for suffix of object files... o checking whether we are using the GNU C compiler... yes checking whether gcc accepts -g... yes checking for gcc option to accept ANSI C... none needed checking for style of include used by make... GNU checking dependency style of gcc... none checking for ranlib... ranlib checking for a BSD-compatible install... /usr/bin/install -c checking for flex... flex checking for yywrap in -lfl... yes checking lex output file root... lex.yy checking whether yytext is a pointer... yes checking for bison... bison -y checking how to run the C preprocessor... gcc -E checking for egrep... grep -E checking for ANSI C header files... yes checking for sys/wait.h that is POSIX.1 compatible... yes checking for sys/types.h... yes checking for sys/stat.h... yes checking for stdlib.h... yes checking for string.h... yes checking for memory.h... yes checking for strings.h... yes checking for inttypes.h... yes checking for stdint.h... yes checking for unistd.h... yes checking sys/ioctl.h usability... yes checking sys/ioctl.h presence... yes checking for sys/ioctl.h... yes checking sys/time.h usability... yes checking sys/time.h presence... yes checking for sys/time.h... yes checking for unistd.h... (cached) yes checking poll.h usability... yes checking poll.h presence... yes checking for poll.h... yes checking sched.h usability... yes checking sched.h presence... yes checking for sched.h... yes checking linux/systrace.h usability... no checking linux/systrace.h presence... no checking for linux/systrace.h... no checking for sa_len in sockaddr struct... no checking for secure systrace implementation... no - using insecure ptrace checking for an ANSI C-conforming const... yes checking for pid_t... yes checking for size_t... yes checking whether time.h and sys/time.h may both be included... yes checking for u_int64_t... yes checking for u_int32_t... yes checking for u_int16_t... yes checking for u_int8_t... yes checking for in_addr_t... no checking for socklen_t... yes checking whether gcc needs -traditional... no checking return type of signal handlers... void checking for select... yes checking for poll... yes checking for socket... yes checking for strlcpy... no checking for strlcat... no checking for basename... yes checking for dirname... yes checking for setproctitle... no checking for working basename... no checking for working dirname... no checking for libevent... yes checking for symlink race condition protection... no checking for st_mtimespec in struct stat... no checking for execve messages... no checking for warnx... yes configure: creating ./config.status config.status: creating Makefile config.status: creating regress/Makefile config.status: creating config.h config.status: executing depfiles commands stephan@myosin:~/downloads/systrace-1.6a: cat With the Makefile generated a file "linux/user.h" cannot be found. With the Makefile generated a file "linux/user.h" cannot be found. So I changed the Makefile So I changed the Makefile stephan@myosin:~/downloads/systrace-1.6a: diff /tmp/Makefile Makefile 73c73 < DEFAULT_INCLUDES = -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I$(srcdir) -I. --- > DEFAULT_INCLUDES = -I. -I$(srcdir) -I. stephan@myosin:~/downloads/systrace-1.6a: cp /tmp/Makefile Makefile stephan@myosin:~/downloads/systrace-1.6a: uname -a Linux myosin.sugarmotor.net 2.6.15-1.2054_FC5smp #1 SMP Tue Mar 14 16:05:46 EST 2006 i686 i686 i386 GNU/Linux stephan@myosin:~/downloads/systrace-1.6a: make make all-recursive make[1]: Entering directory `/home/stephan/downloads/systrace-1.6a' Making all in . make[2]: Entering directory `/home/stephan/downloads/systrace-1.6a' gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c filter.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c intercept-translate.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c intercept.c intercept.c: In function ?intercept_get_string?: intercept.c:626: warning: pointer targets in passing argument 5 of ?intercept.io? differ in signedness intercept.c: In function ?normalize_filename?: intercept.c:795: warning: control reaches end of non-void function gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c util.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c policy.c policy.c: In function ?systrace_templatedir?: policy.c:466: warning: control reaches end of non-void function gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c systrace-error.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c systrace-translate.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c systrace.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c alias.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c parse.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c lex.c lex.l: In function ?yylex?: lex.l:124: warning: implicit declaration of function ?strlcat? lex.l: At top level: lex.yy.c:1335: warning: ?yyunput? defined but not used gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c cradle.c cradle.c: In function ?mkunserv?: cradle.c:113: warning: implicit declaration of function ?strlcpy? cradle.c: In function ?cradle_server?: cradle.c:176: warning: implicit declaration of function ?setproctitle? gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c register-linux.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c linux-translate.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c linux-ptrace-syscalls.c linux-ptrace-syscalls.c:512: warning: ?linux_translate_policy? defined but not used gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c getopt.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c strlcpy.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c strlcat.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c setproctitle.c gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c basename.c basename.c:31: warning: ?rcsid? defined but not used gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ -I. -I. -I. -Wall -c dirname.c dirname.c:31: warning: ?rcsid? defined but not used gcc -Wall -o systrace filter.o intercept-translate.o intercept.o util.o policy.o systrace-error.o systrace-translate.o systrace.o alias.o parse.o lex.o cradle.o register-linux.o linux-translate.o linux-ptrace-syscalls.o getopt.o strlcpy.o strlcat.o setproctitle.o basename.o dirname.o -levent make[2]: Leaving directory `/home/stephan/downloads/systrace-1.6a' Making all in regress make[2]: Entering directory `/home/stephan/downloads/systrace-1.6a/regress' gcc -DHAVE_CONFIG_H -I. -I. -I.. -g -O2 -c test_stat.c test_stat.c: In function ?main?: test_stat.c:16: warning: incompatible implicit declaration of built-in function ?exit? gcc -g -O2 -o stat test_stat.o gcc -DHAVE_CONFIG_H -I. -I. -I.. -g -O2 -c test_fork.c test_fork.c: In function ?Test1?: test_fork.c:44: warning: incompatible implicit declaration of built-in function ?exit? test_fork.c: In function ?Test2?: test_fork.c:68: warning: incompatible implicit declaration of built-in function ?exit? test_fork.c: In function ?Test3?: test_fork.c:97: warning: incompatible implicit declaration of built-in function ?exit? test_fork.c:105: warning: incompatible implicit declaration of built-in function ?exit? test_fork.c: In function ?main?: test_fork.c:190: warning: incompatible implicit declaration of built-in function ?exit? gcc -g -O2 -o fork test_fork.o Performing simple regression tests nm: FAILED uniq: FAILED make[2]: *** [regress] Error 1 make[2]: Leaving directory `/home/stephan/downloads/systrace-1.6a/regress' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/home/stephan/downloads/systrace-1.6a' make: *** [all] Error 2 stephan@myosin:~/downloads/systrace-1.6a: Script done on Mon 27 Mar 2006 04:59:32 AM PST From provos at citi.umich.edu Mon Mar 27 18:36:27 2006 From: provos at citi.umich.edu (Niels Provos) Date: Mon Mar 27 18:36:29 2006 Subject: [Systrace] Problem building systrace 1.6a In-Reply-To: <4427E43E.4060604@buckmaster.ca> References: <4427E43E.4060604@buckmaster.ca> Message-ID: <850f7cbe0603271536v3309a33crac2184e2fa6dfe75@mail.gmail.com> What's your compiler version and kernel version? Niels. On 3/27/06, Stephan Wehner wrote: > Hi there, > > so I downloaded the new version of systrace, 1.6a and ran into problems > on my Fedora Core 5 machine. The "simple regression tests" fail. I > captured all with 'script', see below. > > I had to change the Makefile otherwise the linux/user.h file was not > found. I don't know whether I dealt with that properly (see diff > /tmp/Makefile Makefile line below) > > Here is the failure of the test: > > Performing simple regression tests > nm: FAILED > uniq: FAILED > > Another thing I can't understand is this, which occurs within running > ./configure (see below as well) > /home/stephan/downloads/systrace-1.6a/missing: Unknown `--run' option > Try `/home/stephan/downloads/systrace-1.6a/missing --help' for more > information > > What to do? > > Stephan > > Script started on Mon 27 Mar 2006 04:57:42 AM PST > stephan@myosin:~/downloads:stephan@myosin downloads]$ tar zxf > systrace-1.6a.tar.gz > stephan@myosin:~/downloads:stephan@myosin downloads]$ cd systrace-1.6a > stephan@myosin:~/downloads/systrace-1.6a: ./configure > checking build system type... i686-pc-linux-gnu > checking host system type... i686-pc-linux-gnu > checking target system type... i686-pc-linux-gnu > checking for a BSD-compatible install... /usr/bin/install -c > checking whether build environment is sane... yes > /home/stephan/downloads/systrace-1.6a/missing: Unknown `--run' option > Try `/home/stephan/downloads/systrace-1.6a/missing --help' for more > information > configure: WARNING: `missing' script is too old or missing > checking for gawk... gawk > checking whether make sets $(MAKE)... yes > checking whether make sets $(MAKE)... (cached) yes > checking for gcc... gcc > checking for C compiler default output file name... a.out > checking whether the C compiler works... yes > checking whether we are cross compiling... no > checking for suffix of executables... > checking for suffix of object files... o > checking whether we are using the GNU C compiler... yes > checking whether gcc accepts -g... yes > checking for gcc option to accept ANSI C... none needed > checking for style of include used by make... GNU > checking dependency style of gcc... none > checking for ranlib... ranlib > checking for a BSD-compatible install... /usr/bin/install -c > checking for flex... flex > checking for yywrap in -lfl... yes > checking lex output file root... lex.yy > checking whether yytext is a pointer... yes > checking for bison... bison -y > checking how to run the C preprocessor... gcc -E > checking for egrep... grep -E > checking for ANSI C header files... yes > checking for sys/wait.h that is POSIX.1 compatible... yes > checking for sys/types.h... yes > checking for sys/stat.h... yes > checking for stdlib.h... yes > checking for string.h... yes > checking for memory.h... yes > checking for strings.h... yes > checking for inttypes.h... yes > checking for stdint.h... yes > checking for unistd.h... yes > checking sys/ioctl.h usability... yes > checking sys/ioctl.h presence... yes > checking for sys/ioctl.h... yes > checking sys/time.h usability... yes > checking sys/time.h presence... yes > checking for sys/time.h... yes > checking for unistd.h... (cached) yes > checking poll.h usability... yes > checking poll.h presence... yes > checking for poll.h... yes > checking sched.h usability... yes > checking sched.h presence... yes > checking for sched.h... yes > checking linux/systrace.h usability... no > checking linux/systrace.h presence... no > checking for linux/systrace.h... no > checking for sa_len in sockaddr struct... no > checking for secure systrace implementation... no - using insecure ptrace > checking for an ANSI C-conforming const... yes > checking for pid_t... yes > checking for size_t... yes > checking whether time.h and sys/time.h may both be included... yes > checking for u_int64_t... yes > checking for u_int32_t... yes > checking for u_int16_t... yes > checking for u_int8_t... yes > checking for in_addr_t... no > checking for socklen_t... yes > checking whether gcc needs -traditional... no > checking return type of signal handlers... void > checking for select... yes > checking for poll... yes > checking for socket... yes > checking for strlcpy... no > checking for strlcat... no > checking for basename... yes > checking for dirname... yes > checking for setproctitle... no > checking for working basename... no > checking for working dirname... no > checking for libevent... yes > checking for symlink race condition protection... no > checking for st_mtimespec in struct stat... no > checking for execve messages... no > checking for warnx... yes > configure: creating ./config.status > config.status: creating Makefile > config.status: creating regress/Makefile > config.status: creating config.h > config.status: executing depfiles commands > stephan@myosin:~/downloads/systrace-1.6a: cat > With the Makefile generated a file "linux/user.h" cannot be found. > With the Makefile generated a file "linux/user.h" cannot be found. > So I changed the Makefile > So I changed the Makefile > stephan@myosin:~/downloads/systrace-1.6a: diff /tmp/Makefile Makefile > 73c73 > < DEFAULT_INCLUDES = -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I$(srcdir) -I. > --- > > DEFAULT_INCLUDES = -I. -I$(srcdir) -I. > stephan@myosin:~/downloads/systrace-1.6a: cp /tmp/Makefile Makefile > stephan@myosin:~/downloads/systrace-1.6a: uname -a > Linux myosin.sugarmotor.net 2.6.15-1.2054_FC5smp #1 SMP Tue Mar 14 > 16:05:46 EST 2006 i686 i686 i386 GNU/Linux > stephan@myosin:~/downloads/systrace-1.6a: make > make all-recursive > make[1]: Entering directory `/home/stephan/downloads/systrace-1.6a' > Making all in . > make[2]: Entering directory `/home/stephan/downloads/systrace-1.6a' > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c filter.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c intercept-translate.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c intercept.c > intercept.c: In function 'intercept_get_string': > intercept.c:626: warning: pointer targets in passing argument 5 of > 'intercept.io' differ in signedness > intercept.c: In function 'normalize_filename': > intercept.c:795: warning: control reaches end of non-void function > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c util.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c policy.c > policy.c: In function 'systrace_templatedir': > policy.c:466: warning: control reaches end of non-void function > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c systrace-error.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c systrace-translate.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c systrace.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c alias.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c parse.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c lex.c > lex.l: In function 'yylex': > lex.l:124: warning: implicit declaration of function 'strlcat' > lex.l: At top level: > lex.yy.c:1335: warning: 'yyunput' defined but not used > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c cradle.c > cradle.c: In function 'mkunserv': > cradle.c:113: warning: implicit declaration of function 'strlcpy' > cradle.c: In function 'cradle_server': > cradle.c:176: warning: implicit declaration of function 'setproctitle' > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c register-linux.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c linux-translate.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c linux-ptrace-syscalls.c > linux-ptrace-syscalls.c:512: warning: 'linux_translate_policy' defined > but not used > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c getopt.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c strlcpy.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c strlcat.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c setproctitle.c > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c basename.c > basename.c:31: warning: 'rcsid' defined but not used > gcc -DHAVE_CONFIG_H -I/usr/src/kernels/2.6.15-1.2054_FC5-i686/include/ > -I. -I. -I. -Wall -c dirname.c > dirname.c:31: warning: 'rcsid' defined but not used > gcc -Wall -o systrace filter.o intercept-translate.o intercept.o util.o > policy.o systrace-error.o systrace-translate.o systrace.o alias.o > parse.o lex.o cradle.o register-linux.o linux-translate.o > linux-ptrace-syscalls.o getopt.o strlcpy.o strlcat.o setproctitle.o > basename.o dirname.o -levent > make[2]: Leaving directory `/home/stephan/downloads/systrace-1.6a' > Making all in regress > make[2]: Entering directory `/home/stephan/downloads/systrace-1.6a/regress' > gcc -DHAVE_CONFIG_H -I. -I. -I.. -g -O2 -c test_stat.c > test_stat.c: In function 'main': > test_stat.c:16: warning: incompatible implicit declaration of built-in > function 'exit' > gcc -g -O2 -o stat test_stat.o > gcc -DHAVE_CONFIG_H -I. -I. -I.. -g -O2 -c test_fork.c > test_fork.c: In function 'Test1': > test_fork.c:44: warning: incompatible implicit declaration of built-in > function 'exit' > test_fork.c: In function 'Test2': > test_fork.c:68: warning: incompatible implicit declaration of built-in > function 'exit' > test_fork.c: In function 'Test3': > test_fork.c:97: warning: incompatible implicit declaration of built-in > function 'exit' > test_fork.c:105: warning: incompatible implicit declaration of built-in > function 'exit' > test_fork.c: In function 'main': > test_fork.c:190: warning: incompatible implicit declaration of built-in > function 'exit' > gcc -g -O2 -o fork test_fork.o > Performing simple regression tests > nm: FAILED > uniq: FAILED > make[2]: *** [regress] Error 1 > make[2]: Leaving directory `/home/stephan/downloads/systrace-1.6a/regress' > make[1]: *** [all-recursive] Error 1 > make[1]: Leaving directory `/home/stephan/downloads/systrace-1.6a' > make: *** [all] Error 2 > stephan@myosin:~/downloads/systrace-1.6a: > Script done on Mon 27 Mar 2006 04:59:32 AM PST > > _______________________________________________ > systrace mailing list > systrace@systrace.org > http://systrace.org/mailman/listinfo/systrace > > From provos at citi.umich.edu Mon Mar 27 20:03:17 2006 From: provos at citi.umich.edu (Niels Provos) Date: Mon Mar 27 20:03:20 2006 Subject: [Systrace] Re: systrace post from stephan@buckmaster.ca requires approval In-Reply-To: References: Message-ID: <850f7cbe0603271703v15a1bc4bt803e18ca7f5ed02@mail.gmail.com> On 3/27/06, systrace-owner@systrace.org wrote: > As list administrator, your authorization is requested for the > following mailing list posting: > > List: systrace@systrace.org > From: stephan@buckmaster.ca > Subject: Re: [Systrace] Problem building systrace 1.6a > Reason: Post to moderated list > > At your convenience, visit: > > https://monkeymail.org/mailman/admindb/systrace > > to approve or deny the request. > > > > ---------- Forwarded message ---------- > From: Stephan Wehner > To: Niels Provos > Date: Mon, 27 Mar 2006 09:01:42 -0800 > Subject: Re: [Systrace] Problem building systrace 1.6a > Kernel Version 2.6.15 > gcc version 4.1.0 20060304 (Red Hat 4.1.0-3) > > [stephan@myosin ~]$ uname -r > 2.6.15-1.2054_FC5smp > > stephan@myosin ~]$ gcc -v > Using built-in specs. > Target: i386-redhat-linux > Configured with: ../configure --prefix=/usr --mandir=/usr/share/man > --infodir=/usr/share/info --enable-shared --enable-threads=posix > --enable-checking=release --with-system-zlib --enable-__cxa_atexit > --disable-libunwind-exceptions --enable-libgcj-multifile > --enable-languages=c,c++,objc,obj-c++,java,fortran,ada > --enable-java-awt=gtk --disable-dssi > --with-java-home=/usr/lib/jvm/java-1.4.2-gcj-1.4.2.0/jre > --with-cpu=generic --host=i386-redhat-linux > Thread model: posix > gcc version 4.1.0 20060304 (Red Hat 4.1.0-3) > > Stephan > > > > ---------- Forwarded message ---------- > From: systrace-request@systrace.org > To: > Date: > Subject: confirm 3d728ec90b7c6f127ffa17e797249990ae2ddd43 > If you reply to this message, keeping the Subject: header intact, > Mailman will discard the held message. Do this if the message is > spam. If you reply to this message and include an Approved: header > with the list password in it, the message will be approved for posting > to the list. The Approved: header can also appear in the first line > of the body of the reply. > >