commit 3c6ed890530abc690147bec4bbb6643995ad71e8
Author: Sergei Trofimovich <slyfox@gentoo.org>
Date:   Fri Jul 12 07:32:40 2019 +0100

    Bump version up to 2.18
    
    Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>

commit 604927f331829f971d3a32c2e67e0ad5ce3d8ee4
Author: Sergei Trofimovich <slyfox@gentoo.org>
Date:   Thu Jun 27 10:09:56 2019 +0100

    tests: disable utimensat-3 on *-linux-musl
    
    x86_64-gentoo-linux-musl fails a single test:
        83: utimensat/3     FAILED (utimensat.at:3)
    
    The test checks if sandbox does not crash when
        utimensat(<filefd>, NULL, NULL, 0)
    is called. The behaviour is not specified by POSIX
    but glibc returns EINVAL for such a case. Thus the
    test behaves differently on varius libs.
    
    https://www.openwall.com/lists/musl/2019/06/25/1 has
    a conversation with musl upstream.
    
    The change restricts test down to glibc targets.
    
    Bug: https://bugs.gentoo.org/549108
    Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>

commit ee52c156905c419323865e7cdd2deb46040f0c8a
Author: Sergei Trofimovich <slyfox@gentoo.org>
Date:   Sun Jun 23 21:50:54 2019 +0100

    scripts/gen_symbol_header.awk: undefine libc symbol aliases
    
    Avoid libc's symbol rename via #define. musl defines aliases as:
       #define mkstemp64 mkstemp
       #define mkstemps64 mkstemps
    
    This causes libsandbox's aliases to clash with one another,
    like mkstemp and mkstemp64.
    
    The change does not break glibc and restores musl support.
    
    Bug: https://bugs.gentoo.org/549108
    Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>

commit ed72f5d07f627464a95ab377cd101d90d4d10c7d
Author: Sergei Trofimovich <slyfox@gentoo.org>
Date:   Sun Jun 23 21:48:26 2019 +0100

    libsandbox/trace.c: tweak ptrace command type for musl
    
    glibc defines ptrace as:
      long ptrace(enum __ptrace_request request, pid_t pid, void *addr, void *data);
    musl defines ptrace as:
      long ptrace(int, ...);
    
    This causes build failure in for of:
        ../../sandbox-2.17/libsandbox/trace/linux/x86_64.c: In function 'trace_set_ret':
        ../../sandbox-2.17/libsandbox/trace/linux/x86_64.c:99:2: error: type of formal parameter 1 is incomplete
          trace_set_regs(regs);
          ^~~~~~~~~~~~~~
    
    Let's clobber to 'int' lowest common denominator.
    
    Bug: https://bugs.gentoo.org/549108
    Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>

commit b61c0675825454286d925f5a360d225622f961dc
Author: Andreas K. Hüttel <dilfridge@gentoo.org>
Date:   Wed Mar 13 11:00:34 2019 +0100

    Bump to 2.17
    
    Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org>

commit 18b1979734f57726c0a601ade0505c2e4615947d
Author: Sergei Trofimovich <slyfox@gentoo.org>
Date:   Mon Mar 11 21:27:08 2019 +0000

    configure.ac: fix libc.so.6 detection on ld.gold
    
    As reported by Mike Lothian below failed as:
        $ ./configure LDFLAGS=-fuse-ld=gold
    > checking libc path... configure: error: Unable to determine LIBC PATH (/lib64/libc.so.6")
    
    The regression happened in 3c0010366
    ("configure.ac: add lld detection support")
    where "attempt" keyword in verbose linker log was used as a hint
    to use bfd or gold output parser. Unfortunately ld.gold uses
    "Attempt" spelling.
    
    The change is to use the "[Aa]ttempt" substring matcher.
    Tweak the parser to also match on "[Aa]ttempt" explicitly.
    
    Tested on bfd, gold and lld.
    
    Reported-by: Mike Lothian
    Bug: https://bugs.gentoo.org/680034
    Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>
    Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org>

commit d259fda6b0a0bbf32986d882b9691815d6a99af2
Author: Andreas K. Hüttel <dilfridge@gentoo.org>
Date:   Sun Mar 10 11:18:49 2019 +0100

    Bump to 2.16
    
    Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org>

commit 3c001036637930152c038d084334d9a7311ffc6e
Author: Sergei Trofimovich <slyfox@gentoo.org>
Date:   Thu Mar 7 23:41:54 2019 +0000

    configure.ac: add lld detection support
    
    With this change
        $ ./configure CC=clang LDFLAGS='-Wl,--hash-style=gnu -fuse-ld=lld'
        $ make check
    exposes 35 test failures
    
    Bug: https://bugs.gentoo.org/672918
    Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>

commit c8146cfbcd36f9be4a447bf057811fe2f6c543b2
Author: Sergei Trofimovich <slyfox@gentoo.org>
Date:   Sat Mar 2 19:15:14 2019 +0000

    exec wrapper: add support for GNU_HASH parser
    
    In bug #672918 exec's ELF parser was going out of symbol table
    range. It happened to trigger on a binary linked by LLVM's lld.
    
    sandbox has no precise way to determine symbol table size and
    uses the heuristic of detecting SYMTAB dynamic section size:
    STRTAB (or GNU_LIBLIST for prelinked binaries).
    
    This is a weak assumption and does not hold for lld-linked
    binaries where the ordering is SYMTAB->GNU_HASH->STRTAB.
    As a result sandbox SIGSEGVs when parses GNU_HASH as SYMTAB
    entries.
    
    The change adds GNU_HASH parser to iterate exactly through
    exported symbols. That way we avoid heuristic code completely.
    
    While at it repobe GNU_LIBLIST hack as we should not rely
    on size heuristics anymore.
    
    This has a nice side-effect of speeding up ELF parsing as
    GHU_HASH only iterates through exported symbols. HASH
    comparison has all dynamic symbols: both exported and
    imported.
    
    Reported-by: Dennis Schridde
    Bug: https://bugs.gentoo.org/672918
    Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>

commit ab30b4c73772c4b98a0d36e0f290f60bc8f16907
Author: Michał Górny <mgorny@gentoo.org>
Date:   Sun Jan 13 12:33:24 2019 +0100

    m4: ax_* update via autogen.sh
    
    Signed-off-by: Michał Górny <mgorny@gentoo.org>

commit 5bb0ea55ac8581fe9e390ac68cd0d6c6481eeee0
Author: Michał Górny <mgorny@gentoo.org>
Date:   Sun Jan 13 12:26:43 2019 +0100

    Flatten data, etc & scripts Makefiles
    
    Signed-off-by: Michał Górny <mgorny@gentoo.org>

commit 0866b74c29402d3df89b698e760713ce49c41eb9
Author: Michał Górny <mgorny@gentoo.org>
Date:   Sun Jan 13 12:21:43 2019 +0100

    Remove pointless .pch support
    
    Signed-off-by: Michał Górny <mgorny@gentoo.org>

commit 0e4331e07a560b04f537741d0a56ecf8338e8e3d
Author: Michał Górny <mgorny@gentoo.org>
Date:   Wed Jan 9 14:40:02 2019 +0100

    Bump to 2.15
    
    Signed-off-by: Michał Górny <mgorny@gentoo.org>

commit f3e51a930312422cc78b693a247b7c5704ac90a2
Author: Sergei Trofimovich <slyfox@gentoo.org>
Date:   Sun Jan 6 09:32:55 2019 +0000

    exec*() wrappers: never mutate 'environ' of host process
    
    In bug #669702 gcc exposed sandbox bug where execv()
    wrapper changed 'environ' global variable underneath.
    
    A few GNU projects (pex_unix_exec_child in gcc and gdb)
    use the following idiom:
    
    for (;;) {
        vfork();
        char ** save_environ = environ; // [1]
        if (child) {
            environ = child_environ; // [2]
            execv(payload); // [3]
        }
        if (parent) {
            environ = save_environ; // [4]
            ...
            waitpid(child, ...);
        }
    }
    
    Code above assumes that execv() does not mutate 'environ'.
    
    In case of #669702 sandbox's execv() wrapper at '[3]' mutated
    'environ' and relocated it (via maloc()/free() internally).
    This caused '[4]' to point 'environ' fo freed location.
    
    The change fixes it in a following way:
    - execv() call now works more like execve() call by mutating
      external array and substitutes 'environ' only for a period
      of 'execv()' execution.
    - add basic execv()/'environ' corruption test
    
    Tested on:
    - linux/glibc-2.28
    - linux/uclibc-ng-1.0.31
    
    Reported-and-tested-by: Walther
    Reported-by: 0x6d6174@posteo.de
    Reported-by: Andrey Korolyov
    Bug: https://bugs.gentoo.org/669702
    Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>

commit 7fe61d246fa138010f3720a737e6a2da5175c2a9
Author: Michał Górny <mgorny@gentoo.org>
Date:   Sun Dec 2 16:27:34 2018 +0100

    Bump to 2.14
    
    Signed-off-by: Michał Górny <mgorny@gentoo.org>

commit fcb399f5a685f088b9f10d9d57e326ee78f9e6dd
Author: Zac Medico <zmedico@gentoo.org>
Date:   Sun Nov 11 19:56:24 2018 -0800

    libsandbox: resolve_dirfd_path /proc/<pid> namespace safety
    
    If /proc was mounted by a process in a different pid namespace,
    getpid cannot be used create a valid /proc/<pid> path. Instead
    use sb_get_fd_dir() which works in any case. This implements
    option 3 of these choices:
    
    1) Always create a mount namespace when creating a pid namespace,
       and remount /proc so that /proc/<pid> entries are always consistent
       with the current pid namespace.
    
    2) Use readlink on /proc/self instead of getpid to determine the pid
       of self in the pid namespace of the /proc mount.
    
    3) Use /proc/self or /dev/fd directly.
    
    Bug: https://bugs.gentoo.org/670966
    Signed-off-by: Zac Medico <zmedico@gentoo.org>
    Closes: https://github.com/gentoo/sandbox/pull/1
    Signed-off-by: Michał Górny <mgorny@gentoo.org>

commit 8bb9e5e7607ff12f8119729077d3d420e999f7ee
Author: Michał Górny <mgorny@gentoo.org>
Date:   Thu Jul 19 13:27:09 2018 +0200

    libsandbox: Remove meaningless/broken -nodefaultlibs
    
    Remove '-nodefaultlibs' from linking flags for libsandbox as it is
    apparently meaningless and broken at the same time.  When regular
    libtool is used, it silently strips the option, making it meaningless.
    When slibtool is used instead, it passes the option which causes linking
    to fail due to undefined symbols.
    
    Thanks to the bug reporter and slibtool devs from researching
    the problem in detail.
    
    Bug: https://bugs.gentoo.org/657184

commit 24c0098b3bd3b118774b6915c4eb217063dc4376
Author: Michał Górny <mgorny@gentoo.org>
Date:   Mon Feb 19 06:50:18 2018 +0100

    Update autotools files

commit 3cc39bfc6387d1f1f61dd2a8533f5dc6a6edc42c
Author: Michał Górny <mgorny@gentoo.org>
Date:   Mon Feb 19 06:49:45 2018 +0100

    tests: Add a test for LD_PRELOAD non-preserving (SANDBOX_ON=0)

commit 1b0f7b0d035a10ba172b659abbe425c8523bdb96
Author: Michał Górny <mgorny@gentoo.org>
Date:   Mon Feb 12 19:14:07 2018 +0100

    Disable environment propagation if sandbox is disabled
    
    Do not enforce restoring sandbox variables in the environment if sandbox
    is explicitly disabled. This makes it possible to set SANDBOX_ON=0
    and then unset LD_PRELOAD without having to resort to ugly hacks to
    prevent sandbox from restoring itself.
    
    The only limitation is that if user sets SANDBOX_ON=0 first, then wipes
    the environment, he will no longer be able to reenable sandbox via doing
    SANDBOX_ON=1. However, it is rather unlikely that such a thing would
    need to happen in real use.
    
    Bug: https://bugs.gentoo.org/592750

commit 7025fb7c13b2b180997e51d2d8dd9e86fd3059c4
Author: Michał Górny <mgorny@gentoo.org>
Date:   Tue Oct 3 23:24:07 2017 +0200

    Post-release bump to 2.13

commit ecba8795415dd571f894d457001f28d96c3f8a93
Author: Peter Levine <plevine457@gmail.com>
Date:   Tue Sep 26 13:59:42 2017 -0400

    Ensure LD_LIBRARY_PATH is copied to my_env
    
    Sandbox commit 55087abd8dc9802cf68cade776fe612a3f19f6a1 is for the purpose
    of preventing a loop or deadlock caused by a package implementing its own
    libc memory allocation functions, which themselves may call on a sandbox wrapped
    system calls, whose implementation depends on further calls to such memory
    functions. If any binaries export such symbols, sandbox assumes the worst
    and prevents loading of libsandbox.so and instead opts for ptrace.
    
    In preventing the loading of libsandbox, it removes all variables whose
    env_pair.name field matches the name of an environment variable from the
    environment, for all env_pairs of vars[] in
    char **sb_check_envp(char **envp, size_t *mod_cnt, bool insert) in
    "libsandbox/libsandbox.c". This includes not just the usual environment
    variables prefixed with 'SANDBOX_' but also LD_PRELOAD and LD_LIBRARY_PATH.
    LD_PRELOAD clearly should be removed. But LD_LIBRARY_PATH would only seem
    to be trouble if used with LD_PRELOAD. As such it makes sense to me to
    prevent the removal of LD_LIBRARY_PATH.
    
    Given the fact that the the positions of the env_pairs in vars[] are intended
    to be hard-coded (from libsandbox.c: /* Indices matter -- see init below */),
    this commit uses the index of the env_pair corresponding to LD_LIBRARY_PATH to
    prevent its removal.

commit 9ed52ff7daa39cdf4748f5b9c91358f421c8be7a
Author: Michał Górny <mgorny@gentoo.org>
Date:   Mon Sep 25 20:42:03 2017 +0200

    libsandbox: Fix path matching not to dumbly match prefixes
    
    Fix the path matching code to match prefixes component-wide rather than
    literally. This means that a path such as '/foo' will no longer match
    '/foobar' but only '/foo' and its subdirectories (if it is a directory).

commit 8212b2ac2b6384e290084da4d164a5771d5f410a
Author: Michał Górny <mgorny@gentoo.org>
Date:   Mon Sep 25 18:30:51 2017 +0200

    Remove no-longer-necessary symlink hack in ACL
    
    Remove the hack supposedly responsible for making it possible to remove
    symbolic links to protected files. The hack was probably necessary back
    when the write check was performed on fully resolved path. However,
    currently the path resolution is no longer performed when the operation
    does not resolve symlinks, effectively making the hack redundant.

commit ffc185bb4929de36ad3f8766b114cd11be8f0a62
Author: Mart Raudsepp <leio@gentoo.org>
Date:   Fri Nov 11 12:34:48 2016 +0200

    libsandbox: do not abort with a long name to opendir
    
    Add a pre-check for opendir that catches too long name arguments
    given to opendir, as it would get messed up and abort before it
    even gets to the open*() syscall (which would handle it correctly),
    due to opendir going through before_syscall/check_syscall, even
    though it isn't a true syscall and it getting cut to SB_PATH_MAX
    inbetween and getting confused somewhere.
    
    Test case added by Michał Górny <mgorny@gentoo.org>.
    
    Bug: https://bugs.gentoo.org/553092
    Signed-off-by: Mart Raudsepp <leio@gentoo.org>

commit 4c47cfa22802fd8201586bef233d8161df4ff61b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Mar 10 10:15:50 2017 -0800

    libsandbox: whitelist renameat/symlinkat as symlink funcs
    
    These funcs don't deref their path args, so flag them as such.
    
    URL: https://bugs.gentoo.org/612202
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 87d6537245b6f7cbf028e4c0e187cda7484729f0
Author: Guenther Brunthaler <gb_about_gnu@gmx.net>
Date:   Sun Nov 27 13:30:36 2016 -0500

    libsbutil: elide sb_maybe_gdb when -DNDEBUG is used
    
    Since sb_maybe_gdb is set up as a stub macro, make sure we don't define
    the function either to cut down on size and build failures (when the
    macro tries to expand the function prototype).
    
    URL: https://bugs.gentoo.org/600550

commit 3ff625739ab2660e7f0adeb99f75ee44c20fef09
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Nov 16 15:59:28 2016 -0500

    libsandbox: fix symtab walking with prelinked ELFs
    
    When prelink runs on an ELF, it moves the string table from right
    after the symbol table to the end, and then replaces the string
    table with its liblist table.  This ends up breaking sandbox's
    assumption that the string table always follows the symbol table
    leading to prelinked ELFs crashing.
    
    Update the range check to use the liblist table when available.
    Since the prelink code has this logic hardcoded (swapping the
    string table for the liblist table), this should be OK for now.
    
    URL: https://bugs.gentoo.org/599894
    Reported-by: Anders Larsson <anders.gentoo@larsson.xyz>
    Reported-by: Kenton Groombridge <rustyvega@comcast.net>
    Reported-by: Marien Zwart <marien.zwart@gmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 31a135d261a9bc1d65b1fa484345a858bab84db8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 30 01:17:21 2016 -0400

    libsandbox: whitelist execvpe
    
    URL: https://bugs.gentoo.org/578516
    Reported-by: Toralf Förster <toralf.foerster@gmx.de>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e11815bb7f0656f39e122073e0e3284ec7f5d021
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 29 23:35:44 2016 -0400

    libsandbox: fix symtab walking with some ELFs
    
    The strtab assumption works if there is no SysV hash table.
    Add logic to handle that scenario.
    
    URL: https://bugs.gentoo.org/578524
    Reported-by: Toralf Förster <toralf.foerster@gmx.de>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 04250fcd67b2558cd24f561ef47e9d14e91f3d1f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 29 07:14:48 2016 -0400

    bump to sandbox-2.12
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 783847e64953495e7225ed89b1dfccefb14082bf
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 29 07:13:14 2016 -0400

    libsandbox: fix x86 tracing when schizo is active
    
    Commit 48520a35697aa39bed046b9668a3e3e5f8a8ba93 fixed the configure logic,
    but the build would fail to link for x86 systems as the syscall table was
    not actually set up.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e10203aa97bae3060606a9115cd42aaf0c5e0bd9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 29 05:22:56 2016 -0400

    tests: make all shell scripts executable
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9b2b36945ec4e0335e0375cc45e14c41c66d28ae
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 29 05:16:15 2016 -0400

    sandbox: allow user to force SIGKILL
    
    Sometimes the child process can get wedged and not respond to CTRL+C,
    so add an escape hatch so the user can easily force SIGKILL.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9fabf8eb94d8866c4f039462d1bdd06cdb0e22eb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 29 05:03:13 2016 -0400

    libsandbox: make check_syscall ISE a little more useful
    
    Showing just the resolved paths isn't too helpful when they're both
    NULL.  Also include the failing func & original file path.
    
    URL: https://bugs.gentoo.org/553092
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 55087abd8dc9802cf68cade776fe612a3f19f6a1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Feb 16 19:23:53 2016 -0500

    libsandbox: use ptrace on apps that interpose their own allocator
    
    If an app installs its own memory allocator by overriding the internal
    glibc symbols, then we can easily hit a loop that cannot be broken: the
    dlsym functions can attempt to allocate memory, and sandbox relies on
    them to find the "real" functions.  So when someone calls a symbol that
    the sandbox protects, we call dlsym, and that calls malloc, which calls
    back into the app, and their allocator might use another symbol such as
    open ... which is protected by the sandbox.  So we hit the loop like:
      -> open -> libsandbox:open -> dlsym -> malloc -> open ->
         libsandbox:open -> dlsym -> malloc -> ...
    
    Change the exec checking logic to scan the ELF instead.  If it exports
    these glibc symbols, then we have to assume it can trigger a loop, so
    scrub the sandbox environment to prevent us from being loaded.  Then we
    use the out-of-process tracer (i.e. ptrace).  This should generally be
    as robust anyways ... if it's not, that's a bug we want to fix as this
    is the same code used for static apps.
    
    URL: http://crbug.com/586444
    Reported-by: Ryo Hashimoto <hashimoto@chromium.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a0285db815b3604899453c215cce93df74066fdc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Feb 16 19:22:29 2016 -0500

    tests: add test for overriding mmap
    
    URL: http://bugs.gentoo.org/290249
    Reported-by: Diego E. Pettenò <flameeyes@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1ec4f132c73bbf52104f84a95d168f8f609a5d14
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Jan 18 01:16:54 2016 -0500

    libsbutil: clean up same.h distdir usage
    
    In commit 7a923f646ce10b7dec3c7ae5fe2079c10aa21752, we dropped the same.h
    header, but the build still listed it.  Drop it from the distdir list.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0c51ddd4f3f9c96149750445cc68c00ed8829404
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Dec 22 20:57:07 2015 -0500

    libsandbox: add wrappers for execveat & execvpe
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 05bc0619935cd3646e282a8d68b9564cad7d5b6e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 17:04:16 2015 -0500

    libsandbox: fix alpha ptrace error setting
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e99597cc31b454f97d2629f17d3d6f5145f978d7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 16:35:21 2015 -0500

    libsandbox: new ia64 ptrace port
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4f000d9c228474b6e34c9ce9e84bcce781271914
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 16:32:26 2015 -0500

    tests: check errno with more static tests
    
    This verifies the error code setting with ptrace logic -- if the ptrace
    code is broken, the errno will often be ENOSYS instead of EPERM.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7a923f646ce10b7dec3c7ae5fe2079c10aa21752
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 16:08:16 2015 -0500

    libsbutil: gnulib: hand disable same_name usage
    
    We don't provide same_name because the one caller we don't use, but it
    relies on gc-sections to avoid link errors.  That flag doesn't work on
    ia64 though, so we need to hand delete the one caller.  Ugh.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bca0183c33356df09669f19f2b40c20f7de7dc11
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 16:07:59 2015 -0500

    build: disable gc-sections on ia64 systems
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 88e312a1a6223a2c06b6a41ec7dc5482f3a413fa
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 14:12:45 2015 -0500

    libsandbox: new powerpc ptrace port
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d4aff41888c4e8eb71519330ab7621aed3f73da4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 06:06:45 2015 -0500

    libsandbox: new alpha ptrace port
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3ae4d849ae4aaaf469bc9a58b01d8a2b2931c14a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 04:48:47 2015 -0500

    libsandbox: new arm ptrace port
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 48520a35697aa39bed046b9668a3e3e5f8a8ba93
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 03:31:59 2015 -0500

    build: fix schizo match on x86 hosts
    
    Forgot to include the trailing glob.  Not a big deal as few people use
    it with these targets.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9d08c42993a418be6eafa1ffd4abf9e1c60ddd77
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 01:14:28 2015 -0500

    libsandbox: new s390/s390x ptrace port
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a178ab35775d851e65df1408471681aa023b6dbc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 01:10:57 2015 -0500

    libsandbox: improve sparc trace code a bit more
    
    This gets most of the tests passing, but syscall canceling still
    does not work.  Need to talk to upstream to figure it out.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 95a3da9888af86a93732be4964da6aed5e523fcd
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 01:00:07 2015 -0500

    libsandbox: avoid mixing stderr & output pipes
    
    The various debug helpers were changed to write out to a dedicated message
    path, but some of the trace code still uses stderr directly.  When mixing
    these methods, the direct prints would sometimes be lost.  Convert the few
    users to a new raw print function so they all route through the same file.
    
    We might want to extract this a bit more out in the future so it's easier
    to write to them, but this should be fine for now.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a60b397d75e121232b8066db7333b82a6f9a951c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Dec 19 20:11:13 2015 -0500

    sb_efuncs: avoid pointless stdio indirection
    
    We were setting up a FILE* from a file descriptor to pass to sb_fprintf
    which is a simple macro that calls fileno(fp) to pass the fd down.  We
    can call the fd funcs directly and avoid the whole stdio business.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 13b45f7910d6039e3a3a0971c786a5750f80cd9b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Dec 19 19:55:14 2015 -0500

    libsandbox: switch to PTRACE_O_TRACEEXEC
    
    Rather than try to deal with the inconsistent cross-arch behavior when it
    comes to tracking exec behavior, use the PTRACE_O_TRACEEXEC option.  This
    means we only support ptrace on linux-2.6+ systems, but that's fine as we
    have been requiring that for a long time now.  It also means the code is
    much simpler and stable across arches.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 20d27a2064a5ea30cc8a2e8d91e7b64c15a982b3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Dec 19 19:12:30 2015 -0500

    build: fix SB_SCHIZO automake conditional
    
    The rework in commit 46fe624223cfe62fb6c2fbb609be42f2f1d1734b broke the
    set up of the SB_SCHIZO automake conditional for non-schizo builds as it
    was not updated to the new variable.  This would cause the syscall table
    to always be empty and thus the ptrace code would never match.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f02e644a90dde960b47f9bc87125fe37dece7ee9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Dec 19 13:04:40 2015 -0500

    libsandbox: tweak edge cases of realloc a bit
    
    We need to return NULL when passed a size of 0 as the API requires the
    return value be usable w/free, but we just freed the pointer so the ret
    will cause memory corruption later on.
    
    When we go to preserve the old content, we don't need the MIN check as
    we already verified that a few lines up.  But leave it for defensive
    purposes as gcc already optimizes it out for us.  Just comment things.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 529a388ebb1b4e9d6ad8a1bb61dd8211833a5976
Author: Denis Lisov <dennis.lissov@gmail.com>
Date:   Sat Dec 19 19:13:58 2015 +0300

    libsandbox: fix old_malloc_size check on realloc
    
    Realloc uses SB_MALLOC_TO_SIZE assuming it returns the usable size,
    while it is really the mmap size, which is greater. Thus it may fail
    to reallocate even if required.
    
    URL: https://bugs.gentoo.org/568714
    Signed-off-by: Denis Lisov <dennis.lissov@gmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 317e792b325ca26fe6e959d5d4e511d154f3a228
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Dec 19 12:56:59 2015 -0500

    bump to sandbox-2.11
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 767becaac8ccf0a271fc7633fafe635bf8126f3e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Dec 19 01:41:36 2015 -0500

    libsandbox: fix memory alignment
    
    Some targets (like sparc32) have higher alignment requirements for 64-bit
    values than size_t (which is 4 bytes on sparc32).  If we happen to return
    4 byte aligned memory which is used to hold a 64-bit, we get bus errors.
    Use the same algorithm that dlmalloc does.
    
    URL: https://bugs.gentoo.org/565630
    Reported-by: Denis Kaganovich <mahatma@eu.by>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4377a68df2a20cda06aadb58c179ce2e8d78f7cd
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Sep 28 16:01:33 2015 -0400

    libsandbox: do not unnecessarily dereference symlinks
    
    When the target uses a func that operates on a symlink, we should not
    dereference that symlink when trying to validate the call.  It's both
    a waste of time and it subtly breaks code that checks atime updates.
    The act of reading symlinks is enough to cause their atime to change.
    
    URL: https://bugs.gentoo.org/415475
    Reported-by: Marien Zwart <marienz@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6b0db7d9abfded8bdf8c7d061b261f053eec886d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Sep 28 16:00:17 2015 -0400

    tests: add basic parsing of timespec fields
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4e7dd0fa8256ecdb32a6ffed688f8b46c2a1dccc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 27 02:28:57 2015 -0400

    build: bump min autoconf/automake requirements
    
    No real reason to do this other than making sure people are all
    testing with the same baseline-ish versions.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 02e6877248660a14186677446c86210474175529
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 27 02:27:36 2015 -0400

    bump to sandbox-2.10
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d96587d02f203e2c40790ac1c0e5778c6299d1a2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 21:08:02 2015 -0400

    sandbox: enable support for linux namespaces
    
    This initial version doesn't enable their use by default.
    
    URL: https://bugs.gentoo.org/512794
    Reported-by: Matthew Thode <prometheanfire@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6ec0de3146977b4b913c77edc58f840f5ce712b4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Sep 26 19:46:22 2015 -0400

    libsbutil: add helpers for reading config options (w/out env export)
    
    All sandbox settings thus far have been for libsandbox.so to process.
    With newer features though, we have settings that might only apply to
    the main sandbox program.  Add some helper functions for parsing out
    those settings (which a later commit will utilize).
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e2f06703fe28a3dcc70b847d3b7723bf5c346763
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Sep 26 19:42:05 2015 -0400

    libsbutil: gnulib: mark xgetcwd static inline
    
    Rather than use gnu inline where gcc can create external references
    (which we don't provide), just always inline the xgetcwd func.  This
    fixes building at -O0 optimization levels.
    
    URL: https://bugs.gentoo.org/561342
    Reported-by: Pryka <pryka.iluvatar@gmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3f593b47e284cd9defa15e19a37357c3e31b1b7f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 20:14:44 2015 -0400

    sandbox: add proper option parsing
    
    This lays the groundwork for adding more runtime options.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 314587590c5ab7204171606cadac52933a49f89d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 19:23:10 2015 -0400

    tests: avoid overflowing exit codes
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0a9188fd0a812cb864819d37a6a7217a135b85f0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 18:25:33 2015 -0400

    libsandbox: do not abort when the target uses bad pointers
    
    If the target passes a bad pointer to the kernel, then trying to extract
    the data via ptrace will also throw an error.  The tracing code should not
    abort though as there's no valid address to check, and kernel itself will
    return an error for us.  Simply return and move on.
    
    URL: https://bugs.gentoo.org/560396
    Reported-by: Jeroen Roovers <jer@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9a927b63d0f76fb5edaf4abf43784419b944f21c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 18:10:01 2015 -0400

    libsandbox: fix process_vm_readv addresses/lengths
    
    The current logic calculates the lengths/base addresses incorrectly
    leading to some kernels/mappings to reject accesses.  Make sure we
    calculate the initial length properly, and then increment the base
    by that value later on.
    
    With those fixes in place, we can clean up the warning/exit paths.
    
    URL: https://bugs.gentoo.org/560396
    Reported-by: Jeroen Roovers <jer@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c86b0416025b4b3f8555295a89c64e233803fef2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 16:41:28 2015 -0400

    libsandbox: use memchr to speed up NUL byte search
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 46fe624223cfe62fb6c2fbb609be42f2f1d1734b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 04:51:41 2015 -0400

    libsandbox: rework abi syscall header generation
    
    Probe the availability of multilib headers at configure time so that we
    can show the status more cleanly.  This allows the header generation to
    be done in parallel and not output confusing warning messages to users.
    
    URL: https://bugs.gentoo.org/536582
    Reported-by: cmue81@gmx.de
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6b9b505f4a7716a50ff9e63c85f2c4882987a732
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 04:40:39 2015 -0400

    sandbox.conf: allow writing to /dev/ptmx
    
    We implicitly permit write access to this node by not catching functions
    like openpty and posix_openpt, but when projects try to access the node
    directly (due to legacy/fallback logic), the sandbox would reject them.
    Make access to the node explicit since it's generally harmless.
    
    URL: https://bugs.gentoo.org/413327
    URL: https://bugs.gentoo.org/550650
    URL: https://bugs.gentoo.org/550670
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bc335f26c83893596cecf2dc65bbeed81e76f2b8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 04:15:52 2015 -0400

    bump to sandbox-2.9
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c17c4b85ca9e9af75bc16c9e49b6bf0b3ee6b4c8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 03:40:16 2015 -0400

    libsandbox: work around process_vm_readv EFAULTs
    
    Some people are seeing this call fail, but it's not clear why.  Include
    more debugging output so as to improve the reports, and let the code fall
    back to the existing ptrace logic since that seems to work.  This will at
    least unblock people's builds.
    
    URL: https://bugs.gentoo.org/560396
    Reported-by: Jeroen Roovers <jer@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit efb6ac30fb0d39cbd5f801c6d251b14ed5f5a7d6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 03:27:34 2015 -0400

    libsandbox: improve debugging output a bit
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 93d401570d4e54f732c0f821cdbb5ba2e1dee0f3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 03:23:37 2015 -0400

    libsandbox: fix handling of dangling symlinks
    
    Make sure we properly check the target of symlinks even when the target
    does not exist.  This caused problems in two ways:
    (1) It allowed code to bypass checks by writing through a symlink that
    was in a good location but pointed to a bad (non-existent) location.
    (2) It caused code to be wrongly rejected when it tried writing to a
    symlink in a bad location but pointed to a good location.
    
    In order to get this behavior, we need to use the new gnulib helpers
    added in the previous commit.  They include functions which can look
    up the targets of symlinks even when the final path doesn't exist.
    
    URL: https://bugs.gentoo.org/540828
    Reported-by: Rick Farina <zerochaos@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 105b7e047e98e8f9211a30133d0cc1cb97aef9b0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 03:03:30 2015 -0400

    libsbutil: gnulib: import modules for canonicalize_filename_mode
    
    This lays the groundwork for fixing handling of broken symlinks.  The
    gnulib code is hand imported because using the gnulib tool imports a
    ton of code we do not want.  Only the bare minimum is imported so we
    can use the canonicalize_filename_mode function.
    
    This function is needed to canonicalize symlinks that are ultimately
    broken.  The current sandbox/C library code only supports two modes:
    (1) dereference a single symlink
    (2) dereference *all* symlinks, but only if all links are valid
    
    For sandbox, we need to know the final path a symlink points to even
    if that path doesn't (yet) exist.
    
    Note: This commit doesn't actually fix the bug, just brings in the
    functions we need to do so.
    
    URL: https://bugs.gentoo.org/540828
    Reported-by: Rick Farina <zerochaos@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a9f88e265dfc15e03985c104318209e80de3a897
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 03:00:21 2015 -0400

    gitignore: ignore .dirstamp files
    
    Sometimes autotools generates these on us.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 167ded327a715f6378942f668f326ebc26f15d1a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 02:57:54 2015 -0400

    libsandbox: egetcwd: fix handling of NULL inputs
    
    We don't want to let the C library do the memory allocation for us when
    buf==NULL as it won't use our memory functions, so when we try to call
    our free on it, we get corruption.  Handle the automatic allocation in
    the code directly.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7e7a7a025dd2d43daf0b8ca14135e14bcaf871ce
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 02:35:25 2015 -0400

    libsbutil: undef memory redirect calls
    
    Sometimes the C library will redirect a call to strdup to __strdup which
    breaks when we're using the libsandbox memory allocator.  This was fixed
    in libsandbox in commit d7801453aced46a6f31d8455877edeb31a5211cc, but we
    didn't notice in libsbutil as no calls to strdup happened to come up.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5923bf16687481d275aa8d2e8ebaf4d9c5b32676
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 20 02:32:38 2015 -0400

    build: do not let gcc rewrite memory calls
    
    We don't want gcc to rewrite malloc/memset calls to calloc as it
    will make calloc recursively call itself.  Add other memory calls
    just to be safe.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 98db340d61a9607ab179a5d4dc057cf453d90e55
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Sep 15 14:21:29 2015 -0400

    libsandbox: avoid leaking memory when extracting strings
    
    If userland supports process_vm_readv, but the kernel does not (newer
    kernel headers & C lib than kernel), then we leak a bit of memory when
    we fallback to the ptrace code.  Do not re-allocate the ret buffer if
    the code does fallback.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 182cde0e780e2b3b0bc7de51f4712c54f47c89ad
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 13 01:30:02 2015 -0400

    update autotool files
    
    Fix up the recursive logic with the ax processing so we actually grab all
    the ones we need.  We probably grab too many, but meh.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d89ef22c0533b4e5ea195bf10c961dfd6fdfd5ab
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 13 01:27:14 2015 -0400

    gitignore: ignore configure.lineno
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a3b76337755aa108303fde03b81ee03a81df53f5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 13 01:23:56 2015 -0400

    bump to sandbox-2.8
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 775921d02b2d1fea48e6232520497c2ad7431975
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Sep 11 03:11:35 2015 -0400

    libsandbox: handle open's O_TMPFILE flag
    
    This new flag needs us to unpack & pass down the mode rather than
    always sending in the value of 0.
    
    URL: http://bugs.gentoo.org/529044
    Reported-by: Aidan Thornton <makosoft@googlemail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 441c11d5c5f628d2be20972b023d908bf6c39fc8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Sep 11 03:10:51 2015 -0400

    tests: add dynamic/static categories
    
    This way we can quickly execute the tests that run dynamic or static
    binaries.  We leave scripts out as they're a bit of a special case.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3559ba4b30934da041801f1a150fd28d2d64002c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Sep 11 02:47:17 2015 -0400

    tests: make sure we ignore stty exit status
    
    If the stty step fails (for any reason really), the main testrunner
    will abort with a weird error message:
    $ make check
    ...
    /bin/sh './testsuite' AUTOTEST_PATH='src:tests' --jobs=`getconf _NPROCESSORS_ONLN || echo 1`
    testsuite: error: invalid content: atlocal
    ...
    
    Make sure we ignore stty's exit status, and we put a final comment/$?
    reset at the end of the script.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 32b850d49a5ae11dbaf0b4b79067c7fa9dfc3726
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 15 03:25:08 2015 +0000

    libsandbox: fix building w/gcc-5
    
    The preprocessed output of gcc has changed a bit to retain more
    whitespace, but this just confuses/breaks the scripts that parse
    it.  Add the -P flag to normalize things a bit.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 69d49d18422d3dc67ec08a1d565e0503b813e321
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 3 06:37:37 2013 -0500

    TODO: note more work needed for message framework
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 13a9a7d17d80b9dae0543e54167d4bca7656e48b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 3 05:38:43 2013 -0500

    sandbox: use a non-shell var for the message path
    
    By allowing the SANDBOX_MESSAGE_PATH var to be stored in the shell
    environment and then modified on the fly, we run into a fun edge
    case with the PM.  When a phase has finished running, it saves the
    current environment.  When the next phase runs, it loads the env
    from the previous run.  Since the message path var can contain a
    pid, the previous run will no longer be valid.
    
    Since we want this to simply be a way for the active sandbox to
    pass information to the active libsandbox.so's, there's no need
    to use an env var that the shell can save/reload.  As such, use a
    variable name that the shell will skip.  Non-shell programs have
    no problem with this.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9ea6140984ba4e18ce2aaedb7ebc21466b60c433
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 3 05:34:09 2013 -0500

    sandbox: accept SANDBOX_LOG vars whatever their values
    
    Commit 40abb498ca4a24495fe34e133379382ce8c3eaca subtly broke the sandbox
    with portage.  It changed how the sandbox log env var was accessed by
    moving from getenv() to get_sandbox_log().  The latter has path checking
    and will kick out values that contain a slash.  That means every time a
    new process starts, a new sandbox log path will be generated, and when a
    program triggers a violation, it'll write to the new file.  Meanwhile,
    portage itself watches the original one which never gets updated.
    
    This code has been around forever w/out documentation, and I can't think
    of a reason we need it.  So punt it.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1a018e80058697408ce95142ffc292a5929fcc2b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 3 05:33:13 2013 -0500

    sb_efuncs: fix thinko in message patch
    
    Forgot to assign the fallback open to the fd.  Whee.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 87f753cf677137f8d6c06c56ee6cc4db11ec71b0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 23 00:28:42 2013 -0500

    libsandbox: preserve more SANDBOX env vars
    
    While we took pains to preserve the LD_PRELOAD setting, this doesn't
    help us too much in practice.  If a process is going out of its way
    to blow away LD_PRELOAD, chances are good it's blowing away all vars
    it doesn't know about.  That means all of our SANDBOX_XXX settings.
    
    Since a preloaded libsandbox.so is useless w/out its SANDBOX_XXX
    env vars, make sure we preserve those as well.
    
    These changes also imply some behavioral differences from older
    versions.  Previously, you could `unset` a sandbox var in order
    to disable it.  That no longer works.  If you wish to disable
    things, you have to explicitly set it to "".
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a3ff1534945c3898332b2481c9fd355dfbd56e1f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Jun 23 11:52:51 2012 -0700

    libsandbox: clean up open file handles in parent tracing process
    
    Currently, if a non-static app sets up a pipe (with cloexec enabled) and
    executes a static app, the handle to that pipe is left open in the parent
    process.  This causes trouble when the parent is waiting for that to be
    closed immediately.
    
    Since none of the fds in the forked parent process matter to us, we can
    just go ahead and clean up all fds before we start tracing the child.
    
    URL: http://bugs.gentoo.org/364877
    Reported-by: Victor Stinner <victor.stinner@haypocalc.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2469bbf7607b7544d5df4b0645a0798a226bb5d6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 22 23:58:44 2013 -0500

    environ: add set variants to env_is_{on,off}
    
    In some situations, we want to know the tristate of "is on", "is off", and
    "is set" instead of just lumping the "is not set" case in with "is off".
    Add some helpers for that.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c119fe8e393540224c803ab5036ddb80b800716c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 22 23:52:47 2013 -0500

    sandbox: pass child signals back up to the parent
    
    We were incorrectly passing signal information back up to the parent.
    See the URL for more information.
    
    URL: http://www.cons.org/cracauer/sigint.html
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d6af3ad271c3893419962059092eea29ffb4f507
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 24 23:57:17 2013 -0500

    sandbox: do not resolve target of stderr
    
    The recent e12fee192ac8b0343a468e5a8f7811a7b029ff9a commit does not
    handle things when stderr is connected to a real file (e.g. a pipe
    or a socket or fifo or ...).  It also does not play well to have
    multiple things writing to the same file through different fds.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d8b21b35fd536af8411975ad05eab85f89e84a2e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 22 22:03:08 2013 -0500

    libsandbox: fix early var init
    
    In commit 5498907383c7f1654188b6a0d02d8b03112a28c3, we tried to fix
    handling of ELFs that had their own constructors.  Unfortunately,
    this broke use cases like `env -i` that screw with the environment
    before we get a chance to extract our settings.
    
    URL: http://bugs.gentoo.org/404013
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e12fee192ac8b0343a468e5a8f7811a7b029ff9a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 22 21:18:07 2013 -0500

    add a new message env var
    
    This is used whenever sandbox wants to display an informational message.
    For example, early notification of a path violation, or debugging output.
    
    We can't just pop open an fd and pass that around as apps consider that
    leakage and will often break assumptions in terms of free fds.  Or apps
    that start up and cleanse all of their open fds.
    
    So instead, we just pass around an env var that holds the full path to
    the file we want will write to.  Since these messages are infrequent
    (compared to overall runtime), opening/writing/closing the path every
    time is fine.
    
    This also avoids all the problems associated with using external portage
    helpers for writing messages.
    
    A follow up commit will take care of the situation where apps (such as
    scons) attempt to also cleanse the env before forking.
    
    URL: http://bugs.gentoo.org/278761
    URL: http://bugs.gentoo.org/431638
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 63e816ad7731e40e34a7c766d895a6c6c9e8138f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 22 21:29:49 2013 -0500

    libsandbox: handle ENOSYS w/process_vm_readv
    
    If we have a newer glibc built against/running on an older kernel, the
    func return ENOSYS at runtime.  Handle that.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 265b974f15ecf119d07fea46a449988a6401392c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Dec 27 02:04:36 2012 -0500

    delete unused sandbox env vars
    
    Nothing uses or cares about these vars, so punt them.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 97ea4d6d14ae90bd6371936fd6a718df0f62efba
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Dec 27 01:28:17 2012 -0500

    environ: add a new is_env_var helper for checking var names
    
    This is laying the ground work for processing more vars in the
    future than just LD_PRELOAD.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f0dbd58bcb7b20ef681e7635f9d4b580816ad5ef
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 26 22:47:11 2012 -0500

    environ: merge is_env_{on,off} into a single file
    
    Start a centralized place for environment related helper funcs.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c8118ad3af11dce5f67d595b3784c5010c764579
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Dec 25 00:58:56 2012 -0500

    libsandbox: add some likely/unlikely settings
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0b8a6d9773cc0e6d86bf1187f46817d5716698fe
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Dec 24 19:41:49 2012 -0500

    libsandbox: reject "" paths with *at funcs before checking the dirfd [missing file]
    
    When it comes to processing errors, an empty path is checked before
    an invalid dirfd.  Make sure sandbox matches that behavior for the
    random testsuites out there that look for this.
    
    Forgot to `git add` in the previous commit :/.
    
    URL: https://bugs.gentoo.org/346929
    Reported-by: Marien Zwart <marienz@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit dd726dcc6a95355d0e0cc949018d9c8aefc89a02
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Dec 24 19:41:49 2012 -0500

    libsandbox: reject "" paths with *at funcs before checking the dirfd
    
    When it comes to processing errors, an empty path is checked before
    an invalid dirfd.  Make sure sandbox matches that behavior for the
    random testsuites out there that look for this.
    
    URL: https://bugs.gentoo.org/346929
    Reported-by: Marien Zwart <marienz@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 45fa8714a1d35e6555083d88a71851ada2aacac4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Dec 24 18:46:29 2012 -0500

    libsandbox: handle open(O_NOFOLLOW)
    
    We don't check for O_NOFOLLOW in the open wrappers, so we end up
    returning the wrong error when operating on broken symlinks.
    
    URL: https://bugs.gentoo.org/413441
    Reported-by: Marien Zwart <marienz@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5daa8f40978f03ea1ae96f2dff48e7219ad6fff4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Dec 24 18:33:33 2012 -0500

    tests: expand usage strings
    
    Makes it easier to quickly figure out how to run a helper test
    without having to resort to existing usage or the code itself.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 26ad6af1a4f246bda3cd7a19a24c1767ec9c835e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Dec 3 01:15:15 2012 -0500

    libsandbox: fall back to tracing set*id programs
    
    If we are non-root and run a set*id program, the ldso will ignore our
    LD_PRELOAD (rightly so).  Unfortunately, this opens up the ability to
    run set*id apps that modify things and sandbox cannot catch it.
    
    Instead, force ptracing of these ELFs.  While the kernel will disallow
    the set*id aspect when running, for the most part, that shouldn't be a
    problem if it was already safe.
    
    URL: http://bugs.gentoo.org/442172
    Reported-by: Nikoli <nikoli@lavabit.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e0675f1bce06463ec51286f56afa2c2b7b505dd1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Dec 3 00:10:50 2012 -0500

    sb_gdb: improve gdb integration
    
    Add a dedicated entry point for connecting gdb to make it easy to connect
    gdb at arbitrary points (ala printf style debugging).
    
    This also smooths a lot of the common steps when automatically launching
    gdb such as making sure the process is closer to the crash point when the
    user takes over control of gdb.
    
    Finally, switch to using clone rather than fork since the latter relies
    on the C lib's fork which implicitly can grab locks.  If we're crashing
    in the middle of a func that already holds those locks, the fork call
    will hang indefinitely on us.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9adf0645e69835f1f39c8857939209b6842fa5ee
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 2 23:55:40 2012 -0500

    sb_efuncs: fix usage of portage handlers
    
    The previous change forgot to actually enable the portage helpers.  This
    meant violation output would always get sent to /dev/tty rather than to
    portage's logging facilities.
    
    Enable the helper logic while also fixing a logic error with va_args
    (you can't re-use the same va_args).
    
    Also, in order to use these with code that watches over SIGCHLD via
    sigaction, we need to use sigaction ourselves to ignore that signal.
    
    This might be racy with threaded apps that fork & watch SIGCHLD.
    Testing in the larger world will show whether we need to revisit
    how we communicate with the PM.
    
    URL: http://bugs.gentoo.org/431638
    Reported-by: Michael Weiser <michael@weiser.dinsnail.net>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit fc0edcbe3114b885c5bcfe10cb00a68f9855c78d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 2 23:53:52 2012 -0500

    sandbox: allow log files to fallback to tmpdir
    
    Since non-root users typically do not have write access to /var/log,
    allow it to fallback to standard tmpdirs.  This makes testing locally
    a lot easier.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5aee0f89c31cbf64a605bdb8783fa7a74b900989
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 23 01:53:38 2012 -0500

    sb_efunc: delete
    
    Completely unused.  GOOD BYE.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 963811e4799eee8666f3b8f32e6c06d71315ddee
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 23 01:40:42 2012 -0500

    tests: disable tostop on controlling terminal
    
    If this flag is set, then the tests get all hung up.  Clear
    it in case someone has it active on their terminal.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3afaa67190258aa4bd46c66da0aafa34e888a681
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 23 01:32:21 2012 -0500

    update ax_*.m4 files from upstream
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 38241c15b80790efb11b1c128a3277900a89191b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 23 01:27:17 2012 -0500

    sb_efuncs: fix NOCOLOR handling
    
    Need to set the colors to "" rather than NULL so we don't print out
    "(null)" where the colors normally would be.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5b8bf14633ffb670a01f3ff54d632c4471587c32
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 23 01:26:23 2012 -0500

    require at least automake 1.12
    
    Keeps me from chasing down warnings that differ between 1.11 and 1.12.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 00044ab0c8aaaabf048b5ff0ec2da5b3d7d25752
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 17 14:14:26 2012 -0500

    sandbox.desktop: drop .svg from Icon field
    
    URL: http://bugs.gentoo.org/443672
    Reported-by: Petteri Räty <betelgeuse@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f2500f5954611d110ac18e9990f42d5a915f8101
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 28 12:19:56 2012 -0400

    add a configure option to control pch usage
    
    Mostly for testing purposes.  This also tweaks the dependency to fix a
    warning when generating the headers.h.pch in subdirs when the toplevel
    headers.h.pch already exists.
    
    URL: http://bugs.gentoo.org/425524
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 49d9bad488401392f38f2a3de80f0e424bcccaec
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 12 23:08:27 2012 -0400

    require at least automake 1.11.6
    
    We use AM_PROG_AR which was added after 1.11.1 at some point.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d51f63bfc0afd8c4ba7a529425add45df2aad3f8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 12 23:08:03 2012 -0400

    fix generating autotools when no autoconf-archive is missing
    
    Make sure lm4s is an array even when unset.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 53179a50a1a3e7a21e71cea6de46468deee87c69
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 12 21:56:05 2012 -0400

    libsandbox: use process_vm_readv if available
    
    Should speed up loading of strings from remote processes as we only have
    to do (usually) one syscall to extract the whole string in one shot.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7b01f6103a9baddaf0252e7f850a4cef91a48b67
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jul 6 14:58:16 2012 -0400

    libsandbox: fix hppa trace code
    
    URL: https://bugs.gentoo.org/425062
    Reported-by: Jeroen Roovers <jer@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 55c01af683271d91e38e46a1d5637375347c1020
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Jul 3 15:42:36 2012 -0400

    bump to sandbox-2.7
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 106c4cb4b1dd814fc29c56269dc964d03dadde15
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 7 13:18:29 2011 -0500

    libsandbox: add x32 ABI support
    
    We can trace x32 when the host is x86_64 or x32, but x32 cannot trace
    x86_64 due to limitations in the kernel interface -- all pointers get
    truncated to 32bits.  We'll have to add external ptrace helpers in the
    future to make this work, but for now, we'll just let x86_64 code run
    unchecked :(.
    
    URL: https://bugs.gentoo.org/394179
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 731630b7470b2b7ae3c055779138460d14d9fcd5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Jul 3 00:45:41 2012 -0400

    libsandbox: migrate to get/set regs interface for everyone
    
    Newer ports (like x32) limit what is available via the peek/poke user
    interface, and instead are pushing people to use the single get/set
    regs interface.  Since this also simplifies the code a bit (by forcing
    all ports to use this), and cuts down on the number of syscalls that
    we have to make, switch everyone over to it.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3ddcf39b393511930718ea72eae0ff7ba5c87f1d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Jul 3 00:43:21 2012 -0400

    include stdint.h/inttypes.h too
    
    These contain useful defines which we sometimes want to leverage.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b9cfa0a10decdbe659447a221a0634f2b78943b0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jun 22 14:31:34 2012 -0700

    precompile headers.h to speed up build slightly
    
    Since all system headers are included by way of headers.h, we can
    pre-compile this to speed up the build up a bit.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b20192faa0aa305afaa54d4b6e79391692f9a403
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Jun 24 02:56:55 2012 -0400

    sb_printf: expand feature set slightly and fix testing
    
    This adds support for signed ll, unsigned z, l, and ll, hex l, and ll,
    ignores the # for hex output since this is what we do implicitly already.
    
    As for testing, looks like during the autogeneration of testsuite.list.at,
    the sb_printf test was lost.  Restore it so it gets run again.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 03069c9fb1e3a4147d66b2ea374d2e7fc62c81b0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Jun 24 01:20:40 2012 -0400

    tests: enable color/parallel by default
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d035e5bb78cb8ac0672f4644854db8a75bc1e2d8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Jun 23 19:30:10 2012 -0400

    libsandbox: do not leak file handles from tracing checks
    
    Make sure we use O_CLOEXEC, and clean things up before forking off a
    tracing process.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bb49765c205f9c383efd147d20a977b6982d5b4d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jun 22 19:48:46 2012 -0700

    libsandbox: regenerate trace headers when autotools change
    
    If you re-run configure with different settings, the trace headers might
    be out of date.  Have the generated headers depend on the Makefile so that
    when this situation does come up, we force sanity.  This step is fairly
    quick, so shouldn't be a big deal.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4fcb367b1a7ff06a55c8bc4a25c38e46b77a1261
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jun 22 19:42:08 2012 -0700

    libsandbox: handle broken kernel headers
    
    Sometimes the struct in asm/ptrace.h is too small for what the kernel
    actually writes.  Check to see which struct is larger (the one that the
    kernel declares or the C library declares), and use that.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 84b955a043a8962aaef8feab29ac66d21874af81
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jun 22 14:42:37 2012 -0700

    libsandbox: kill off SB_MEM_DEBUG
    
    The mcheck/mtrace logic assumes we're using glibc's memory allocator,
    but that hasn't been true for sometime (we use our own based on mmap
    and such), so this code no longer serves a purpose.  Punt it.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 40abb498ca4a24495fe34e133379382ce8c3eaca
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jun 22 14:19:14 2012 -0700

    significantly overhaul output helpers
    
    There are a few major points we want to hit here:
     - have all output from libsandbox go through portage helpers when we are
       in the portage environment so that output is properly logged
     - convert SB_E{info,warn,error} to sb_e{info,warn,error} to match style
       of other functions and cut down on confusion
     - move all abort/output helpers to libsbutil so it can be used in all
       source trees and not just by libsandbox
     - migrate all abort points to the centralized sb_ebort helper
    
    Unfortunately, it's not terribly easy to untangle these into separate
    patches, but hopefully this shouldn't be too messy as much of it is
    mechanical: move funcs between files, and change the name of funcs
    that get called.
    
    URL: http://bugs.gentoo.org/278761
    Reported-by: Mounir Lamouri <volkmar@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit eedcba6f16365ab8c5213d72a5b2340b0b1012cf
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jun 22 15:37:05 2012 -0700

    use m4_flatten to make multiline lists easier to handle
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 93e7a98c096a099e715618fd2d71b98947ecf0e7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Jun 20 06:00:25 2012 -0700

    TODO: drop old entries, and add logging ones
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0dff704c8be2126fe54f235889cbe9b4aef09bed
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Jun 17 22:52:19 2012 -0700

    tests: always bubble up exit code regardless of log existence
    
    To simplify testing, do not mung exit(0) to exit(1) just because the log
    file exists.  In many of our tests, we will be doing things to generate
    a log file, but we explicitly test for exit values ourselves.
    
    This is also needed to make log file handling more resilient where we
    get the name at startup, but don't allow live env changes after that.
    The changing of the log name to sb.log on the fly no longer works.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 99a9e43c31445464271502e60e99ed6e16a35566
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Jun 17 18:26:31 2012 -0700

    tests: move disabling of sandbox verbose to common init
    
    Since none of our tests care about the verbose output, move the disable
    to a common location so we don't have to do it on a more fine grained
    basis.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2995c5954980f84b0e4a5501dbdde92ec57293ca
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 7 11:00:02 2012 -0500

    libsandbox: create more defines for gcc attributes
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 10d063518923c1452b6ab75a52f71ed2ece4e859
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Jun 17 20:49:00 2012 -0700

    update ax_*.m4 files from upstream
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a7f12a1d89aa3d7810996330b79acc577f3a558e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Jun 17 20:47:04 2012 -0700

    sandbox: drop beep support
    
    Almost no one has beep support turned on anymore, and ebeep in the main
    tree has been deprecated (meaning it wasn't found useful while building
    packages).  So punt support for it from sandbox too.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 75910f59e718caa079644dadd6e663fc68994239
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Jun 23 17:11:46 2012 -0400

    libsandbox: add uninstall target to fix distcheck
    
    Newer distcheck runs uninstall which is apparently broken.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1860d33fc9c9d05907db9bf02f1c81e0f517c09f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 7 00:25:41 2012 -0500

    libsandbox: add missing close to logfile fd
    
    When we log a lot, we end up leaking fd's, so make sure to clean them.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 00e64315a17b5f681c5a9f0114ac18eb002faa27
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 7 00:22:55 2012 -0500

    libsandbox: mark internal fds with O_CLOEXEC
    
    We don't want to bleed these across forks/execs.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e2744dbc889d63fad8a2c819db4785b45d3c8c62
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 5 00:22:23 2012 -0500

    tests: add static unlink tests
    
    Make sure that when we trace static apps, their bad syscalls don't
    get a chance to actually complete.
    
    URL: http://bugs.gentoo.org/406543
    Reported-by: Marijn Schouten <hkbst@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 19c9819364989b4831917c880af9a977beb5ce83
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 5 01:57:19 2012 -0500

    libsandbox: set syscall error rather than killing on violations
    
    If we kill the app, then the syscall that we flagged as a violation will
    complete, and our entire purpose has failed -- to prevent modifications
    to the protected paths.
    
    Instead, set the syscall number to an invalid one, continue the syscall,
    then set the syscall return value (which will become the errno) after the
    syscall finishes.  This way the bad syscall isn't actually executed, and
    we let the app continue to run like normal.
    
    URL: http://bugs.gentoo.org/406543
    Reported-by: Marijn Schouten <hkbst@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 966a8f38b21a4f862fe0bf796664d82d9553b391
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 5 02:10:05 2012 -0500

    libsandbox: add likely/unlikely support
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5498907383c7f1654188b6a0d02d8b03112a28c3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 5 16:19:08 2012 -0500

    libsandbox: push down constructor init
    
    Since every consumer of sb_open gets a copy of the sbio_open data, push
    the init of this into the .data section of the respective consumers to
    avoid the runtime overhead.
    
    This just leaves sandbox_lib setup in the constructor function, but that
    is only needed by the execve wrapper, so push down init of that to the
    existing sb_init logic which happens before our execve wrapper gets used.
    
    URL: http://bugs.gentoo.org/404013
    Reported-by: Mike Gilbert <floppym@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b00795beb43741397d73558c5455bcf1ff305c6e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 5 00:22:49 2012 -0500

    tests: note that testsuite.list.at is generated
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 21b27c36015164a887af248e197c1210c6c7a365
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 5 00:20:34 2012 -0500

    tests: make `./testsuite #` work
    
    Without this, the test will fail because it can't find sandbox.sh
    which lives in the src dir.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e1758c2cf0776a62398cd561402db63bd20ecd83
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 4 23:55:40 2012 -0500

    update autotool files
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 039b24cb0b97e69e8008de0037170c9a4a18de9a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jul 8 15:56:13 2011 -0400

    libsandbox: delay trace_regs #error until use
    
    Don't error out if we're missing trace_regs, but we don't ever
    actually use it.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit cb07ed0e23f1b3f3f7efe547f9b60033a429a10a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jul 8 15:52:35 2011 -0400

    libsandbox: invert debug checking order to avoid uninitialized variables
    
    We only initialize debug_log_path if debug is set, so we need to check
    debug first to avoid uninitialized warnings with debug_log_path.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 98bb61ee169cbbe12067c418472e56f63dff6853
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jul 8 15:50:23 2011 -0400

    tests: disable non-POSIX EBADFD
    
    POSIX doesn't specify EBADFD, and EBADF should cover us, and we
    don't really need it, so disable for now.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bcd3ee28a16cd2a811efcbfd986ebeda9491ed35
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jul 8 15:46:49 2011 -0400

    libsandbox: tweak code to avoid undefined behavior warnings
    
    Some gcc versions don't like the construct here where we modified a
    variable in the middle of multiple checks.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4924cc4606ef4bd5991d66a42996dfb8e7c543ca
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Jul 4 18:36:03 2011 -0400

    libsandbox: catch mktemp related funcs
    
    URL: http://bugs.gentoo.org/374059
    Reported-by: Nick Bowler <nbowler@draconx.ca>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 13c65f7b8fd93cad8b11bf484fa6d8c3feaad74a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Jul 4 18:40:30 2011 -0400

    tests: autogenerate testsuite.at
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c143ca8009fa46b737dbaa1ba7e749595330f8b1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Jul 4 17:08:47 2011 -0400

    tests: fix flags parsing in open64
    
    The open test got this fix a while ago, but open64 was missed.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1cc78eb4297c3135f5b7be826183a0a8b16bc2f9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Jul 4 17:06:21 2011 -0400

    tests: use %#x instead of 0x%x
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 90b5d930ae9163a749b35c3b97f17a010136f976
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 1 03:41:42 2011 -0500

    sandbox.bashrc: support newer /etc/portage files
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 11c1c34be9c1342d7b3de6445b07cae2eaf0c9c6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 14 01:16:40 2011 -0500

    bump to sandbox-2.6
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b86c9a19fff3b0f1d5cf4f0d1933084519890c3d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 14 01:16:28 2011 -0500

    update ax_*.m4 files from upstream
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 92273e99dd31f84ec7d2513aea7352a2d19beec0
Author: Diego Elio Pettenò <flameeyes@gmail.com>
Date:   Sun May 17 15:39:40 2009 +0200

    make the libdl/dlopen/dlvsym tests more autoconfy
    
    Instead of testing manually for libdl and then libc for dlopen, just use
    AC_SEARCH_LIBS (and then AC_CHECK_FUNCS to check for dlvsym).  The code
    is much nicer now.
    
    Signed-off-by: Diego Elio Pettenò <flameeyes@gmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 663ce763ca460a5644fc03d018ad55de038967ad
Author: Diego Elio Pettenò <flameeyes@gmail.com>
Date:   Sun May 17 15:33:33 2009 +0200

    use libtool 2.2 macro and avoid dirty hacks
    
    Since we're already depending on a not-yet-released automake version, we
    may as well depend on the already-released libtool 2.2.  This way we can
    avoid the dirty trick of undefining the macros to check for CXX and F77.
    
    Signed-off-by: Diego Elio Pettenò <flameeyes@gmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 8d444bf3a771c2b5f8e51331e91ecf3e02c45e3d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Jan 1 21:20:19 2011 -0500

    tests: start futimesat tests based on utimensat ones
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7f251191a4975f2b7e8183b51da8097e647e6b2b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Jan 1 21:10:42 2011 -0500

    libsandbox: handle NULL filenames with futimesat
    
    We need to special case a NULL filename with futimesat just like we
    already do with utimensat.
    
    URL: http://bugs.gentoo.org/348640
    Reported-by: Jeremy Olexa <darkside@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit eaa748b1842ecf92248662623aa41cc239b25bb2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Jan 1 21:04:41 2011 -0500

    tests: make defaults for fds saner
    
    Let the default mode for files be 0777 rather than 0 so that the default
    creation of files actually works.
    
    Also make the flags part of a dirfd filename actually optional.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 55c2dbdcf9ef99708be560a287019601b132293c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Jan 1 17:10:18 2011 -0500

    tests: add a bunch more feasible errno values
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 85cbd68c535cec4b9c6fa820808cada6caaf6a1f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Dec 31 13:39:37 2010 -0500

    improve quote parsing for SANDBOX_CONFIGURE_OPTS
    
    Only strip quotes from arguments which lack spaces in them.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 64dba08258de20d044c1348e5ba4b7f011b6995d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Dec 31 13:39:07 2010 -0500

    update ax_*.m4 files from upstream
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 084779825d5df09130538b5e748ab0a43ee8d52d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 26 22:40:52 2010 -0500

    tests: unify duplicated name/value lookup code
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2c90a2dd2d5be3ca593a7bcd8d79e6d0db296204
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 26 21:53:24 2010 -0500

    libsandbox: fix utimensat regression with NULL filename
    
    The previous commit (libsandbox: handle dirfd in mkdir/open/unlink *at
    prechecks) unified some path checks while unifying the dirfd code, but
    prevented valid NULL paths from also being handled.  Make sure we still
    handle that behavior, and add a test for it to prevent future regressions.
    
    URL: http://bugs.gentoo.org/346815
    Reported-by: Jake Todd <jaketodd422@gmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6103135b011da15bf85cbafa8ec069cf5b74ed4b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 26 21:47:50 2010 -0500

    tests: allow dirfds to specify mode too
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b927210356334df8b3f6d9823443a39041157dac
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Nov 24 02:49:13 2010 -0500

    bump to sandbox-2.5
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4a383c33005f7ffad6edeed01f78d8e2cca5203d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Nov 23 07:11:47 2010 -0500

    libsandbox: fix bug in previous dirfd unification
    
    The previous commit (libsandbox: handle dirfd in mkdir/open/unlink *at
    prechecks) left a sizeof() in place but unfortunately no longer held the
    same meaning.  In previous code, the function had access to the buffer
    decl and so could get the byte count.  In the new code, the function has
    access to the pointer only.  So sizeof() now wrongly returns the size of
    pointers rather than the length of the buffer.
    
    Extend the new helper function to take the length of the buffer it is
    given to fix this issue.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f8ecff15f2ddf6e971ff563ac0054f5ff1403143
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Nov 23 07:11:28 2010 -0500

    tests: add another unlinkat test for long paths
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3a72abcb0dd90538d299214264b04f1557d9711a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 22 20:33:09 2010 -0500

    tests: add debug output to sigsuspend-zsh_tst
    
    If sigsuspend-zsh_tst fails, it isn't quite clear as to why.  So make the
    output a bit more clear as to what's going on.
    
    URL: http://bugs.gentoo.org/339022
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9d7962023b360a3456b13dbe5f45f8b2d354b250
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 22 20:10:49 2010 -0500

    libsandbox: fix thinko in previous erealpath commit
    
    The previous change for hardened users (libsandbox: avoid passing same
    buffer to erealpath) made a change canonicalize() to fix the buffer
    usage, but missed updating the actual call to erealpath to use the new
    buffer set up just for it.
    
    URL: http://bugs.gentoo.org/339157
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 46b108abbbc306357d949fd4cfd91ddab9749b00
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 15 05:44:00 2010 -0500

    tests: add mkdirat/unlinkat precheck dirfd tests
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c473c10a447a285f8c7b762f34c0650f587e1ff4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 15 05:42:11 2010 -0500

    libsandbox: handle dirfd in mkdir/open/unlink *at prechecks
    
    Ignoring the dirfd hasn't been a problem in the past as people weren't
    really using it, but now that core packages are (like tar), we need to
    handle things properly.
    
    URL: http://bugs.gentoo.org/342983
    Reported-by: Xake <xake@rymdraket.net>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3e4c9f860008656c46818b84ecd372649d0f79da
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 15 05:38:46 2010 -0500

    tests: generalize flag parsing to handle AT_* flags better
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 989600e64b9e3e5ea894e317c50b25c1abfb6cf8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 15 05:37:43 2010 -0500

    scrub generated m4 files before rebuilding autotools
    
    When the local m4 code is a diff version of libtool, updating in place
    likes to generate ugly harmless warnings.  But I don't want to see them.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 703ffbd45e49cb228454bae8fe95f5f99d45c471
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 15 05:26:05 2010 -0500

    tests: fix swapped arg parsing with at dirfd
    
    The arg is supposed to be "<path>:<flags>", but we were parsing it as
    "<flags>:<path>".  So unswap the logic.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 378329b20f6db89612b081bbefd7731a49954e9c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 15 05:25:35 2010 -0500

    tests: handle O_DIRECTORY file flags
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0691e279121ecc2e77849b0435c079c246374798
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Aug 18 22:46:31 2010 -0400

    00default: fix install
    
    The previous commit to fix duplicate dist inclusion broke the install of
    the generated file.  So try again but hopefully this time get it right:
     - include only 00default.in in the dist
     - install only 00default
    
    URL: http://bugs.gentoo.org/333131
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 93bc7c3c25819fc29a1ad9fb10853445fd5605b2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Aug 18 22:49:24 2010 -0400

    bump to sandbox-2.4
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ef2d8c1f96a176eba0e5eb265d8163824311a2fe
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Aug 16 22:10:45 2010 -0400

    libsandbox: tempish mkdir hack for broken symlinks
    
    Some gnulib tests that are bundled with multiple GNU packages stress the
    POSIX correctness of mkdir behavior across broken symlinks.  While this
    specific behavior under ssandbox doesn't really matter (as packages don't
    create broken symlinks and then need this errno value),  it isn't really
    feasible to patch all the random packages.  So add a smallish hack for
    now to keep them happy until something better can be formulated.
    
    URL: http://bugs.gentoo.org/297026
    Reported-by: Diego E. Pettenò <flameeyes@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9d6dbcda73a1135fdec9906206ebb463445145a8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Aug 16 09:18:22 2010 -0400

    tests: check rmdir functionality
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 759092f63bcb23f2d3e00e20558dab2d47718236
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Aug 16 09:17:38 2010 -0400

    tests: re-order set -x in SB_RUN
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 868378db6253d7f8f39889e762f029587b6bbe3b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Aug 16 09:05:29 2010 -0400

    libsandbox: mark rmdir as working on symlinks
    
    Doing rmdir(symlink) does not remove the dir the symlink points to, but
    will operate on the symlink itself.  While it will always fail (since it
    is a link and not a dir), that isn't something we need worry about.  Just
    need to avoid doing permission checking on the target of the symlink.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4c816beead15d42da3ba6d907a85ad45deb14bed
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 23:26:17 2010 -0400

    tests: addpredict / by default to match portage
    
    Portage by default will do `addpredict /` which can causes tests that
    expect certain behavior to fail, but only when testing under portage.
    So tweak the default environment to include this so that we are forced
    to tweak the tests so that they pass in and out of the portage env.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 813c4826925a7c0dadb93471491f92e876a61eaa
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 23:11:33 2010 -0400

    tests: fix dist target for out-of-tree builds
    
    Building out-of-tree and then running `make dist` would miss a lot of
    important test files.  Make sure globs are relative to the source tree
    and not the build tree.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5ece56cf3ac9d9a4b033a22f3126f625d466d36e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 23:07:08 2010 -0400

    00default: fix duplicate dist target
    
    Make sure we only bundle 00default.in in the dist tarball rather than also
    including the generated 00default.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 858cbf61fd789fb9fef949aed4e741e815f7f2d0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 23:04:49 2010 -0400

    tests: force a saner default env
    
    Rather than having tests rely on implicit behavior (current dir is not
    listed anywhere thus it is denied), force tests to declare explicit
    deny paths when desired.  This way `make check` works even when it is
    run under a path that is granted write access by default (such as the
    tempdirs).
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f3e123137625111d49916037f16579b89a27b105
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 22:47:41 2010 -0400

    sandbox.bashrc: don't load portage env when testing
    
    The portage environment stuff is designed for interactive sessions and
    makes no sense when automatically testing things locally.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 27aff59ae215298367a2dc8dc44b49554b5035b0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 22:45:05 2010 -0400

    sandbox.bashrc: update portage builddir search
    
    Portage builds packages in $CAT/$PF now rather than $PF, so update the
    local env search code to handle that.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4c1eee83e412298d5c3019f386540ce0af0badc7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 20:26:49 2010 -0400

    libsandbox: avoid passing same buffer to erealpath
    
    The erealpath function modifies the storage buffer given to it in place
    and can misbehave if both the source and destination buffers point to the
    same storage in memory.  So fix the one case where we were doing this in
    the canonicalize() function and add some run time checks to make sure this
    doesn't crop up again.
    
    URL: http://bugs.gentoo.org/292050
    Reported-by: Hongjiu Zhang <voidprayer@gmail.com>
    Reported-by: Fredric Johansson <johansson_fredric@hotmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b3e79e5912f0a40248d60142c07d0bf3c36fd4ec
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 18:55:24 2010 -0400

    libsandbox: don't swallow SIGCHLD notifications
    
    When tracing static processes, the original implementation included code
    that would always swallow SIGCHLD.  Much has changed since then, and it
    doesn't seem to be needed anymore, and it is certainly breaking a few
    packages.  So drop it, add some tests, and if it causes a regression in
    the future, we can look at it then (with an actual test case).
    
    URL: http://bugs.gentoo.org/289963
    Reported-by: Joeri Capens <joeri@capens.net>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit afc1421f1e629c28ae6fb3d71f08a7baffde8f42
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 01:58:03 2010 -0400

    libsandbox: disable sparc ptrace until it can be debugged further
    
    URL: http://bugs.gentoo.org/293632
    Reported-by: Raúl Porcel <armin76@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e77d324054053c59adb3c73272d141fca15036ac
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 01:53:01 2010 -0400

    give src/sandbox.sh its own AC_CONFIG_FILES
    
    This should avoid unnecessary chmods when regenerating files other than
    src/sandbox.sh which can sometimes lead to ugly warnings/errors when
    mucking about the source tree after ./configure.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bb999462f29017b7342c10272c40481c62f23c56
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 01:43:52 2010 -0400

    move from lzma to xz
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 95aaa83ba6df1a2eaba4e1d42d39b1e1c438c063
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 15 01:39:31 2010 -0400

    tweak gnu linker check for gold
    
    URL: http://bugs.gentoo.org/291103
    Reported-by: Franz Fellner <fellner@gmx.de>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 844d9853f700a5fda9ead05a93492a69777e2c1e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jul 9 20:18:18 2010 -0400

    update autotool files
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 94d3b1443ebf3536ab92335caad85cb4b414136b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Apr 11 17:45:34 2010 -0400

    sandbox.bashrc: fix typo in sandboxoff
    
    Since libsandbox checks only for SANDBOX_ON, sandboxoff() should set this
    variable and not SANDBOX_OFF.
    
    URL: http://bugs.gentoo.org/314577
    Reported-by: Ulrich Müller <ulm@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2b8b95c186881a5abe295efba52d54ee7b8f4979
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Dec 20 21:13:40 2009 -0500

    libsandbox: catch calls to remove()
    
    People rarely use this, but all it takes is one lame package.
    
    URL: http://bugs.gentoo.org/297684
    Reported-by: Pacho Ramos <pacho@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b076b4e700b1553c2468b0cc62abcb51a4c53f3e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Oct 28 01:47:50 2009 -0400

    tests: make signal code a bit more flexible
    
    This lets us easily set default signal handlers and execute code.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1693cc5c19d038247147ed19943c78ff47e43c87
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Oct 28 01:41:14 2009 -0400

    sandbox: dont warn about inherited ignored signals
    
    Inheriting signals are normal/fine, so don't warn about those since they
    aren't a problem.
    
    URL: http://bugs.gentoo.org/285341
    Reported-by: Paul Varner <fuzzyray@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e1cc47d12dfda65e4586317115c293510beff7ee
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Oct 28 00:11:19 2009 -0400

    use default lzma compression level
    
    The current tarball compresses the same with compression levels 6 - 9, so
    don't bother using highest level since it takes more memory.
    
    URL: http://bugs.gentoo.org/290765
    Reported-by: Ben Kohler <bkohler@gmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bf79706bc65de415cb0dd82aeba55164cd4cca96
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Oct 26 03:53:09 2009 -0400

    libsandbox: use mmap directly for internal memory
    
    Some packages that do library tricks like sandbox override the mmap()
    symbols.  If their implementation ends up calling functions that sandbox
    has overridden, then we can easily hit an infinite loop.
            sb-fopen -> sb-malloc -> external mmap -> sb-open -> whoops!
    
    So for the internal memory functions, make sure we call directly to the
    C library's mmap() functions.  This way our internal memory implementation
    should be free from external forces.
    
    URL: http://bugs.gentoo.org/290249
    Reported-by: Diego E. Pettenò <flameeyes@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3bb3fc142a457eb079ff70d6e498922b6c964dde
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Oct 26 02:51:56 2009 -0400

    bump to sandbox-2.3
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3f69c91a73c8813fca6ac1d305dc0c72a21cbb5b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Oct 26 02:48:01 2009 -0400

    tests: add simple dlfcn util
    
    Simple command line front end to dlopen and friends to quickly test things.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 180958291462f38154916103a6a4bdeb852e6cc3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Oct 26 02:32:16 2009 -0400

    libsandbox: rewrite RTLD_NEXT handling
    
    The commit 0a539b142f24 tried to fix RTLD_NEXT issues seen under certain
    kernel/glibc combos, but in reality all it did was force dlopening of the
    C library for every symbol lookup.  So rewrite the code to handle things
    on the fly as needed -- if RTLD_NEXT returned a bum symbol, load the C
    library and try again.
    
    URL: http://bugs.gentoo.org/202765
    URL: http://bugs.gentoo.org/206678
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 71860f134425a0a22b1a16d80e20dcc632b94b33
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Oct 25 05:24:55 2009 -0400

    tests: add reverse lookup funcs
    
    This way we can include the C names in the default output.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ae95bc8deb1894292a26aea88490ba00f2d68c2a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Oct 25 04:44:21 2009 -0400

    libsandbox: fix ptrace decode of utimensat
    
    The ptrace code skipped one too many arguments when decoding the utimensat
    syscall which caused random utils to fail with garbage paths.
    
    URL: http://bugs.gentoo.org/288227
    Reported-by: RB <aoz.syn@gmail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f23b9bef900c89c8a4e7c4e220570198257fe03b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Oct 25 04:06:08 2009 -0400

    libsandbox: handle fd's w/out files in proc fd/
    
    When attempting to access anonymous pipes/sockets/etc..., we should let
    the access go through rather than rejecting the patch because we aren't
    able to access it.  There is no backing file after all which means there
    is nothing for sandbox to check against.
    
    While this was noticed with an anonymous pipe, the logic applies to any
    anonymous fd such as sockets or whatever the kernel throws at us.
    
    URL: http://bugs.gentoo.org/288863
    Reported-by: Marcin Mirosław <bug@mejor.pl>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9b53f023e6bc3675458cb891332fc6b0c39d8504
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Oct 25 07:06:30 2009 +0000

    libsandbox: add support for tracing SPARC systems
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit cc71a47b9f3dc854947d6328cd585a833a1153a2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 08:36:02 2009 -0400

    bump to sandbox-2.2
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit eafd6ec70693c18c4dd264ac65ce0b236057c7e3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 08:33:35 2009 -0400

    tests: fix vfork-1 failure
    
    The vfork-1 test was a little broken and didn't test the results quite
    right.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit dae1c07596eaaaa5c9cdc2715ad3d28fa59da683
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 06:24:46 2009 -0400

    fix minor regression in config.status output
    
    The recent 00default tweak re-ordered the AC_CONFIG_FILES list but this
    can cause harmless warnings when running config.status and the related
    chmod.  Make sure src/sandbox.sh is first in the list.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b8cfb099a975c48de1544007972dc9367403a684
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 06:08:07 2009 -0400

    libsbutil: kill off unnecessary log_domain code
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1a366eac44041eb6989374e6773dcb7ec084b7ab
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 06:03:25 2009 -0400

    libsbutil: kill off confusing SB_WRITE macro
    
    The SB_WRITE() macro makes using sb_write() confusing, so convert the two
    small users and kill it off.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a2256559a6888f79749625fa16dd618167bc36cb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 05:41:18 2009 -0400

    drop force pic flags
    
    The autotool build system already adds PIC where needed, so don't force
    our own -D/-f options.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0ef3c96acc27611e27ae9970f692035bb7e45e3c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 05:40:21 2009 -0400

    use AM_SILENT_RULES() for now
    
    At least until AM_INIT_AUTOMAKE([silent-rules]) is fixed.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b27df46f349e850067ae388fe067b043abf3aecb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 05:29:03 2009 -0400

    libsandbox: fix missing *at pre_checks
    
    For systems that lack *at() funcs, make sure we still include the
    pre-checks as we use these functions in the non-at version.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7329b2cf0cf1296dac0be8859ef8d96879c6dafb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 05:15:01 2009 -0400

    drop accidental libsandbox.so addition
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3b6b441e44b49d5618eee3da84e065a31fa4ff47
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 05:12:42 2009 -0400

    add -Wall to automake runs and fix fallout
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a796eae054d499b7b49607dd4604ef24dd7622c8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Aug 25 04:56:23 2009 -0400

    fix libc.so configure test for uClibc/hardened systems
    
    On uClibc hardened systems, a simple program will be linked against the
    ldso and its name is similar to the C library, so make the grep a little
    more specific.
    
    URL: http://bugs.gentoo.org/275725
    Reported-by: Ed Wildgoose <gentoo@wildgooses.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f0dd4c3cdd40759eeb642303cd8a25fb168aa625
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Jun 24 08:53:09 2009 -0400

    update gitignore
    
    Some of these ignores are just personal preference.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit dc0b6bccd6b7edec5fb451d81884ae7b83d0098a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Jun 24 08:50:54 2009 -0400

    00default: set default paths based on @prefix@
    
    Rather than hardcode /usr, assume that the prefix sandbox is configured
    with is the same prefix that other packages in the system will be
    configured with.  This isn't entirely correct, but covers all of the
    common and realistic use cases.
    
    URL: http://bugs.gentoo.org/275064
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Michael Haubenwallner <haubi@gentoo.org>

commit 052677ce9df69e9c217b8a9ba1e928a03424746f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 05:49:41 2009 -0400

    libsandbox: use PTRACE_SETOPTIONS only when defined
    
    This should fix building on really on Linux systems.
    
    URL: http://bugs.gentoo.org/255019
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Jeremy Olexa <darkside@gentoo.org>

commit c1b473390938feb385b21eef25c05cbe33ccea09
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 05:47:08 2009 -0400

    bump to sandbox-2.1
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0b9fa88c256854f583135f975ab3d757bbc51d84
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 04:24:00 2009 -0400

    libsandbox: disable corner case recover when tracing
    
    The code that tries to recover from unreadable paths relies on relative
    access to the paths in question, and we can't rely on that when tracing.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 8c5c8ee93aac8596f08910aa4957f4ac614bf111
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 03:42:02 2009 -0400

    libsandbox: convert trace to waitpid()
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7f05f193d2c5149fed48b5dc0fe5d4920e5809ae
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 03:38:28 2009 -0400

    tests: extend vfork-0 to run programs with args
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f616220ff28829089db09ecd55458b0147a0020b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 02:57:33 2009 -0400

    tests: extend file/dirfd parsing
    
    Add support for file keywords (like "NULL") and for opening paths for
    dirfd arguments.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5f07adbe3c923448c5ee7b33022bc91ae04b17a8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 02:35:58 2009 -0400

    libsandbox: handle utimensat with NULL paths
    
    The utimensat() function can operate on file fd's directly when the path
    is NULL, not just relative directory fd's.  So tackle that use case.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 591d12af19c1442c1fcc065f8a446dd244a624dc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 00:41:50 2009 -0400

    libsandbox: ignore core dumps
    
    If the user has core dumping enabled, then we may get a dump notice from
    the traced child.  Since this is fine by us, let it go through.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit feaadcade8c39a0423b2dfe15822f14b825ddf1d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 00:18:47 2009 -0400

    tests: allow numeric specifications of signals
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1f2d793d6e19e064ac619e7bcee4f61fd7ff61d0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Jun 2 23:01:58 2009 -0400

    libsandbox: make sure to punt the useless .la file
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a610adcd692a9c9dbbe89e5adee44e0d6437280f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Jun 2 21:23:11 2009 -0400

    gitignore: add patches/debugging files
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a8517609c9d4c8629fad82a7db0f1506ca47dee6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun May 31 03:27:36 2009 -0400

    require automake-1.11+
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b4313306bcce2dbeb51112c37a1c33a41e6c5aaa
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Apr 28 00:57:50 2009 -0400

    use automake AM_V_GEN rather than custom SB_V_GEN
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6e153a7a43710238e2d2c8bb2ca7133d8dabb9b3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Apr 28 00:57:25 2009 -0400

    update ax_*.m4 files from upstream
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5b28e3905a24f17fbbaedbe692f19c4bd9b57b5e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Apr 26 12:06:09 2009 -0400

    setup local sandbox.d for running tests to avoid /etc/sandbox.d
    
    Always use local sandbox.d copy to avoid random /etc/sandbox.d issues like
    it doesn't exist, or has permission problems, or anything else.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ca6c3c396877c05bd4ecef6e81095c88ef89a919
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Apr 13 08:48:42 2009 -0400

    tests: use AUTOTEST_PATH rather than setting PATH manually
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9324855cf7a4543f617e4d48edde84bca8388b5e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Apr 13 08:12:05 2009 -0400

    tests: run test scripts with shell tracing
    
    This should make tracking down of errors when things fail much easier.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit da77405ff6afacbcf5073596864d40d66126cb35
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Apr 13 08:08:23 2009 -0400

    tests: add static mkdir() check
    
    Some wrapped functions have "pre" checks where we don't bother checking
    the sandbox settings under certain conditions.  Traced programs should go
    through these same checks.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 69600a48df8052046fe3452708195eb100b2db27
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Apr 13 07:39:21 2009 -0400

    tests: setup keywords for related tests
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 70f148095b7b9acd4e8329da0766aadc88b017d8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jun 4 00:19:20 2009 -0400

    libsandbox: add pre checks to static tracing
    
    The normal wrapped functions go through some "pre checks" where certain
    normal conditions are not flagged as problematic.  The static tracing
    lacked those pre checks though.
    
    URL: http://bugs.gentoo.org/265885
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Daniel Robbins <drobbins@funtoo.org>

commit ff111c5f59e5405631177e081eb7ca485e5e0265
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Jun 2 22:52:28 2009 -0400

    libsandbox: make sure fopen64 uses 64bit funcs
    
    URL: http://bugs.gentoo.org/271260
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: T Chan <something-bz@sodium.serveirc.com>

commit a7af965a7e626cc6fffc530d8bde4f838d9d9c16
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Apr 13 07:38:54 2009 -0400

    clean up configure script a bit and log active env
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ab9942c014bf7f655a8728adf35d0e451a98622f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 9 07:16:18 2009 -0400

    bump to sandbox-2.0
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ff86b7a4f285c9f754665dfb9f342993fa7f62e6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 9 06:25:03 2009 -0400

    tests: make sure traced programs and signals work
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 294aa48494b7e62adad5406acf718930b69d3d0c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 9 06:24:40 2009 -0400

    gitignore: ignore all a.out binaries
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0c9500ea1a6dafdb5167c2d11ad47c8fcfff3141
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 9 06:19:12 2009 -0400

    libsandbox: don't filter signals the traced pid receives
    
    If we receive a notice that the child got a signal we don't care about,
    make sure we tell it to continue on with the signal info so we don't go
    filtering all signals the child may receive.  Otherwise we break test code
    like that in glibc which exercises the ability of a child to catch and
    process signals properly.
    
    URL: http://bugs.gentoo.org/265072
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Nick Fortino <nfortino@gmail.com>

commit 7bf91462c1e41abffc1f6b93c1fc1fe19c247c52
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 8 05:20:03 2009 -0400

    libsandbox: add support for tracing Blackfin/PARISC systems
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4d60bd19491cbe249e09f368be0879429227db49
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 8 04:46:34 2009 -0400

    libsandbox: test for ERANGE like ENAMETOOLONG
    
    Some arches (like ia64) return ERANGE for too long path names, so accept
    that as the same way we accept ENAMETOOLONG.  The BSDs also seem to do
    this, so they'll get fixed as well.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 50d62c2339d65394194682a92a2e7ea4338ad1d7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 8 03:28:09 2009 -0400

    libsandbox: symbols.h does not care about wrapper files
    
    No need to regen symbols.h every time a wrapper file is updated.  Automake
    will take care of dependencies and rebuild wrappers.c as needed.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d7801453aced46a6f31d8455877edeb31a5211cc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 8 03:25:54 2009 -0400

    libsandbox: make sure we use internal strdup
    
    To keep with the x* conventions, the xstrdup() func should point to the
    local strdup func.  This is because glibc itself may define strdup() to
    something that prevents us from wrapping it safely.
    
    URL: http://bugs.gentoo.org/265098
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Stelian Ionescu <stelian.ionescu-zeus@poste.it>

commit ace2169eb4ba96edc4573ac97b9772e2b315d445
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Apr 6 22:01:17 2009 -0400

    libsandbox: dump command line whenever a backtrace is shown
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 68f20266ec68605b864d5d4aa8029c3971a52c03
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Apr 6 04:26:04 2009 -0400

    libsandbox: decode signal details when falling over in trace
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f86f006b78a3c1c9c6deb45dba74029148abaf76
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Apr 5 18:23:23 2009 -0400

    libsandbox: accept flexible syscall defines
    
    Most systems define the syscall numbers as a plain int, but others use a
    base and an offset (like arm).  So work with that format as well.
    
    URL: http://bugs.gentoo.org/265020
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Tandy <tarpman@gmail.com>

commit d58b7b2689256fb5680f688fb897043e56cfa6a7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Apr 5 05:24:05 2009 -0400

    tests: drop O_DIRECTORY
    
    It isn't portable and we don't actually use it, so drop it.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d24e5960aa35172667fe2e828659a7a174a2eab0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Apr 5 05:23:11 2009 -0400

    tests: use POSIX expr
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 747fd499e06c700838e27db93f6e71e5940afad6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Apr 5 04:36:00 2009 -0400

    bump to sandbox-1.9
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f0c0417167417000d9ac606515b891bd607ddc4a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Apr 5 01:13:42 2009 -0400

    tests: tweak libsigsegv_tst to ignore gcc warnings
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4f5ba92246606723806c0585393f21244d44036c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Apr 5 00:56:30 2009 -0400

    libsandbox: force lock sanity across forks
    
    Classic example of forks being used in multithreaded applications and
    causing havoc with shared state (locks in this case).  Make sure that
    threads grabbing the sandbox lock don't screw up threads that do a fork
    and then exec.
    
    URL: http://bugs.gentoo.org/263657
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Hope <rmh3093@gmail.com>

commit 16a11d0b67121521e4dbe12b4741217f97034c28
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Apr 4 22:59:42 2009 -0400

    tests: add some tracing tests
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ae173aff6d0296983c7ac5b5fe80a5fc6a40f4ea
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Apr 4 22:58:14 2009 -0400

    tests: fix openat arg parsing
    
    The "flags" argument is like flags in open(), not like the other *at()
    funcs.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6333d6e81e9f298c9bf7030b1bda9e906656d8f6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Apr 4 22:42:25 2009 -0400

    libsandbox: handle trace code when vforking
    
    The make program likes to vfork() when running programs, so if it vforks
    and runs a static binary, we need to make sure we clean up state in the
    child so as to not make the parent angry.
    
    URL: http://bugs.gentoo.org/264478
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Paul Mulders <info@mld.demon.nl>

commit 048b2a92e008868b3a2d64b3112884722dc93ad5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Apr 4 22:36:48 2009 -0400

    libsandbox: check binary we execute via $PATH
    
    If an exec func is used that searches $PATH, we need to do the search as
    well so that we don't miss out on binaries or denied locations that are
    run without a full path.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 095d147cf0292c985a1dd881b897ad7d26143340
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 1 22:41:20 2009 -0400

    libsandbox: add a helper func to copy files to fds
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3a5a357dc76dcba18ef24b559c6c232d9ab548dc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 1 22:34:47 2009 -0400

    libsandbox: bail when processes go away while tracing
    
    If we're tracing a proc and it dies while checking a func, just back out
    cleanly since it isn't like it can cause a violation at that point.
    
    URL: http://bugs.gentoo.org/264478
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Paul Mulders <info@mld.demon.nl>

commit c2611dc8a80561a5c8af94291f661eb116f23c48
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 1 12:29:59 2009 -0400

    use newer automake features
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3cb4b1d9dff9d301025d5eaaef546dd22a9c17a0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 1 09:19:23 2009 -0400

    libsandbox: fix slightly broken logic with ptrace() return
    
    The code attempted to account for the PEEK requests returning -1 in the
    normal case via errno, but the logic was incorrect.  This ended up
    flagging some successful ptrace() calls when the data returned was -1.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 60c1345bfa4f5e37adade3cfbb8ae8834475af3b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Apr 1 06:59:20 2009 -0400

    libsandbox: tweak /proc/.../cmdline check for hardened
    
    Some hardened systems disable /proc/#/ access when the process in question
    is not owned by the current user.
    
    URL: http://bugs.gentoo.org/264476
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Andreas Westin <forsaken@forsaken.se>

commit 8528e918e24c22779e6bf802794e99f1418ec4ba
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 21:39:16 2009 -0400

    libsandbox: enable tracing for multiple personalities
    
    Initial support for tracing non-default personalities.  For example,
    tracing a 32bit binary from a 64bit environment.
    
    URL: http://bugs.gentoo.org/264399
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Patrick Lauer <patrick@gentoo.org>

commit 2de98506a592a6d21fb13416dfd4275cc90fe473
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 07:48:56 2009 -0400

    bump to sandbox-1.8
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1e2f70c5703fab12057ad8bcfff856fbade285cd
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 07:37:35 2009 -0400

    sandbox: fix desktop paths
    
    We don't provide `sandboxshell`, so don't try to run it.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit df507caa53e7a005aa57277dea4e5223f4509e70
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 07:31:52 2009 -0400

    libsandbox: sort system calls alphabetically
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9cad39b6609508b27b4e872bf24dcf79792e785a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 07:11:14 2009 -0400

    libsandbox: fix crash with unreadable paths
    
    When trying to deal with simple paths like ".." in an unreadable tree,
    the realpath code would scan back too far with pointers and crash.
    mkdir -p a/b
    cd a/b
    chmod a-rx ..
    ls ..
    <boom>
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e67d07029af457a1387af6b151cfaff394b1ed43
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 06:47:57 2009 -0400

    libsandbox: fix regression during merge of tracing code
    
    Looks like I made a typo when adding support for ptrace.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 93c234c6c88525ab173828f39062c685cdbcfa60
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 06:35:50 2009 -0400

    tests: have git bisector setup sandbox env
    
    This way tests given to git bisector can use normal `addwrite` and such
    functions without any magic.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit cd35c3fbcf82fb6f651b8c3d25d77df32ff48755
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 05:41:57 2009 -0400

    tests: add more error checking all over the place
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9a1e31e21fc42ba02ddcc780762b07642f8d2e9b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 02:49:39 2009 -0400

    tests: make sure *at() funcs get EBADF with bad fds
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7fab636fb34f95cb0e40fbaa13fcdf10cb297abe
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 02:43:35 2009 -0400

    libsandbox: be nicer with unknown traced signals
    
    Ignore SIGCHLD (in case the static app made some children), and in the
    case of unknown signals, simply warn rather than aborting so more stuff
    "just works" (well, ignoring the additional warnings).
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5788ed4551f9dc08e55664ea1ac19070d2c795b2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 02:41:33 2009 -0400

    libsandbox: handle bad fds with *at() funcs
    
    Some code expect that when an *at() func is given a bad fd, the errno
    value be set to EBADF (like glibc).  So convert some of the common errno
    values of failed readlink() to what would have gone down if we called the
    actual *at() function.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 45a3821f1c80b3d368e1879f73bd28384ac376cf
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 01:53:46 2009 -0400

    sandbox: stop denying /etc/ld.so.preload
    
    The very old method of loading sandbox was via ld.so.preload, so it was
    added to default deny list.  However, that's long dead, and since it does
    not conflict with LD_PRELOAD, no point in preventing access.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 393520dc1ae6fd8ff303430f5c9b96bcec43eb40
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 31 01:35:27 2009 -0400

    libsandbox: declare cmdline const since it is
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 02288b2c0fa1b0976359bd8c7d96e84f9d69f0ce
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 30 19:58:20 2009 -0400

    tests: add basic functionality tests
    
    Make sure many of the functions work in their simplest form:
     - link
     - linkat
     - mkdirat
     - mkfifo
     - mkfifoat
     - mknod
     - mknodat
     - rename
     - renameat
     - symlink
     - symlinkat
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 25425878243c5ca1ff21e6f479e585c60b943930
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 30 19:56:29 2009 -0400

    libsandbox: handle more *at functions
    
    Add some more *at functions to the main checking code.
    
    URL: http://bugs.gentoo.org/264320
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Harald van Dijk <truedfx@gentoo.org>

commit 1ad1d074363d903cd0d3dd9bb033c667edb53226
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 30 19:55:35 2009 -0400

    tests: fix dev_t/off_t loading in tests
    
    Since these sizes are often not sizeof(int), we need to make sure to read
    and print them properly.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 083ac9f4d25664c32c00b675ca57202f81305cb8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 18 21:45:06 2009 -0400

    libsandbox: detect /proc features
    
    Handle /proc differences (fd/cmdline/etc...) across systems.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2641abe6d67ecaa89a1ed7bd6dad93cf63bdd6c0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 18 07:44:52 2009 -0400

    libsandbox: initial support for tracing of static binaries via ptrace()
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit efdab2b9c831a47c6bc67aa903b75d352c494a7a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 18 07:44:28 2009 -0400

    sandbox: add desktop/icon files
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 80b7fad2eeb02ceaf2b1c2e33a7e9439d73e1842
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 18 07:39:21 2009 -0400

    build with --no-undefined when available
    
    Since libtool's -no-undefined is a nop on Linux/binutils systems, add the
    linker flag for disabling undefined symbols our self.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit acfaf3aaaf46b09c5292c62ae941ff95d83ebf31
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 18 05:04:41 2009 -0400

    sb_print: add l (long) modifier support
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d670fe35d1935fb9c66b6609cf85ad5864a2f1f1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 18 05:03:55 2009 -0400

    libsandbox: shorten the sandbox wrapper func names
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f06150540e02b694ee87e89d61db8da95f42ed50
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Mar 14 13:27:20 2009 -0400

    libsandbox: add an eqawarn() func
    
    Break out most of the QA static ELF warning code into a new eqawarn()
    func.  This way we can handle dynamic stuff like calling portage's eqawarn
    func to handle dirty details like logging.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 08692a1039203a69fb6630ec9f77776c896a640d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 09:12:06 2009 -0400

    bump to sandbox-1.7
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 12e00f1199e029554ed250fea1f6c95ca62baf2b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 07:25:40 2009 -0400

    sandbox: don't put duplicate sandbox.so into LD_PRELOAD
    
    If launching another sandbox instance, don't blindly append LD_PRELOAD
    with the sandbox lib.
    
    URL: http://bugs.gentoo.org/216942
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Brian Harring <ferringb@gmail.com>

commit e47edf067cbd939ac8285f87f6fab06baaccbbfb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 06:47:45 2009 -0400

    libsandbox: unify getcwd wrapper with common wrappers
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 950960a7be813854495c5e7420ff5ef9d674c662
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 02:57:49 2009 -0400

    libsandbox: add debug output for all wrapper early-checks
    
    If a wrapped function bails early due to some local logic, make sure we
    log this at the debug level.  Having them silently return on us makes
    tracking down problems harder than it needs to be.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 55ab6bd7a8056fc1c4c4a2ab3f76c2664b44ed1d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 02:57:07 2009 -0400

    tests: make sure non-root mkdir works with funky perms
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit cfbf35136d5ebce4e0db6032f3c0b1ad423871d6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 06:27:44 2009 -0400

    sandbox: pass shell exit status up
    
    If the command sandbox was instructed to execute failed, make sure we pass
    that exact exit status back up instead of normalizing everything to 0/1.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 03fd3b504458cee4da623c5ec56b73e7385514dc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 08:46:04 2009 -0400

    tests: filter SANDBOX_PREDICT
    
    Portage sometimes sets up a predict for / when running tests.  Filter that
    out since we don't need that kind of helping hand, and we want to test the
    exact behavior of sandbox.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2ed9392befadf6e31ef85d9d35f8136d58d8b10f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 02:34:08 2009 -0400

    libsandbox: handle unreadable dirs better as non-root
    
    If attempts to access the specified path fails, this is most likely due to
    funky perms being setup.  Since this is really only an issue for non-root
    users when testing stuff (like the coreutils tests), we can let the real
    func do it's work when running as non-root.  If the path contains links to
    some place we would normally deny, then attempt to dereference what little
    we can.  If all else fails, the standard unix permissions will prevent
    damage from being done even if we are unable to log it.
    
    URL: http://bugs.gentoo.org/259876
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Hill <dirtyepic@gentoo.org>

commit 6379fe3837553bba9e16fbb94cbce31bcb3c79e4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 02:11:06 2009 -0400

    libsandbox: handle long paths with *at funcs
    
    If a path is too long, then attempting to read the fd link in /proc/*/fd/#
    will fail with ENAMETOOLONG.  In that case, we should restore errno and
    let the normal function do its business.  Chances are we wouldn't have
    gotten this far in the first place if there was an actual deny in place.
    This fixes some of the testcases in coreutils that create really long
    paths and then test things.
    
    URL: http://bugs.gentoo.org/259876
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Hill <dirtyepic@gentoo.org>

commit f0d5c16506df22e31460994dba79a244b42b5198
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 12 01:59:08 2009 -0400

    tests: unify some m4 logic into common code
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 38e0893522c1cafcc680785986df522224c468c9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 11 12:42:54 2009 -0400

    bump to sandbox-1.6
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bfc40d010a7e8029e706c9f7b3d5fab3be010acd
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 11 12:14:39 2009 -0400

    tests: do not run shell script tests for non-native ABI
    
    Since the shell scripts rely on /bin/sh, we can only test libsandbox.so
    that matches the ABI of the shell interpreter.
    
    URL: http://bugs.gentoo.org/259244
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Joshua Doll <joshua.doll@gmail.com>

commit 2c1aff83232f621b73b4fb093d6a296851500b36
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 11 11:42:26 2009 -0400

    libsandbox: improve debugging support
    
    Dump symbols before we abort and if SANDBOX_GDB is enabled in the env,
    automatically launch & attach gdb to the crashing setup.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f97f3d9a39e86b6de3fda3dc0f8470907bbb0ce8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 11 11:40:54 2009 -0400

    libsandbox: do not restore errno in resolve_path() error path
    
    If resolve_path() was unable to resolve things, then do not restore the
    errno value as we use this to signal higher layers.  This should make the
    getcwd tests behave better.
    
    URL: http://bugs.gentoo.org/261936
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Hill <dirtyepic@gentoo.org>

commit 5071f86083ca028e86500ec2459894e57245ad05
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 11 10:35:38 2009 -0400

    libsandbox: add more exec wrappers
    
    While the execvp() is a common entry point, the other ones are often used
    as well.  While they don't take environ pointers directly, the env could
    have been modified before calling the exec function, which means we need
    to restore our LD_PRELOAD setting.
    
    So now we support execv/execve/fexecve/popen/system.  Missing from this
    list are the execl* funcs, but that's because they aren't exactly easy to
    interpose with the structure of their variable arguments.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 99e318c1a2640091204f970a2e9ff4bdc238980d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 11 07:28:09 2009 -0400

    libsandbox: dump exec QA static notice to /dev/tty
    
    Rather than dump the QA static notice to stderr when trying to execute a
    static binary, write directly to /dev/tty.  This prevents breaking things
    like testsuites that validate the exact stderr output.
    
    URL: http://bugs.gentoo.org/261957
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Kent Fredric <kentfredric@gmail.com>

commit 351ad06156e3bc3368ba94ff1c0ba3eda5237403
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Mar 10 03:42:20 2009 -0400

    improve configure argument recording
    
    Use ac_configure_args as autoconf sets that up for us rather than trying
    to record "$@" ourselves.  The latter may be corrupted by config.site
    scripts.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7a9e77597977a44acf91c024410a30c31612c85f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 9 05:57:12 2009 -0400

    tests: convert `touch` to `open-0`
    
    Convert the `touch` test to use our `open-0` util so we get fine grained
    control over the test and so we don't have to worry about localization
    issues or about system-specific messages.
    
    This also extends the test framework to start parsing symbolic open()
    flags as well as errno values (and add support for checking them).
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7fa9c03083e90cdb8476ff3dc8154572d71aa852
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 9 05:53:40 2009 -0400

    bump common macros up to localdecls.h so tests can use them
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 80bcecc4ddeefa5c76c64a70c98e60dd4cfc1948
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 9 04:38:57 2009 -0400

    tests: do not sscanf("%i", mode_t)
    
    Since not all systems have sizeof(int) == sizeof(mode_t), we do not want
    to use scanf("%i") to parse a mode_t size.  Otherwise we might corrupt the
    stack.  This happens on FreeBSD for example.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f23accf481631692b85e503949c4e73f13b86b9e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Mar 9 04:38:42 2009 -0400

    tests: avoid warnings when cleaning
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b011b2f8ed359960f6d1dabe374b0dc266752e19
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 8 21:32:00 2009 -0400

    libsandbox: improve static ELF notice
    
    Rather than just dumping the name of the static ELF, include the arguments
    to the program as well.  For common programs (that are known to be safe),
    don't bother whining (like using the static ldso to verify binaries).
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d845565cbb879a297dfba2fe7ec069ea8995afb7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 8 08:56:46 2009 -0400

    bump to sandbox-1.5
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7926384647f176889ec2e64e2351758b3d9bd099
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 8 08:21:22 2009 -0400

    sandbox: delete the testing var after install
    
    We don't want people to bypass normal mechanisms with the testing var, so
    zero out the name when installing the sandbox binary.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d4dee0ebe39627e9d3b90c312f770d7ba73a46f5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 8 07:35:32 2009 -0400

    tests: add symlink tests and unify code
    
    Add test cases for symlink behavior and unify some of the test code to
    make adding more test cases even easier.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7b0b914b4ea0e594867bad91fe1aaffa0c21d87b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Mar 8 07:14:17 2009 -0400

    libsandbox: handle symlinks properly
    
    Make sure we handle edge cases that involve symlinks and functions that
    operate on symlinks.  This includes newer style *at functions that can go
    between operating on symlinks and operating on the linked files, and on
    symlinks to files that live in explicitly denied paths.
    
    URL: http://bugs.gentoo.org/254914
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Mike Auty <ikelos@gentoo.org>

commit 31e552065c41abbba77cf92717533c5d8f2a98e0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Mar 7 01:44:45 2009 -0500

    libsandbox: push errno save/restore down in openat()
    
    Minor optimization to not bother saving/restoring the errno if we don't
    actually call another C library function.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c88c17569e39170feb5f0b2a87cd66d3203c6acb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Mar 5 00:25:40 2009 -0500

    add a test case for previous commit
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 681af0011c665c0cb6f4048c91257553a9b4405a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 4 23:52:15 2009 -0500

    bump to sandbox-1.4
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit aad0a25b8708a06171a4703a2f28d7da68be78c7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Mar 4 23:43:28 2009 -0500

    libsandbox: save/restore errno for hardened
    
    Since hardened systems may return -1 in the case of an error, but this
    isn't a "real" error, we need to save/restore errno.  Otherwise we corrupt
    the errno value of the caller.  This is a regression on hardened systems
    due to the recent commit bab59e2c which optimized symbol loading a bit.
    
    URL: http://bugs.gentoo.org/260765
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Magnus Granberg <zorry@ume.nu>

commit 3f36f0ce46a85a7f60afb33e251782af99eec015
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 20 02:31:19 2009 -0500

    libsandbox: unify openat and __wrapper_simple
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ff0dd36d8f038d29d72f0d5d7c43edaa4c2385bc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 20 02:30:03 2009 -0500

    libsandbox: unify creat/creat64 wrappers
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 40ac0686125f8a272346a546deb67a2c6f8ba843
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 20 02:29:51 2009 -0500

    libsandbox: use sb_unwrapped_open() in creat wrapper
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4efa009dff3dca0d9ca31e71524491e150c53666
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 20 02:07:06 2009 -0500

    handling NEWS is a pain, so stub it
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a9c1684b89ae38fed99f1622a72406f9a00097f9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 20 01:56:02 2009 -0500

    bump to sandbox-1.3.9
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 15c12529fc53816d514d56a34e810ee010130c0b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 20 01:47:23 2009 -0500

    libsandbox: add wrappers for _FORTIFY_SOURCE funcs
    
    When glibc is compiled with optimization and higher _FORTIFY_SOURCE
    levels, the headers redirect dynamic calls to the open*() functions to the
    __open*_2() functions.  The latter provides runtime checking.  But this
    means we also need to wrap the latter forms in order to get sandbox
    checking on the open() functions.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d11b0104fd8f8c60430e377f62964e05482292f3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 20 01:26:41 2009 -0500

    scripts: disable wrappers for weak __XXX symbols
    
    Since there doesn't seem to be a use for wrapping the __XXX weak symbols,
    and things aren't using these in normal glibc/uClibc code, stop attempting
    to handle them.  This should work around the FreeBSD infinite recursion
    issue as well (their getcwd() calls __getcwd(), both of which are public
    symbols).
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9e67456ccba9bf8e5c5d37e91c5822f1b63e2f8c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 17:41:40 2009 -0500

    do not fail autogen step if autoconf-archive is not installed
    
    Rework the shell code slightly so a missed grep does not trigger the -e.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3fe37bef53db60e21a4f9caea14da05a21273499
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 16:13:16 2009 -0500

    tests: use $AWK rather than awk
    
    The configure scripts will try hard to set up AWK as GNU awk which is what
    we want/need in the sb_printf test.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit eda3df296ed9ec5b885172d53b02fde5cef2a2a1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 15:49:47 2009 -0500

    add configure checks for the 64bit lfs funcs as well
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7b0076ad9a24f29da59146c345801b142cfe1368
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 15:34:28 2009 -0500

    add checks for signal() return types
    
    Some systems use sighandler_t while others use sig_t.  Add a configure
    check so that we can assume sighandler_t is always available.
    
    URL: http://bugs.gentoo.org/259507
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Javier Villavicencio <the_paya@gentoo.org>

commit 35aad022be07f5c8cca4de9a9c71480157275800
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 15:17:36 2009 -0500

    include the m4 files from the autoconf-archive package
    
    Not everyone has the autoconf-archive package installed, so have the
    autogen.sh script automatically update the local copies and include them
    in the tree.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4ff12b76f2ebf13ac079e733635fcea832631966
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 02:05:08 2009 -0500

    libsandbox: lock main syscall code with a mutex
    
    Since the main sandbox code maintains state with global variables (like
    sbcontext), make sure we use a pthread mutex to prevent multiple threads
    from corrupting each other.  In the non-threaded case this shouldn't be
    a problem as the C library provides redirection stubs in its own code.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9483901c8f7dff552dc26c0b3532f8e5065a5f61
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 02:02:10 2009 -0500

    libsandbox: shuffle/unify local prototypes
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 111add353415f7ec08207ef1654327c19887e189
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 01:53:16 2009 -0500

    libsandbox: avoid recursion by using sb_unwrapped_access()
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4141146ff8cf41a6a3ccd7a4580d0814698429e9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 01:52:09 2009 -0500

    libsandbox: convert internal open func to sb_unwrapped_foo style
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 22e29a3ae6cc4cee0b8a96113be2cd147f277e6e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 01:50:04 2009 -0500

    libsandbox: convert internal getcwd func to sb_unwrapped_foo style
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 72c4aa8d9f0f96c3c58c5d3d1f50066b386f0924
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 01:44:51 2009 -0500

    libsandbox: create hidden targets for most functions
    
    In case we want to access a standard function unwrapped, create hidden
    functions that do just that.  This creates a standard for most functions
    of the form sb_unwrapped_foo().
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 140a83e17f20e5a6fecc1a73a629aed52e16036a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 00:45:50 2009 -0500

    libsandbox: simplify WRAPPER_PRE_CHECKS() a bit
    
    Remove some of the ugly indirection in the WRAPPER_PRE_CHECKS() defines so
    it operates like a normal C function -- much easier to work with those.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 90df3741ced48554bcd113dc40599b8ea2972e1a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 00:43:14 2009 -0500

    libsandbox: tweak errno handling in fopen() wrapper
    
    No point in saving/restoring the errno value if we don't make any C lib
    function calls.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bab59e2ccd4c4c6d05854f5c2459439bb85be336
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 18 00:37:57 2009 -0500

    libsandbox: do save/restore errno in sym lookup
    
    If the symbol lookup function failed, then we abort.  If the lookup
    worked, then errno is not touched.  In either case, there is no need to
    save/restore the errno value.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e764d4fcb66a0b3483d48d046d84b660837ae09b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Feb 17 22:16:08 2009 -0500

    drop unused local GLIBC_MINOR define
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 22057035f812a717be2a90e9b63ae7df2952089d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Feb 17 21:21:51 2009 -0500

    fix environ check
    
    AC_CHECK_DECL will always create the relevant define and only differ in
    the actual value (0 or 1).
    
    URL: http://bugs.gentoo.org/258365
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Javier Villavicencio <the_paya@gentoo.org>

commit be2ba9ef57cdca2a6b0c18f42e7b5b7da17b9599
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 15 02:09:39 2009 -0500

    libsandbox: update ENAMETOOLONG comments to match egetcwd() changes
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1d27d86ddfeefd6b6efe38e45740a6835527e7cb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 15 01:46:25 2009 -0500

    libsandbox: convert more code to stdbool to simplify things
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c2eee93088aad4876c2f25fcb78d67ad18ffa425
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 15 01:08:00 2009 -0500

    libsandbox: calculate longest symbol name dynamically
    
    The longest wrapped symbol name has hit the hard limit of 10 chars, so
    rather than manually bump it up, calculate it on the fly with the awk
    scripts.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 41621f114dcf879c45ae982c8c9796c4b050d4db
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 15 00:28:09 2009 -0500

    libsandbox: make sure all mknod symbols are wrapped
    
    The mknodat() symbol on glibc is rewritten to __xmknodat(), so we need to
    wrap that and check for all of them in the check_access() code.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 743b7fb6e4057edba5cffac6357a6e45f0577117
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 14 22:43:54 2009 -0500

    libsandbox: simplify clean_env_entries a bit
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7fb487afc465b1c98f73717a16601029877ee561
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 14 22:35:01 2009 -0500

    libsandbox: fixup egetcwd() a bit
    
    If lstat() worked, it won't clear errno for us, so we have to do it.  Also
    unify the error code paths.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ec848fdee7c16ff19c3ed87b2de49c6f9ebfcda6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 14 22:26:42 2009 -0500

    libsandbox: move cached_env_vars into .bss
    
    No point to allocating cached_env_vars dynamically since we allocate it
    once during init and it's only 4 pointers.  Stick it into the bss instead.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7b75eafeb73f70f56de1b90eb7a874fd21fd852f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 14 03:30:16 2009 -0500

    libsandbox: handle ENAMETOOLONG properly with getcwd()
    
    The core libsandbox code was checking for ENAMETOOLONG when working with
    getcwd() and doing the right thing, but it never passed this error back up
    to the caller.  This would make some tests (like the getcwd tests in many
    gnulib/autotool based packages like coreutils) to keep on trying since it
    did not detect the expected failure conditions.  So now when we hit the
    ENAMETOOLONG error, we pass this specific error back up to the caller.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5839c817cc69d8e49e603502edbcd14b64f7523a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 14 02:53:29 2009 -0500

    bump to sandbox-1.3.8
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 541bbacc5a7b5f2f98ce9b64d05b8e3bb94ca211
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Feb 13 02:34:53 2009 -0500

    libsandbox: do not call x*() memory funcs in memory replacement code
    
    As Maximilian points out, the internal memory funcs in libsandbox are
    already called by the x*() type funcs which means error checking occurs at
    the higher level.  So we don't want to do it at the inner level either as
    that will lose the real file/location where the memory allocation occured.
    
    URL: http://bugs.gentoo.org/257179
    Signed-off-by: Maximilian Grothusmann <maxi-gentoo@own-hero.de>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a022869c9ba2782efa3693e3559a416e010c2a26
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Feb 12 18:49:56 2009 -0500

    tests: simplify script-2.sh a bit
    
    Since the autotest framework automatically creates private dirs for each
    test, we don't need to do it ourself.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 515cb60c9aecff2d10c691f7fc5779f53fa97541
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Feb 12 18:41:41 2009 -0500

    sandbox: do not dist sandbox.sh and clean up error messages
    
    The sandbox.sh file is generated now, so do not mark it as a dist target.
    To make this kind of error easier to figure out in the future, have all
    sandbox errors related to files include the full filename that is causing
    an error.
    
    URL: http://bugs.gentoo.org/258690
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Alexis Ballier <aballier@gentoo.org>

commit 0c93216363511f5d24bba0ece697b32d59bd78fa
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Feb 12 18:34:06 2009 -0500

    disable tests for unavailable funcs
    
    Not all systems implement the full range of functions we wrap, so we
    shouldn't require them in the test suite either.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4df4394aaae2b718b347c4d0b1804e1d294e5f56
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Feb 12 02:42:25 2009 -0500

    sandbox: check signal returns and allow SIGHUP to be ignored
    
    If the SIGHUP signal is already set to SIG_IGN, then do not replace it
    with our own handler as most likely this means the user is using `nohup`.
    As for the other signals, check the return value and warn if something
    weird happens (like they aren't all set to SIG_DFL).
    
    URL: http://bugs.gentoo.org/217898
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ken Bloom <kbloom@gmail.com>

commit 23eb90e6b96fc9a448dd9fba7640733fa578ce47
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Feb 12 02:22:58 2009 -0500

    add testcase for old PATH bug
    
    Also fix common script execution code to remove debug "moo" string and
    disable pointless sleep code in sandbox.
    
    URL: http://bugs.gentoo.org/139591
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ciaran McCreesh <ciaran.mccreesh@googlemail.com>

commit 90815cf76eb715a21af1bf7c4c55bd8239329807
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Feb 10 19:40:37 2009 -0500

    bump to sandbox-1.3.7
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 86b8059f3484b9a67a5e5ae1a46fc5b1b3c0efae
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 9 19:23:24 2009 -0500

    provide environ decl if system sucks and doesn't do it for us
    
    URL: http://bugs.gentoo.org/258365
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Dan Coats <admin@easyshellz.com>

commit 3aadb01e8252557563baaa469cb986fa7ccf11c6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 8 00:48:36 2009 -0500

    tests: get scripts working in sandbox.sh
    
    Make sure we source the local sandbox.{bashrc,conf} and we always make the
    helper functions available when testing even if we aren't interactive.  Now
    we can run `make check` and test the local version of sandbox even when we
    are running under another sandbox env.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a16fad96ea5de993cca61753198db43789156c7e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 8 00:47:05 2009 -0500

    sb_printf: get z modifier working and fixup tests
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0f7ed37fdc1d7c98328536db372ec6b7a49c0d5e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 22:39:22 2009 -0500

    libsandbox: let real funcs handle non-existent paths (part 2)
    
    Let real funcs do their magic even before predicted paths.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3b6b39b9a7f44af3669ef6618e940851a3b983bf
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 21:56:06 2009 -0500

    bump to sandbox-1.3.6
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 00dc6a461d15aeb6dfad4ca7e61b38f9375bc203
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 21:49:11 2009 -0500

    libsandbox: fix sandbox /proc/self/fd regression
    
    The optimize changes added after 1.3.2 were not entirely correct.  The
    sandbox /proc/self/fd check was changed to check for the dir itself rather
    than allowing all paths that started with the dir.  So let's comment more
    about what's going on and fix it up.
    
    URL: http://bugs.gentoo.org/257418
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Hill <dirtyepic@gentoo.org>

commit f808b78fa2bfe7e9893c3a79f87bca8a3a6455bb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 21:45:13 2009 -0500

    libsandbox: fix sandbox log dir regression
    
    The optimize changes added after 1.3.2 were not entirely correct.  The
    sandbox log dir check was changed to check for the dir itself rather than
    blacklisting all paths that started with the dir.  So let's comment more
    about what's going on and fix it up.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4f4ac7dae9efdca7db226c8c56a240eff5d5db9f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 19:34:50 2009 -0500

    tests: add some more test scripts
    
    Some helper scripts for automating git bisection, and add a test case for
    /dev/fd/ regression.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1f835b90585676e3f87608e94a6500b8732b4b45
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 16:43:43 2009 -0500

    sandbox: fix typo in struct sandbox_info_t decl
    
    A "typedef" was missing when declaring the sandbox_info_t struct resulting
    in a large unused "sandbox_info_t" object showing up everywhere.  Normally
    this isn't a problem (other than resource waste), but some systems don't
    like multiply defined objects even if they're in the .bss section.
    
    URL: http://bugs.gentoo.org/258031
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Timo Kamph <timo@kamph.org>

commit 5b39935d5dbaff7c93844fb0bbb048ab25dd8563
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 07:11:21 2009 -0500

    bump to sandbox-1.3.5
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit dbf1c6bd951a2d30a78a4cdf183e2361a0b52400
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 07:05:59 2009 -0500

    libsandbox: ignore *.py[co] files for now
    
    A very common bug (apparently) is for .py[co] files to fall out of sync
    with their .py source files.  Rather than trigger a hard failure, let's
    just whine about it.  Once python itself gets sorted out, we can drop
    this.
    
    URL: http://bugs.gentoo.org/256953
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 28d7ee79e8a6bb8823eaf7b725eeaeb1bd94d8eb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 06:48:10 2009 -0500

    libsandbox: fix call to backtrace()
    
    The size argument to backtrace() is the number of elements, not the number
    of bytes.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 969d7480ea15d36c5fdd10827b30d22c81bd2eb5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Feb 7 06:38:46 2009 -0500

    libsandbox: fix minor memleak from cmdline simplification
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c68e1f174ef60d3d75b14a7780368598f6cbdaf9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Feb 5 01:53:36 2009 -0500

    gen_symbol_version_map.awk: filter out more symbols
    
    Ignore symbols that are not functions, or do not have the proper binding
    and/or visibility for us to override.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0a6857ff4b2adbb3f27eccf724cfdc934ab918ea
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Feb 5 01:52:40 2009 -0500

    pull in siginfo.h when available
    
    Some systems define psignal() in siginfo.h, so use it when available.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5f0d95f6bee4d81655603fc83b29c80918459a0b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Feb 5 01:31:07 2009 -0500

    libsandbox: detect linker flag for version scripts
    
    Support --version-script and -M flags for passing version scripts.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 30255588cd23d0be9dda3d5f385ea27c8f9d67f1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 4 22:55:51 2009 -0500

    libsandbox: use xxx_t types with __xmknod
    
    Use the public xxx_t types rather than the internal __xxx_t.  The former
    are more portable.  With glibc systems, these are the same anyways.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7238cb1a6077705cfb585ddedbdabf5ebf38201e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 4 22:55:44 2009 -0500

    libsandbox: add _xmknod wrapper point for __xmknod
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e170e9771355e80fdab6547fd54a33e7a9bf8a0c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Feb 4 20:13:04 2009 -0500

    support the OpenSolaris toolchain
    
    If the linker doesn't support -Wl,--verbose (such as the linker in
    OpenSolaris), then try using -Wl,-M and parse the linker map for libc.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 60dd15b1cd4beb1472d559550782d767b78604c1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 2 02:12:28 2009 -0500

    sandbox: new sb_{p,}err() helper functions
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ff1976a7b23b583ec9e9b17a6b2953b1258f78c5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 2 02:05:24 2009 -0500

    sandbox: fixup a few more NULL memory checks
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1001c5ed6854cad1bf52b8b59e3a1a084600b8c6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 2 01:54:25 2009 -0500

    libsandbox: let real funcs handle non-existent paths
    
    If no explicit deny exists on a path, and some leading components of the
    path do not actually exist, pass the path on to the actual function when
    we know said functions will fail.  For example, many tests operate on some
    kind of path where the leading components do not exist.  Such as the m4
    test that tries to do fopen("/none/such", "w") and the /none/ dir does not
    actually exist.  Since we know /none/ does not exist, let through funcs
    that will fail in this case.
    
    URL: http://bugs.gentoo.org/244396
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Hill <dirtyepic@gentoo.org>

commit 12117c5a9410793d21ae4aa37e9133c0ab1e6c7e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 2 00:35:02 2009 -0500

    build with --as-needed by default
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 920b65fa516e0430258d2b9d7c64f6a82efbe655
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 15:34:40 2009 -0500

    sandbox/libsbutil: remove more useless error checks and var inits
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a82b13d844b3362021b90df86c10be6dda72f185
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 14:55:36 2009 -0500

    sandbox: convert remaining perror to sb_pwarn
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit cc079307a39019c59b4b114e0133c267198e35de
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 13:55:56 2009 -0500

    build with --gc-sections by default
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a3877e55eb25e1206d780869a5425f3adb3ceace
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 13:55:36 2009 -0500

    AUTHORS: fix Geert and Brads e-mail address and sort it
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9fe6d7b99e77c259a53820885e9e2423585c402f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 03:14:31 2009 -0500

    sandbox: unify/standardize message output functions
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 14167287a8afc9ba66ec51f5a47b0c331c95e09d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 02:57:56 2009 -0500

    sandbox: remove unused /var/tmp dir handling
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e9eb2df4855a8e9a5e96d15850b6bc2bb0da1e17
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 02:44:47 2009 -0500

    libsandbox: drop unused rc_log_domain
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 220cf5fed1d0e3f3818e68735af0e7d26e1dd346
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 02:39:55 2009 -0500

    libsandbox: use -avoid-version
    
    Since we don't care about library versioning (as we always just preload
    the libsandbox.so file), don't bother including it in the SONAME.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 97323794fa9faf5d8d939024cf7a90fa8fc80ad9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 02:37:14 2009 -0500

    libsandbox: combine consecutive write statements
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c172de371192102aeeac0b1e51ef9a8cb3c231a6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 02:29:04 2009 -0500

    libsbutil: cull more unused debug/string code
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 8cb975fd5dcd9d22c986bee924b7d713b797db60
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 02:28:48 2009 -0500

    sandbox: declare all local funcs static
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b010b6f06fb73850edfa54107b4ce1f4ef59cb1b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 02:27:30 2009 -0500

    sandbox: simplify print_sandbox_log() function
    
    Avoid memory management issues and read/write the log file directly to
    stderr.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6b0d80b98ba7da7facd9b4be901905fe25516d11
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Feb 1 02:24:04 2009 -0500

    libsandbox: simplify cmdline reading to avoid strndup
    
    Rather than dynamically allocating memory via dynbuf and reading the
    cmdline into that (and thus calling strndup), just read/write the cmdline
    straight into the log file.
    
    URL: http://bugs.gentoo.org/257179
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Maximilian Grothusmann <maxi-gentoo@own-hero.de>

commit c688d9325b44f2593a425236da5f5dc1fea09c24
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jan 29 23:10:09 2009 -0500

    libsandbox: test for mknod separately from xmknod
    
    When optimizing the string calls, mknod was commented out due to it not
    being available by default on Linux, but that's not really correct.  Now
    that things are all available, make sure we check it.
    
    URL: http://bugs.gentoo.org/256825
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Tested-by: Javier Villavicencio <the_paya@gentoo.org>

commit eae354957cf66484f85e1e63d594ab4c372a60bd
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jan 29 11:21:48 2009 -0500

    use AX_CFLAGS_WARN_ALL from autoconf-archive
    
    Rather than doing our own toolchain detection for warning flags, just use
    the AX_CFLAGS_WARN_ALL macro from the autoconf-archive package.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit dddd2da9feeeba54b3b75d345f2f38ba20e7d47a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jan 29 11:13:12 2009 -0500

    libsbutil: setup {offsetof,MIN,MAX} helper macros if they dont exist
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit cc2d53c4c09e0ddb1b6de3243bf4eebe3b79c58f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jan 29 03:01:20 2009 -0500

    configure: dont bother building libctest with -Wall
    
    We don't actually care about the code, so don't bother using -Wall.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a16c2b178f6cd5591fd11f8497d2e570d81e9b06
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Jan 29 02:20:22 2009 -0500

    libsbutil: add fallback strndup() implementation
    
    Not all systems provide strndup() in their C library, and getting rid of
    the last consumer is a bit painful atm, so just provide a simple
    replacement.
    
    URL: http://bugs.gentoo.org/256741
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Javier Villavicencio <the_paya@gentoo.org>

commit 25ec463eb4ba49c2c82ad0e7e82ed48799be4f4d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Jan 28 22:34:05 2009 -0500

    sandbox: use $(LIBDL) rather than -ldl
    
    URL: http://bugs.gentoo.org/256741
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Javier Villavicencio <the_paya@gentoo.org>

commit dd6cb02ea383046a054e6b50d893da2056eab3d9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Jan 27 20:18:52 2009 -0500

    bump to sandbox-1.3.4
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a0d188683e1dd95a53856b418fa5a6aa24bf3cd7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Jan 26 00:53:26 2009 -0500

    sandbox.d: drop settings that packages should be handling
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ec3bfe9a8c11f9dec94871feb11c492a443469d2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Jan 26 00:53:04 2009 -0500

    libsandbox: include errno value in internal error messages
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1d8dac7eee63b01e70239872e297d60994f08865
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Jan 26 00:50:16 2009 -0500

    libsbutil: find libsandbox.so in non-standard paths
    
    If installing sandbox into a non-standard location (and the library ends up
    in a non-standard path where the ELF loader does not search), then set the
    LD_PRELOAD variable to the full path.
    
    URL: http://bugs.gentoo.org/254358
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Jeremy Olexa <darkside@gentoo.org>

commit 900b62ee39e93b58c87e0bad6430458b5ab5e440
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Jan 9 18:33:46 2009 -0500

    sandbox.bashrc: provide simple fallback e* msg funcs
    
    If testing on a non-Gentoo system (no functions.sh), then provide simple
    e* msg functions so we still get usable output.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 498b431f68db3b8d53f8c08d17857c860487bfda
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 31 09:37:42 2008 -0500

    libsandbox: optimize!
    
    Kill off string operations where unnecessary, and convert the sets of
    prefixes to arrays that we can iterate over.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c9f9ef7dc32c851b44f51b67912cf2d9a48b108f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 31 07:13:17 2008 -0500

    libsbutil: cleanup x* memory functions
    
    Pull the x* memory functions out of rcscripts and into libsbutil and change
    their style to match the rest of sbutil.  Also add xzalloc() and xstrdup(),
    and convert pointless strndup() usage to strdup().
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4f2ab93644139991f3b8f34feff14e61fe5fbc90
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 31 07:11:37 2008 -0500

    libsandbox/libsbutil: link with -no-undefined
    
    Since all symbols should be satisfied, link these libraries with the
    libtool flag -no-undefined.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 90e9c762d9b5dbeb8432f4992b6ba570baa732ca
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 31 07:08:47 2008 -0500

    libsbutil: delete more unused code imported from rcscripts
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d9247b61293d4290333bb9377a4844507b81feeb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 31 06:48:26 2008 -0500

    libsbutil: drop remove() replacement
    
    The remove() function is in POSIX, so drop our copy of it.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e44be81ea43780f5925b71401bd219dfb5ef2d1c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 31 06:43:06 2008 -0500

    libsbutil: sb_close(): only reset errno when close() worked
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 62f0e1c5e257ce187db37c15672b9a6145ad226b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 31 06:42:30 2008 -0500

    libsbutil: simplify get_tmp_dir code a little
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 8669764872f1ff838eead846403f4154a7b25068
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Wed Dec 31 06:14:00 2008 -0500

    libsandbox: unify wrapper funcs
    
    Unify a lot of duplicated code in the wrapper-funcs handling.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9aaa71aa4196395a638015363f9dd465d2dbd086
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Dec 29 15:56:11 2008 -0500

    configure: improve -static detection
    
    Some build flags contain "-static" in the middle of it, so make sure our
    -static detection code only finds words named -static rather than partial
    strings.
    
    URL: http://bugs.gentoo.org/253021
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Gordon Schumacher <gordon@rebit.com>

commit 9f1de9b6afdbb83ff75fad66204fd95a83975eab
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Dec 26 23:37:18 2008 -0500

    libsandbox: run awk scripts in C locale
    
    To avoid random locale issues, run the awk scripts in the C locale.  Some
    locales (like turkish ones) do not map lower<->upper like the C locale.
    
    URL: http://bugs.gentoo.org/252629
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Gürkan Gür <seqizz@gmail.com>
    Reported-by: Harald van Dijk <truedfx@gentoo.org>

commit 0271b7f0befd33f5302b3564b84af3c52d08045a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Dec 23 08:15:17 2008 -0500

    bump to sandbox-1.3.3
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 91381072e456175eca6da9b72b361cabd3c9f34a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Dec 23 08:11:04 2008 -0500

    libsandbox: handle unlinkat() like unlink() for symlinks
    
    URL: http://bugs.gentoo.org/248254
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 56a3e5cd27f2a7b19a0b9855577ae6f6015027aa
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Dec 23 10:06:48 2008 -0200

    libsandbox: make sure SB_NR_* is always defined
    
    If the host libc does not support a wrapped function, then setup a bogus
    SB_NR_* define for it still.  This way we don't need to fill up the source
    with ugly #ifdef's.  The resulting overhead at runtime should be
    negligible anyways as it's simply one additional integer compare.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 406edf1ed12fe843a2c4c028b1bb2d9db405db60
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Dec 23 10:05:36 2008 -0200

    define AT_FDCWD for older systems
    
    If the system is not up-to-date with latest POSIX, then setup AT_FDCWD
    ourself so that things build.  Considering how we actually use the value,
    this shouldn't cause any problems ...
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bec9a4a36ba5b3569b74ef4fbdc322613d3df519
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Dec 23 10:03:18 2008 -0200

    handle MAP_ANON on *BSD systems
    
    Some systems (like the BSDs) do not define MAP_ANONYMOUS but rather just
    MAP_ANON.  So handle it.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2fe10002a1a2df0aef56147e2024bc5f70863c1b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 04:51:11 2008 -0500

    libsbutil: scrub more unused rcscripts code
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ad906c8d8511e86f0034294ef4630a46338f37d4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 04:44:19 2008 -0500

    sandbox: include full libc path in version output
    
    Include the full libc path (LIBC_PATH) in the sandbox --version output as
    this is very useful debug information.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 06b3c2877175baa4f0c9689f585e17b25a6c8106
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 04:36:33 2008 -0500

    use AC_USE_SYSTEM_EXTENSIONS
    
    Rather than hardcode _GNU_SOURCE and such, just use the autoconf macro.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4d4224e633a88b0703ecd886d75b5d7688b2b02d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 04:35:52 2008 -0500

    move -fexceptions into a configure test
    
    To better support non-GNU compilers out there, move -fexceptions into a
    configure test.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 52e42743bfa7f107d47798c5e1282f2690701775
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 04:23:27 2008 -0500

    libsbutil: drop bogus inline usage
    
    Remove inline markings from functions whose bodies are never available at
    the point of inline calculation (i.e. they're always external functions).
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ce962a81797d455e4160f379c53d3432bbec36d4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 04:06:05 2008 -0500

    libsandbox: use integers rather than strings for functions
    
    Rather than doing a buttload of strcmp's on function names, use integers.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 63e2691d7d5c068ebd01f7576c4ae5a7df17a6d8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 03:39:06 2008 -0500

    libsandbox: push STRING_NAME into libsandbox.h
    
    Since all FUNCTION_SANDBOX_SAFE() need to pass up the func name, push the
    usage into the macro itself rather than every wrapper file.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7619984ebeeb1eb152c823c4c48ed91190380fc7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 03:29:16 2008 -0500

    libsandbox.map: beautify output
    
    Make the output of gen_symbol_version_map.awk a bit more readable.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit dc9432c7a5ed8a098a9724c0b7f83ea1f8fc7b31
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Nov 29 03:27:55 2008 -0500

    simplify awk scripts
    
    Simplify the generation of libsandbox.map and symbols.h and the associated
    awk scripts.  Now we don't have to rely on arbitrary whitespace in the
    symbols.h.in file.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0c556cb2100b4e88edb7193476a4aeb2609ca662
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 21:53:13 2008 -0500

    bump to sandbox-1.3.2
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f7485cd5b9e2d6faf5278550e7ce7eb4757beb0b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 21:42:23 2008 -0500

    libsandbox: pass __xmknod through the wrap stage
    
    Handle __xmknod properly in check_access().
    
    URL: http://bugs.gentoo.org/248254
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Hill <dirtyepic@gentoo.org>

commit 3387af6b2afa9a7dde9cc685cd40d10741cc4a3a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 21:39:21 2008 -0500

    sandbox.bashrc: fix ccache default for non-root
    
    Don't set the CCACHE_DIR to /root/.ccache if it isn't actually writable
    (i.e. running as non-root).
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c0c8553c4ce239da62e44e4807303d5d171866f4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 21:17:54 2008 -0500

    src/sandbox.sh: produce it from configure
    
    Rather than mucking with paths dynamically, just get the absolute top
    builddir from configure.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit eda1e106efba88ee1f8704e48df1476bdc6bc3b3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 20:22:50 2008 -0500

    libsandbox: tweak style a bit -- no functional changes
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f6c8d0f1c3c1a44d0d723a25193b1fa2e62c1688
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 20:20:05 2008 -0500

    libsandbox: pass lutimes/utimensat through the wrap stage
    
    Handle lutimes/utimensat properly in check_access().
    
    URL: http://bugs.gentoo.org/248263
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Ryan Hill <dirtyepic@gentoo.org>

commit 0419849fb1219dda53d27e935f6a50ab92aae55f
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 20:18:16 2008 -0500

    ChangeLog: use git to generate
    
    Now that we're using git rather than svn, update the ChangeLog generation
    method accordingly.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b4cf252f139ac09ee20bbd43fec1dad8d6a1fd75
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 19:38:00 2008 -0500

    sp_printf: make sure all output goes to stderr
    
    All output (even "normal" messages) have to go to stderr so we don't
    inadvertently break shell scripts that are being passed via stdout.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 04b874014374585ad32434ba897f81661a226e64
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 18:59:11 2008 -0500

    INSTALL: update to automake-1.10.2 version
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit abada735d9461fab73f57c7857f4a37f5012bc07
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Nov 28 18:52:17 2008 -0500

    .gitignore: ignore tests/atlocal
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bcdb7fda7600c2b748a37ceece7611c5d66c5913
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 17 12:15:30 2008 +0000

    TODO: add more todo
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0ad69f6ee4cdef15673b4ecb16f28c862404c2f5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 17 12:15:24 2008 +0000

    tests/sb_printf: include line number in test
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2f978b474b66172b5b07bca89d9e7890c24cbea2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 21:26:27 2008 +0000

    tests: fixup running test out of src tree
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f6513976e16ede361e2a53766673d73a51c046f8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 21:14:00 2008 +0000

    tests: move libsigsegv disable to configure.ac
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 50161cc0aec0c69f937103bb43f8fe5cbf88dc03
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 16:55:11 2008 +0000

    tests: ignore libsigsegv test for now
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 743ea3da313d82b7fe40d7ea340c137a63aa2689
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 16:50:05 2008 +0000

    libsandbox: resolve_path(): save/restore errno in all cases and dont leak memory
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a9f8a5a1dfb2f87c6d1c4fbce874baf790d1dd97
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 16:13:34 2008 +0000

    .gitignore: ignore .gdb_history files
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 31599d72d7bdb0cccef5d446d3761759bd06f6bb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 16:13:01 2008 +0000

    tests: add test case for libsigsegv
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 96e7b32aa9037b3e0a91301dc9fb7d6f4c45e8c4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 15:57:56 2008 +0000

    tests: execute sb_printf
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3ad0c9cb7ae914f3d05f27636148fc7075095999
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 14:39:45 2008 +0000

    sandbox: make -h/--help/-V/--version print out something useful
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e481ddb59e814a0331ff5043ce32e921a961075a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 14:15:38 2008 +0000

    configure.ac: bump ver to 1.3.1
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 155c7417c426a7c18b4d82e2d80796c08e3cdcaa
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 13:17:13 2008 +0000

    .gitignore: new file
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 075744a86f2c305f14b37a0495491ef7d1c4bf2d
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 13:02:46 2008 +0000

    tests: add an include to top srcdir
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 98e3336d09b6fe33d6a0396d8152058263e3c5f4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 12:59:25 2008 +0000

    tests: add tests.h to EXTRA_DIST
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6e440008590acda29c91f70e4a1c81397ef8498c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 12:58:09 2008 +0000

    tests: add test-skel-0.c to EXTRA_DIST
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9d5b7fc7d1c689624fbd8be8998ebc12f3d87412
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 12:54:19 2008 +0000

    NEWS: note major stuff for sandbox-1.3.0
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4b1695da5045021b800c36f60b66a7e19f957b08
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 12:54:10 2008 +0000

    TODO: add more items
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c6b1d05c2143d878402ca48cbf0dbbae64d09c8a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 12:47:43 2008 +0000

    sandbox: add a script to quickly test locally built libsandbox
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b1af67322b6012190968363a8e5f7a1f8d0305e1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 12:47:24 2008 +0000

    TODO: start a TODO
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b2435fd4fdee8473602affe6cfa720f8231d3188
Author: Ed Catmur <ed@catmur.co.uk>
Date:   Sun Nov 16 12:30:38 2008 +0000

    sandbox: display when a process exits due to a signal
    
    URL: http://bugs.gentoo.org/194943
    Signed-off-by: Ed Catmur <ed@catmur.co.uk>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 25e02f73215681b3f0c2f23b70786ef8f93d46e0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 07:43:25 2008 +0000

    libsandbox: implement initial dirfd parsing for *at functions
    
    Some programs like `chmod -R` actually use the *at functions as designed, so
    we have to handle things
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit fe6802f063cd147711bb63f8705b710a744ce8c6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 07:15:48 2008 +0000

    sb_printf: handle NULL pointers for %s
    
    if told to printf(%s) a NULL pointer, output "(null)" rather than crash
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 73a1f1f082f6f896a362f8176f43ce45691ba091
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 06:58:28 2008 +0000

    tests: add errp()
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 56c7f4b93489dcea347538be54d85276ecc8acfd
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 06:26:09 2008 +0000

    libsandbox: use SB_EERROR() rather than DBG_MSG()
    
    when things crash, DBG_MSG() tends to not actually output the message, so
    use the internal SB_ERROR() instead
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 054cd0bf015381548247950bfd7e48cf5b68c053
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 06:19:28 2008 +0000

    libsandbox/execve: fix crash with small files
    
    make sure the file being executed is big enough for the static elf check
    so we don't segfault by walking beyond the file map
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 96a5fad2341df12d4569d357acc6156719a4a101
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 05:32:35 2008 +0000

    add tests for sb_printf()
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c2fb309e472014783f268fa6d74ea64a718dbc3b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 05:31:35 2008 +0000

    sb_printf: implement %*s support
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f25d8135bdb77a3fbbcce2d6820011e09316046e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 04:12:34 2008 +0000

    fix up one more old style SB_EERROR
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a7afc3f309c901c544c1be8ff72d61d2f45137f8
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 04:11:23 2008 +0000

    unify SB_E{INFO,WARN,ERROR} functions and have them call the internal sb_printf function
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7f6145b395121cccf90dd44604177e1ab900c6d0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 03:56:35 2008 +0000

    libsbutil: simple custom printf() replacement
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bd391f56049dbb8d9564793acd462f0f1fac69c3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 02:28:16 2008 +0000

    libsbutil: drop some unused code
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 373b9bcf101988405419ac4032818b3531f75934
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 16 01:40:28 2008 +0000

    libsbutil: unify duplicate log debug functions
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d3953761f66476d7a0e6a38ede57661b4d190589
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Nov 11 08:23:51 2008 +0000

    tests: initial test framework
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e76e62fd39c4ea793a16b3c9fdf5af88b64bec12
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Nov 11 06:23:02 2008 +0000

    move build flags to configure rather than Makefile
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7dd90e17678fecf015d88d9f0e9db0e729e5a458
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Nov 11 05:42:04 2008 +0000

    libsandbox: catch fchownat and fchmodat
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit b77e39be895e5fdec22489c377a4c870ae542074
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 22:42:25 2008 +0000

    get the ChangeLog hook working with distcheck
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 62d9fe7aa9dae724d224bc0c2c10b601873f3e0e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 22:17:21 2008 +0000

    sandbox: convert to stdbool
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4d0d89215fa446bf00061043ac2542c511d22462
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 22:12:20 2008 +0000

    libsandbox: do a little memory memory checking on free() to make sure the pointer didnt get corrupt
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 53f3ceca6eabcf671dc049e6e352373a374190ab
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 22:11:40 2008 +0000

    libsandbox: zero out cached_env_vars
    
    make sure we zero out cached_env_vars when we free it so we don't hit a
    double-free on exit
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 30fe03ce830a59bdc84c67405806ad7b63d02d53
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 22:10:58 2008 +0000

    libsandbox: make sure we use local strdup rather than system libc
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e04e46ef28233efd013b3226eec88ca9742df8b2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 21:43:08 2008 +0000

    libsbutil: convert to stdbool.h
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2f65b0e4a6fa228869f0ca5b77cc840f9b3280ae
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 21:42:57 2008 +0000

    check for backtrace and stdbool.h/elf.h/execinfo.h
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f1f979ce56ec02a8e76e017c88b6a105bc185925
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 21:04:32 2008 +0000

    libsandbox: detect static ELFs and warn when we try to execute them
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1789ad209be18f72d2e42cf69ab10fcbdff17c3b
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 19:55:50 2008 +0000

    libsandbox: initial support for wrapping *at functions #174233
    
    URL: http://bugs.gentoo.org/174233
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Zhixu Liu <zhixu.liu@gmail.com>

commit 17207a5ff5029ca680515b0e572582dedffb0b69
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 17:20:34 2008 +0000

    sandbox.bashrc: use proper escape chars in PS1 so bash knows about them
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 57526ca2ab225d95285b933788f6e03da24787ec
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 16:38:52 2008 +0000

    libsandbox: pull in headers for dist
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6caba96424ba0defe3e56da1c63168b2a557682a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 16:37:53 2008 +0000

    svn2cl: make sure we find/use the local xsl
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f27622d796b1ee07a604b0fdb3a2c15c9e0c3343
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 15:48:58 2008 +0000

    libsandbox: unify 64bit versions with the non-64bit versions
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5dea7ed777362d7eff2e23925ba13e7d669d74a2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 07:23:39 2008 +0000

    libsandbox: break function args out into WRAPPER_ARGS and func name into STRING_NAME
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 189734b5b1fffa6495ef0062b8fdfdccb7f3f5eb
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 06:52:29 2008 +0000

    scripts: strip whitespace
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 02eb8b554ca364090389edc8c78e2353a9252e4e
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 06:47:19 2008 +0000

    svn2cl: also update xsl to 0.9
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3a22120c45757f4e034f1c1afb90c5fc406fe111
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Nov 10 06:21:46 2008 +0000

    fix grammar: do not exist -> does not exist
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 31332c02594dd34055cb99028814af5c043fb890
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 14:39:00 2008 +0000

    libsandbox: also handle lutimes()
    
    URL: http://bugs.gentoo.org/163770
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Harald van Dijk <truedfx@gentoo.org>

commit ccdeab0d67d1d95247ef1013af0fe164def1c3b3
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 14:34:12 2008 +0000

    libsandbox: catch utime/utimes #163770
    
    URL: http://bugs.gentoo.org/163770
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Harald van Dijk <truedfx@gentoo.org>

commit 0ee8c98153b0a0a5e5ffdbe30f679db3d67bb2cf
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 13:20:55 2008 +0000

    sandbox: remove remaining multilib code
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 04f2f48f8b4fd7d1765ad8b071b3242f09f28567
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 13:20:38 2008 +0000

    libsbutil: make sure we always let the ldso do the libsandbox search
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2605fe464acaa4b4a8972e40be85242ee2ae7392
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 12:49:18 2008 +0000

    sandbox: unify banner message and drop "linux" from it
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2f528569a05dea5b66eb5ea4bd92efd0a36c2a03
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 12:26:15 2008 +0000

    libsandbox: create local memory functions
    
    Some packages create their own set of memory functions and if libsandbox
    tries to use those, we tend to crash.  So have all libsandbox code use its
    internal memory functions based on mmap().
    
    URL: http://bugs.gentoo.org/164656
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Signed-off-by: Ed Catmur <ed@catmur.co.uk>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 268c72beb3e1bfcfe79de1158a9c23b67822a7e6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 11:33:40 2008 +0000

    Makefile.am: add headers.h to EXTRA_DIST
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c38daf1f9867b92a2e6f5a853752536dc3b6ae11
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 11:33:32 2008 +0000

    sandbox.bashrc: use /etc/init.d/functions.sh rather than /sbin/functions.sh
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 8c5c2289a9b7bc246eb3351724d3c08dbfc7d4db
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 11:08:25 2008 +0000

    bump ver to 1.3.x and build lzma tarballs
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 23598dc0ee3e695dd10b526e7495ab0b44b73bb0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 11:07:10 2008 +0000

    NEWS: for now, read the changelog for news
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 4b87a6ba2eec557698efbe9eeff88c08d87e50da
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 11:00:39 2008 +0000

    libsandbox: use internal memory funcs
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0dfd082cabff2f6ecf5398313bd12aadaf6b1695
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 10:46:45 2008 +0000

    svn2cl: update to 0.9
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1ee6d8ed5a3cbac3764032bb7ac095cf0f664e50
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 10:44:39 2008 +0000

    libsandbox: make code path in is_sandbox_on() a bit simpler
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 933bf3ec3c8ebf6935058ad85ec820931429a3a9
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 10:44:02 2008 +0000

    libsandbox: fixup style/warnings in previous commit
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 0a539b142f24a902c91f6f383211f9ece6e5a610
Author: Robin Johnson <robbat2@gentoo.org>
Date:   Sun Nov 9 10:35:50 2008 +0000

    libsandbox: fix symbol loading on hardened systems
    
    It seems that on hardened systems, USE_RTLD_NEXT is not always usable, and
    this trips up sandbox.
    
    URL: http://bugs.gentoo.org/206678
    Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
    Signed-off-by: Ned Lud <solar@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 090b53c17d70324947a49e8f5feb9cdc577cc989
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 10:29:58 2008 +0000

    headers.h: consolidate all random system includes into one file
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3ab4fb266af960b0ff91cdb0b4128b4a38c42d34
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 09:48:28 2008 +0000

    cleanup whitespace and comments -- no functional changes
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 30f83070c7c5455032218f285b52e1906b3fa351
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 09:33:17 2008 +0000

    sandbox: drop pointless cast
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a861e9dfcf066af9d64a16e125466f7546df0851
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 08:54:50 2008 +0000

    libsbutil: drop log_domain volatile markings
    
    There is no need to mark log_domain volatile as there is no long running
    function where we have to worry about reloading of the storage.
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e5cecce3a871436f71a28a524bbc49e87df3c5cd
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 08:34:18 2008 +0000

    libsbutil: use __func__ rather than __FUNCTION__
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 7bde33e3e53504158e7ec20811e9b6ea4f9de547
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 08:30:33 2008 +0000

    libsandbox: fix typo: wrappers.c, not wrapper.c
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 8f3e94bae3f8273192b08acb8735f76755291c75
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 08:30:19 2008 +0000

    INSTALL: update to latest autotool version
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a49468c3b47392acea04b3b4ec50d977b6cd20ff
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 08:20:21 2008 +0000

    update COPYING license to latest GPL-2
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 3292d9ad9795c8778400936179e8e2452d73f398
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 08:19:31 2008 +0000

    README: also note InstallWatch as a related project
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f0c675fa9d6bdda038aad7ece86a4e068f083622
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 08:18:38 2008 +0000

    AUTHORS: sort list and add myself
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d6af50c784a8629166d6b0da4038d714983768d0
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Nov 9 08:16:55 2008 +0000

    README: add some info on this project
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a4e5d51062392f89e206deb819eee1f06589241a
Author: Jose Luis <Rivero>
Date:   Sun Nov 9 07:38:53 2008 +0000

    libsandbox: make sure wrapper.c depends on symbols.h
    
    URL: http://bugs.gentoo.org/190051
    Signed-off-by: Jose Luis Rivero <yoswink@gentoo.org>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: David Pyke <gentoo-bugs@loftwyr.ca>

commit 893ab3b806e34b5dc4bdb21507be13cd51ebeec8
Author: David Leverton <levertond@googlemail.com>
Date:   Sat Nov 8 14:43:40 2008 +0000

    sandbox: properly use the return value of xrealloc
    
    URL: http://bugs.gentoo.org/238231
    Signed-off-by: David Leverton <levertond@googlemail.com>
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 43b8eed3580370537592c2144ffc3178ea0e19ce
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Tue Oct 23 23:49:35 2007 +0000

    libsandbox: mark the new "e" fopen() flag as safe
    
    URL: http://bugs.gentoo.org/196720
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 80ef90247f3eb4c8e6c98dddaa5fd9b5c610ceb7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 19 01:27:04 2007 +0000

    cleanup style a bit and drop multilib code
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5f059dc5e5da401d5d2b3b5578844c2d145a9fb6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 19 01:09:22 2007 +0000

    use `make dist` to generate tarballs
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit a71ecdff555f477135798a8f49c35de172fdc7c2
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 19 01:07:41 2007 +0000

    libsbutil: drop the svn external links
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1eae83f13a13f6207edc180efc49ba06df02f1dc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 19 01:04:50 2007 +0000

    INSTALL: update to current autoconf
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f7ffcb59df65215209175e0645354f1161e2f3ee
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 19 01:03:28 2007 +0000

    svn2cl: run during `make dist` rather than `./autogen.sh`
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5ea332e6dd9b6fd7d29408a57f536cec2da145bc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Sep 3 07:56:36 2006 +0000

    src/sandbox.h: add missing header
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 303c512d6dcea07d1a4d937ec8589ce4292c3abc
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Aug 20 12:04:04 2006 +0000

    insert/delete whitespace
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 86ea37f7857d026dd7c2c0aafe8a32c975fe3a2d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 16:18:29 2006 +0000

    Punt vim indentation line.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 45b21e3fb6af2af88ccc59147b4b1dea50501684
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 16:17:56 2006 +0000

    Punt vim indentation line.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit a4335f8ad6f714c31fd25139b5d8986119672fc9
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 16:16:30 2006 +0000

    Punt old copyright stuff, as nearly everything was rewrited.  If something is was not and is pointed out, I will rectify it.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cbd73cdcd5aa478624c5ea48222f2e95656e57ef
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 16:12:29 2006 +0000

    Split out environment related functions, and make their naming a bit more sane.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c221795fea5519bcbab33836da0e0bd099850e9f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 15:41:48 2006 +0000

    Split out util functions.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ffb86caa786ce1ae5b07f5ab192981400b0483a6
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 15:25:38 2006 +0000

    Add back using libsbutil.a, else libsandbox.so increase currently with at least 3kb.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 45feb8a12677397348efa8617493aed197e15447
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 13:39:31 2006 +0000

    Fix wrappers not being included in distribution.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b249d32f73aa0e30cbfc58e783aa02acd1092172
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 12:30:08 2006 +0000

    Add awol commit for renaming of wrapper-funcs commit.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 22f89a2b008f956b656f33d64d43dc12019ea00f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 12:27:16 2006 +0000

    Most other code use old_errno, so make it the same here.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 783f38f28e4ccc08caff3b54df3f4e1ac791ce1b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 12:26:42 2006 +0000

    Make sure the unlink() wrapper do not touch errno.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 824e9979aaace0af1df5801ac34e05f69d420f17
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 12:22:29 2006 +0000

    Cleanup execve() wrapper.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 786ea857091badb62641eb5a6ac9230d13ec8c92
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 10:26:50 2006 +0000

    Rename wrapper-decls to wrapper-funcs.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2c5ef21f288deba39f2fa86ba52d732439fc93ee
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 13 10:23:48 2006 +0000

    Split wrappers out to make modifying easier.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 7813904efcb06a48358f73dce1ce8fe731870781
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 12 16:53:51 2006 +0000

    Make sure we do not segfault with invalid mode passed to fopen() and co.  Add note about allowing different errno to be returned.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f67ce371c0d974d184ac7cb1bf91c9445d590844
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 12 16:45:21 2006 +0000

    Add patch for using open() to test if the file exists, bug #135745.
    
    URL: http://bugs.gentoo.org/135745
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Torbjörn Svensson <azoff@se.linux.org>

commit cb62e9671867e6b8e2fd30eade3b47b81d1ae2ed
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 12 15:49:47 2006 +0000

    Update for librcutil dynbuf function name changes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 7c0efcef8d4edc479cee9b27d5b654c096ebb54a
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 11 18:49:26 2006 +0000

    Release sandbox-1.2.20alpha2.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2ec299b14dbfd003e48a20194bf8badb4c0083de
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 11 16:40:23 2006 +0000

    Fix breakage of last commit.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5d972ef3abebc8f28ec5402622303b5d59928e32
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 11 16:36:19 2006 +0000

    Add EINTR check back to sb_open(), as FreeBSD for one seem to be able to fail with errno set to it.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0153e86d64e463b9b85c33cf1256717529fb5f6f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 11 16:27:38 2006 +0000

    Check log size before we open it.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 74e6afef79fee112262a1cbe4b3980da73ee801b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 11 16:22:46 2006 +0000

    Use IO related sb_*() functions, and improve error checking.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 16e2d4d6dcc88e945ee2ede290842f7098f43ed5
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 11 16:00:08 2006 +0000

    Convert getcmdline() to use dynbuf functions cleaning up nicely.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 963b22b30df2b785ad0e4f6754076b58dea28512
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 11 09:36:56 2006 +0000

    Do not source /etc/profile even in interactive mode.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 6f405d7f46acda9c1bd46beb66a5f55cc0537026
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Jul 10 17:18:38 2006 +0000

    Move the FUNCTION_SANDBOX_SAFE* macro's to libsandbox.h where they are more appropriate.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d6c9c53c3c9684969314210031ac292d12fdc23b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Jul 10 17:16:34 2006 +0000

    Update copyright in case something from InstallWatch are still in here.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b72765ede1779f9e8c0ddee6158c23a9d69cf30d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Jul 10 07:21:53 2006 +0000

    Add wrapper for internal use of getcwd().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f4dec3394bce65a32a5c26987950d63849d6f3a6
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Jul 10 07:16:56 2006 +0000

    Move wrappers out of libsandbox.c.  Move IO functions to
    libsbutil.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 439fb325a1a4b65ab7ef9021b902679791c55c80
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 20:46:01 2006 +0000

    Add forgotten libsandbox.h.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4dbcb7b0361808a84c31fdee11a1d1779581a89f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 20:38:41 2006 +0000

    Start moving libsandbox only related stuff out of libsbutil.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b2cff294de799314eec0b6d4ad15d5f7468c52a9
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 20:33:52 2006 +0000

    Remove file_length(), and rather use rc_get_size().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 3e73051416e153f506dd75b25027e24da96449d2
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 20:28:18 2006 +0000

    Make sure the first realpath() in get_tmp_dir() failing do
    not set errno and thus trigger DBG_MSG().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit bebce61f50531c2cb24b62b398d9c302136dc80e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 20:09:20 2006 +0000

    Use defines for proc directories/files.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0013a4d60b9b22cdd7b728b88f71dc815c175791
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 19:59:15 2006 +0000

    Use PAGE_SIZE to read proc files.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 7d6d1398ea837188607c4d7b615f9e7fbcf4d6d8
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 19:21:33 2006 +0000

    Move libsandbox to its own directory.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit af23d1cbc9351808befde8e61da51ce202eaaa64
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 19:13:57 2006 +0000

    As we are using a symbol map for libsandbox, its no longer needed
    to have all the internal functions static, and thus we can break
    things out a bit and make the source layout more sane.  Start by
    moving librcutil to libsbutil, and adding all the defines and
    helper functions needed by both libsandbox and sandbox.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit da09e24428514a0e28d85aedbce618187450192a
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 17:52:07 2006 +0000

    Reformat previous added code a bit, and add debug messages
    and even more error checking.  Abort on some more unrecoverable
    errors.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 9dd5c99b76d55c0d0aa95b2bac6065003eb1f92f
Author: Alex Unleashed <unledev@gmail.com>
Date:   Sun Jul 9 17:48:43 2006 +0000

    Apply patch to make reading and writing more reliable
    
    Signed-off-by: Alex Unleashed <unledev@gmail.com>
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5effd5369d52d7a6be3d150aa82a467a5736414c
Author: Alex Unleashed <unledev@gmail.com>
Date:   Sun Jul 9 16:30:14 2006 +0000

    Fix access call strncmp's
    
    Signed-off-by: Alex Unleashed <unledev@gmail.com>
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5a4a8ed1eabf678341b00c021a257f0c7535941e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 9 00:26:56 2006 +0000

    Update comment.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 678a48f8c6210f0cda2bcefbd62e8114fcdec791
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jul 8 23:24:31 2006 +0000

    Free child argv we allocated earlier, as at execve() duplicates
    this, so no need to keep it around and waiste more memory.  Make
    sure we will not in future free them twice.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 471dd994a807cd783aa80403358231a7f94ce1b2
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jul 8 23:18:59 2006 +0000

    Free child environ we allocated earlier, as at execve() duplicates
    this, so no need to keep it around and waiste more memory.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0257f6dbabea5bea12befc2688292c04d076b684
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jul 8 23:13:12 2006 +0000

    Rather link libsandbox against librcutil's libtool objects (.lo),
    as it should be more portable, but do add the extra fat.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c446796d93b4ffce025433bf27471beefef7b5a7
Author: Alex Unleashed <unledev@gmail.com>
Date:   Sat Jul 8 21:39:28 2006 +0000

    Add needed changes to get a working sandbox on FreeBSD
    
    Signed-off-by: Alex Unleashed <unledev@gmail.com>
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c5cb25236a3f49a1f51601149124f74de177528d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jul 8 21:12:12 2006 +0000

    Remove debug printf() that I missed to remove.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 02e5e596dbfad96bd0b685d08b8006d63b8d201c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jul 8 21:01:51 2006 +0000

    Convert all string list operations to use the str_list_*() macro's.
    This allow a nice cleanup of the bash argv stuff, and also actually
    add error handling to that part of the code.  Some more cleanup of
    the environ stuff.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 9a862070ee687175912d1cc5222abfb6997917a3
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jul 8 19:53:06 2006 +0000

    Set 'env_ptr = environ;' _after_ we unset and set variables, else the
    block could have been reallocated, and leave us using the wrong pointer.
    General cleanup of the env handling code.  Free all memory used.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f21eaa408918ff2ad93666f6b857866b2a418463
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jul 8 16:13:40 2006 +0000

    Fix double free() in sandbox.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 99901c6765fb75f257d31c1c5ca17abd41a8e190
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jul 7 19:13:17 2006 +0000

    Make sure Mike's sandboxshell mojo do not get recusively called and
    only do the whole of it if we are not connected to a terminal.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 998bb4b219319851a67a6e53929bb7d40c3d324d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jul 7 14:24:07 2006 +0000

    Add forgotten Makefile.am for librcutil.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0b8b4eb1f577bd24baa69fb626d11a80fe3ab06c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jul 7 14:20:49 2006 +0000

    Release sandbox-1.2.20alpha1.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit fbe6f640e6f22fd4faf1a39fa672bbe36e27bda8
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 19:18:09 2006 +0000

    Remove uneeded test, as setenv(,,0) do not replace.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 1e87abf953f06049aea016c9ef37f8ffb684487b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 17:25:46 2006 +0000

    Use debug versions of malloc(), realloc() and calloc().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 062aaa51a2319b01b53dd21067a717ca48664564
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 17:19:05 2006 +0000

    Add comment about SANDBOX_WORKDIR.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 85556a23b3dbcd54c59f00c0e8f1cde4a07a6119
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 17:02:08 2006 +0000

    Move default SANDBOX_PREDICT value from sandbox.conf to 00default.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5c23d11155525708bc894d02e9986d5e0732030e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 16:44:48 2006 +0000

    Free some of our custom environment data.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 27feeab6e5eb6e2ff389943899691b18c970b08c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 16:37:20 2006 +0000

    Set default values via a config file.  Also support sandbox.d
    config directory for package specific configuration files.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4454c36a6648ff9701aec00a73548839233c1c65
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 10:56:30 2006 +0000

    Only print info if we have a controlling terminal.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 857ee9bc6b0100716986caefdc005be8d023ae76
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 09:27:39 2006 +0000

    Fixup color handling.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cbe0a730c9827f03c4d815d39e4b6354ff258d0a
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 08:49:13 2006 +0000

    Remove last libsandbox-only functions in favour for ones provided
    by librcutil.  Setup log_domain properly for debugging.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 6da7beb4a1e29bf25e57b68527d25851e4553525
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 6 07:46:12 2006 +0000

    Updates for changes to librcutil.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 9ad2db7aecb08012339c34dbaf72991686547f58
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 17:06:40 2006 +0000

    Fix build failure due to exists() still being needed for libsandbox.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 415047660cc5c63caaefa6ffd731cee0d704369e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 16:51:12 2006 +0000

    Use librcutil.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 53867c713f0bc2a8cf3fa60fbc56a4e2c7137935
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 16:34:00 2006 +0000

    Rename EINFO, etc to SB_EINFO, etc to not conflict with macros from
    librcutil.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 1c8c6fb0cad83cdde9ef02ca238605a09c3d8be4
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 16:25:28 2006 +0000

    Enable building of librcutil.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit a6433b10fefd58dbd4dbc114f4bb6df8ade55222
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 15:14:07 2006 +0000

    Use is_env_on(ENV_SANDBOX_ON) now that we have is_env_on().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 86629e856deeedb6aefc7e631406ce5d11655080
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 15:11:17 2006 +0000

    Abort on possible security breach.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit e8e2f5dae06d648d40a25e206a45583e267925bc
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 15:01:57 2006 +0000

    Set NOCOLOR to 'no', else ebuild.sh do not set COLS, etc.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 937bd6c6481af3e5703cfd485ff7f41a48708648
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 13:50:48 2006 +0000

    Just killing the child with SANDBOX_ABORT do not actually abort the make process
    in many cases.  So also kill the offending child, and pray that make will also
    abort.  This is really hackish, and we should rather kill the whole process tree,
    but currently its too much work (considering that we are in signal context which
    probably will make things difficult - not even talking about the bsd's ...), so it
    will have to do.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 3f9e59a52e7c472c6e3d8ffb5c52c8d9ca810e81
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 11:35:24 2006 +0000

    Make stop_called volatile as its used in signal handler.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d1e429d72656cfd99913979192a971811a7f2ea0
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 5 10:55:54 2006 +0000

    Add /dev/full to write allowed paths, bug #137240.
    
    URL: http://bugs.gentoo.org/137240
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Sascha Biberhofer <karasu@inode.at>

commit 20b50c7f6c567f8a44e8e8a264d00e393d9761a9
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 4 15:32:43 2006 +0000

    Add SANDBOX_INTRACTV logic, and Vapier's sandboxshell mojo.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c94004a1682455407d16e98e9a5aaf8f86a00f97
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 4 15:10:37 2006 +0000

    Small logic simplification.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 39e1b0ddae387081758d868857f3fc36c189432e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 4 14:58:16 2006 +0000

    Add is_env_off().  Also check for true/false. Use is_env_*.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit dab1c99e7b3f40b74a9b693f330c4c094279c396
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 4 14:35:18 2006 +0000

    Slightly adjust log format header.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 08830eaf0cc64aa60031f5b53a9065a1b8918a79
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 4 14:32:38 2006 +0000

    Theoretically add support to terminate immediately if we had an access violation,
    
    bug #138499.  Uses environment variable SANDBOX_ABORT.
    
    URL: http://bugs.gentoo.org/138499
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Ed Catmur <ed@catmur.co.uk>

commit 8313492a957283e6348c4793ab5357bf085c8dcb
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 4 14:22:30 2006 +0000

    Add is_env_on(), and some other environ variable defines we will be using.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 6e245f656a77030c5a8a97b4247e4aa77498148c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jul 4 12:44:54 2006 +0000

    Change log format, and add more info, especially cmdline, bug #138501.
    
    URL: http://bugs.gentoo.org/138501
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Ed Catmur <ed@catmur.co.uk>

commit 6427bae301489b1345abebd5a3c9dbc7fc1c02b0
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jun 30 11:13:24 2006 +0000

    Use EERROR for OOM message instead of EWARN.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 3d70c91d3f6fce30e7430e8f00ba723e081368fd
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jun 30 11:10:35 2006 +0000

    Fix possible huge overflow with logging code.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 872108a8baacc8fda7688bb06353a91c3e048a34
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sat Jun 10 15:08:08 2006 +0000

    Rafal Rzepecki writes:
    sandbox's configure script first finds readelf, then ignores the path found
    earlier when checking LIBC version. This leads (on my system) to configure
    failing with error `configure: error: Unable to determine LIBC VERSION'.
    http://bugs.gentoo.org/136284
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5a1d109ecedafe7ea90f70e3806bc624d518f197
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri May 19 12:08:51 2006 +0000

    Release sandbox-1.2.18.1
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ef7af2ec4abdc570c7d441de570744dff38a1909
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 9 09:30:16 2006 +0000

    Do not free buffer returned by getcwd() if it was not obtained by getcwd(),
    
    bug #125701, thanks Mike.
    
    URL: http://bugs.gentoo.org/125701
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Mike Frysinger <vapier@gentoo.org>

commit 1947b5efc14d39eab620c07ad42f7560442d349f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon May 8 14:15:00 2006 +0000

    Comment egetcwd() some more, and fix a double-free.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c8c7b7fa55f696c06fa21dee59c4f2a910560382
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 3 11:21:54 2006 +0000

    Release sandbox-1.2.18.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 3bd8c5dd35bc0fac0ec6c86ced7cd91df3f09db0
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 3 11:18:28 2006 +0000

    If glibc/kernel side of getcwd() screwed up, return ENAMETOOLONG.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 754ccfc7765364373d7d9aee14f70d2fea7afab1
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Apr 25 08:27:28 2006 +0000

    Fix symbol/map generation on Alpha
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Fernando J. Pereda <ferdy@gentoo.org>

commit ff5c787de1936c8939efc529d8e6a0b756c03b9c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Apr 25 08:25:37 2006 +0000

    Try to triple check getcwd() sanity.  Do not think it will help for
    
    bug #125701, but we try.
    
    URL: http://bugs.gentoo.org/125701
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Alexander Simonov <devil@gentoo.org.ua>

commit c2b1dd1eeaeb4bd4b0aaa6e3760dd5eac9e8e2fd
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Feb 6 13:49:20 2006 +0000

    Update svn2cl and fix parse issue with latest libxslt-1.1.15.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 81514563c33bd6aa22a95cdf8e66caca7de87a13
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Feb 6 12:45:59 2006 +0000

    Revert last change, and add comment.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 1d4e4af4db18077a555492cf8b4348e115844f0a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 6 05:02:51 2006 +0000

    add static/shared library checks to prevent anyone else wasting our time
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1e9292df793de334694d427c4a899b5c35310ea4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 6 04:11:37 2006 +0000

    force people to use -n if they want to generate stuff
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit acb27ba3085ed6ef354885a01ce46ba263d943e1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 6 04:08:11 2006 +0000

    syntax touchups
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit ed3d3c6e44c52ca458e3693b7ffc137279999e50
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon Feb 6 04:04:10 2006 +0000

    log issues with LIBC PATH a little better
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6813a945a6396e323328f238f3c935f79c8ae52d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Dec 10 12:12:27 2005 +0000

    Cleanup.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 326c4bd1174aae0573408590652505b46f223e1f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Dec 10 11:51:49 2005 +0000

    Add support for readelf from elfutils.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cd9b3f6e7cf1622b2f191d6c7df32fb2378387c0
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 22:49:20 2005 +0000

    More configure related cleanups. Define HAVE_RTLD_NEXT
    via config.h.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 55fd7471a6b46ad3b18b1c6c956d092f6a805de3
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 17:14:24 2005 +0000

    Indentation fixes and other cleanups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit fd3a19d231952be273877275ee00cb72b40572e8
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 16:55:50 2005 +0000

    Small cleanups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 63119133f2c143b9b9d7db9518aac1f14f0fd955
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 14:35:11 2005 +0000

    We use memcpy() now and no longer mempcpy().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cf8e49e0a601b1d5ffd30472a92a514e0df76cb0
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 14:34:25 2005 +0000

    Fix weak symbols on 32bit glibc where it have a different version.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 26e15e9d0bed78b5a1cef0a4c77bf7c8c89f47bd
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 14:07:48 2005 +0000

    Release sandbox-1.2.17.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ddcdf39b369a3877babbe0f22dd6f5d067cd7083
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 14:06:58 2005 +0000

    Small tweak.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4c4f1c8946916074c4ad9a60d8b76cc10827ffa3
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 13:55:37 2005 +0000

    Fix regex for newer uclibc that also matches /lib/ld-uClibc.so.0.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 47277865c2d697186f9e1dada21e58da80b5346b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 13:54:04 2005 +0000

    Cleanup RTLD defines.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 153a1eb928467815251b033f00a736f3576f0851
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 13:41:39 2005 +0000

    Remove getcwd.c, as its no longer used.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b1c261bcd5ef5d1059b391f56cf3ea2ded396b75
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 13:40:36 2005 +0000

    More changes to try and resolve OSes with generic getcwd() implementations.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ec1e976060209af9492bcf4301c2e0f4d0188f4c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 11:24:20 2005 +0000

    FreeBSD have RTLD_NOW, but still have the getcwd() issue.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 67588f2444dc327da5289000cb9b4f321f234f84
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 11:18:39 2005 +0000

    Split sandbox_on stuff out to libsandbox.h.  Only enable if we do not
    have RTLD_NEXT.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 54a22b49cd75089716d3138ed686ff58c9e62516
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 11:08:26 2005 +0000

    Add sandbox_on variable to tweak internally if sandbox is on or off.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d1f53e5790a2fc702241b8c9c2e5a2446c53a8c6
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 10:10:47 2005 +0000

    Rather check for RTLD_NEXT than glibc.  Some other cleanups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 61f81f6fa71f9403e2f7784bf7a1b3924ab030a4
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 09:54:40 2005 +0000

    More bsd fixes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit eb334306e6f74d963ea0d7b18c0b33cef4210ed3
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 09:53:28 2005 +0000

    Add checks for bsd that have dlopen() in libc.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 35f98d39414dc3dba63bb5bfbb92e589a3a5dde1
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 09:43:56 2005 +0000

    Quoting fixes
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 78c94147bc5c6e985e69211c192b91b7ad57021c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 09:28:34 2005 +0000

    Rename sandbox_futils.c to sandbox_utils.c.  Add gstrndup() and gbasename()
    to sandbox_utils.c.  Add check for glibc, and fixup things to not need glibc
    only extensions if not needed for versioned symbols.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit e51e9cb0062f295f42335e5c75a5f8b83ca0f135
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 09:02:46 2005 +0000

    Make sure the aquired libc is readable.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit e4105c76a843423e4aa50a91db71d39d6881e5aa
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 08:13:19 2005 +0000

    Also add weak symbols.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cf4fe536164216d02a937dd46ded3340d3264534
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Dec 5 07:17:51 2005 +0000

    Stop processing when we get to the '.symtab' section.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c5a8c7b86a31ed45182d582cd4c1328cba2b3012
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Dec 4 20:33:05 2005 +0000

    Do not check for compatible malloc(), as we do not care.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b3e848b3afcaa84eaaa2264d0e9a5011158feb8a
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Dec 3 11:42:38 2005 +0000

    Change default prefix '__' to '_DEFAULT' suffix to avoid confusion
    some people seem to have.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d456197178cdc16785c79d03ec79a7f0e8ffe506
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Dec 2 12:41:44 2005 +0000

    Release sandbox-1.2.16.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit fb518539ffd4423b23b525eb598802a5b8c28436
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Dec 2 12:41:18 2005 +0000

    Add dist.sh to make my life easier.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit df2124fa148eaea6e27cb38e22dd665d9c21139b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Dec 2 12:34:19 2005 +0000

    Use mempcpy() instead of __mempcpy(), as svn uClibc hides it.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 173c7b5774e9cd464f83f92e4532e31e351ccd5d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Dec 2 12:32:53 2005 +0000

    Do not re-set VERSIONED_LIBC if already set.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 360a48dc690b5a565716a0098752c82d6cb44b39
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Dec 2 12:31:19 2005 +0000

    Do not add unversioned symbols if we have a versioned libc.
    
    Do not add duplicates.  This is mostly due to unstripped libc .. bug #114200.
    
    URL: http://bugs.gentoo.org/114200
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: James <James@superbug.demon.co.uk>

commit 55c1b6fa295fa34f73d22141f6289f998a3b4b94
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Dec 2 08:49:38 2005 +0000

    Add /dev/shm to write path.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f0744de4c0f13dd842f324fc9e591e180bcbf1f7
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 21:56:07 2005 +0000

    Move clean.sh to scripts.  Some 'make distcheck' fixes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5d167bc643c6fa7ed5643b7d450725b04e764936
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 18:04:53 2005 +0000

    Release 1.2.15.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2326bfcb534ce6ace05a3c230f43d1aae4fc9f84
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 17:50:52 2005 +0000

    Update clean.sh to do a 'make distclean'.  Add '-n' switch for
    autogen.sh to skip generating ChangeLog.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 7ff2dcf907d1d60059c048e78e832f55607bf2b6
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 12:07:25 2005 +0000

    Add scripts/svn2cl.*; move ChangeLog and update autogen.sh to
    generate ChangeLog.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 30c93d50dec782b772a8453e5524007d51bef7ed
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 12:01:33 2005 +0000

    Some comment touch-ups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0d919f602c51c16c720be6769daab97812ad0079
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 11:56:29 2005 +0000

    Wrap mkfifo() as it seems it was missing.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d7ff04f399a9392f1fc8f065aa3cb103a03b871b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 11:33:20 2005 +0000

    Wrap mknod() as well.  Misc cleanups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0d7ab77a4a9bec0bac85e1b05e3ca8fdd0c6d20f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 11:04:31 2005 +0000

    Rather use fstat() to get file size in file_length() than lseek().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 13898250949c40654ae7cfb9c83e808644502667
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 10:58:54 2005 +0000

    Use egetcwd() in sandbox.c.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0f55b9e2d836fe934bddc16b15d6f59f403e1f12
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 10:54:12 2005 +0000

    Fixup SANDBOX_ON handling after already running changes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 324ceef54cf4e9c8669b31c459c3e0f226f79453
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 10:45:43 2005 +0000

    Rename filter_path() to resolve_path() and other renames for clarity.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 64ed77f12830369e7ad8cf3d4753985d7145a87e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 10:40:09 2005 +0000

    Cleanup local defines for egetcwd() and erealpath().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 054272cc65d94fbec6e9ea24f98cf999b3ff3cd0
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 09:47:42 2005 +0000

    Rename src/symbols.in to src/symbols.h.in.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 58aaec27050c17f90289181151f0f67648ff8392
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 09:46:17 2005 +0000

    Remove the SB_STATIC and including of getcwd.c, etc voodoo, as we new use a
    symbol map, and all non-exported symbols are local.  Cleanup getcwd.c, as
    the generic getcwd for older 2.4 kernels do not work properly anyhow, and
    just makes things slower.  Some other warning fixes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5a912065a7be063434e3409d2d42984d02cb213d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 01:01:44 2005 +0000

    Fixup comments related to strong aliases.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit dd7fcf79c15562adeb22e4b08f326d4d40970082
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Dec 1 01:00:40 2005 +0000

    Fix non-versioned libc's to also prepend '__' to internal symbols by using
    strong aliases.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2b688ccf33de909e4b6d0f0b890e750335cee568
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Nov 30 23:27:59 2005 +0000

    Rename configure.in to configure.ac.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 830943e11930adfd0c983ee4170dfc6ab5120f4c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Nov 30 23:21:55 2005 +0000

    Small syntax cleanup.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 3d2e7de9dac39645b60917667355a2681d66f409
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Nov 30 23:11:34 2005 +0000

    Only check SANDBOX_ACTIVE, and not its value.  More BASH_ENV fixes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit da7c507a3ea1eda35b9b0b9c765737691faa8c0b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Nov 30 22:54:36 2005 +0000

    Use versioned symbols on supported libc's for functions we wrap, as well as
    provide all versions of specific functions.  Some syntax cleanups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 590230a9446151277bd8e6613bcc729b5570a0d6
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Nov 30 08:42:30 2005 +0000

    Move dlvsym define.  Add symbol_version macros.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit a204c6ca18f25a4bc16bc999f0114eebafb01ffb
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 11:35:30 2005 +0000

    Revert 64bit arch test, as we should build the 32bit version without full
    path checking as well, and add --enable-multilib switch to configure.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b3e3b33f04c06189ea54b7dbc81886e54e018ed2
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 11:13:17 2005 +0000

    Update contact email.  Fix quoting.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 75d1d28b6c72d759ec336c6cb581084124473636
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 11:04:14 2005 +0000

    Detect if we on 64bit arch automatically.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 7561c08cf26eb38ae23b89ed662e7f26ef4c3267
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 10:52:03 2005 +0000

    Reorder source layout.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ad6ef6518cfddb5156f4c48b7c766a3755bf2322
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 10:30:39 2005 +0000

    Sandbox 1.2.14 release.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit aead109c943a50115d7d016c9d5a37dc99708061
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 10:24:06 2005 +0000

    Make sure we use our bashrc.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cc324b94cfc60a21e3a283c16217cd9473c9b0c4
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 10:13:15 2005 +0000

    Rather check SANDBOX_ACTIVE if we are already running. Set SANDBOX_ACTIVE
    to readonly in sandbox.bashrc.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 1fc67c7b61610137d0d7375b1a5d418a91c753b1
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 10:05:52 2005 +0000

    Cleanup environ variables.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit a5ae0ccbb4fc8f9ed892362cdd5658169d8e0df4
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 09:55:54 2005 +0000

    Check generic getcwd()'s return as well for validity, bug #101728.
    
    URL: http://bugs.gentoo.org/101728
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Michael Kiermaier <michael.kiermaier@gmx.net>

commit a1d3e629628c37aa334f607433f718cbc8de0c72
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Nov 28 09:50:39 2005 +0000

    Change calling order of autotools.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit dde4d15aefb7510bc311dc57f40227aeff6cbc94
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Nov 1 16:02:30 2005 +0000

    Do not pass mode to true_open and true_open64 if not needed.  Should fix a
    segfault in some cases.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b98ec626a54c16ccec9c654732250a776a0406de
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Nov 1 15:41:31 2005 +0000

    Fix wrong version number.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 50a36e5aeaf5aabe5ae8ceadcdffaf949016c497
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Sep 12 07:05:41 2005 +0000

    Release sandbox-1.2.13.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit e91c239e8607ec2d3f2cfbb3ec3352d6d8bc9fce
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Sep 12 06:50:53 2005 +0000

    Make libsb_fini() do cleanup a bit more complete just in case we get another
    uClibc 'call preloaded library fini before that of app' issue ... probably
    will not help much, but we try.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 88177cea0946a1702f2ad5497d0017191c0a9e4d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Sep 12 06:44:52 2005 +0000

    Do not handle adding working directory to SANDBOX_WRITE, as portage does it itself.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 9d42df13a3c2b67683769ff98d47491e407fae6e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Sep 4 11:17:09 2005 +0000

    Also allow symlink() system call to operate on a symlink in a writable path
    
    that points to non-writable path, bug #104711.
    
    URL: http://bugs.gentoo.org/104711
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Albert Hopkins <marduk@gentoo.org>

commit 4dd3883ec10ef43556946dc84ce7736e878c1394
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Aug 29 15:39:19 2005 +0000

    Remove debug code I forgot to remove.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 681e26cfe3d7f288e6481c9b9f840c9b3d2fe593
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Aug 29 15:38:02 2005 +0000

    Form cleanups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 1328d9fce72c92c983038b5c07bb16d7563dcf49
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Aug 5 14:49:15 2005 +0000

    Release sandbox-1.2.12.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit e5483a591d52756a4e3064ce7360b390200eccfb
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Aug 5 14:11:55 2005 +0000

    Improve error handling for get_sandbox_*_envvar() functions.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2cf9b886cd697fc6ca4aa412638f66042f127c19
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Aug 5 13:58:53 2005 +0000

    Remove the tmp_dir variable - we do not need it.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 893bbfc403a7fea0392f4715a267477f1732cc25
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Aug 5 13:55:08 2005 +0000

    If we are called from the command line, do not care about PORTAGE_TMPDIR,
    and make the current directory the work directory.  Also rename the variable
    portage_tmp_dir to work_dir.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5c2869e571e7847ce346616d2cc2db4d76f96b14
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Aug 5 13:33:54 2005 +0000

    Do not give an access violation if the access() system call do not have
    
    write/read access - it does not actually modify, so we only need to return
    not being able to write/read.  Noted by Andres Loeh <kosmikus@gentoo.org>,
    bug #101433.
    
    URL: http://bugs.gentoo.org/101433
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Andres Loeh <kosmikus@gentoo.org>

commit 656dc92e3703e5c96a32de5198a4328c051c4113
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Aug 1 14:02:17 2005 +0000

    Add /dev/tts to write permit, bug #42809.
    
    URL: http://bugs.gentoo.org/42809
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Mike Culbertson <mike@infoleak.com>

commit ff605af613444de4d1930954a06f16da7c0e9581
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Aug 1 08:08:08 2005 +0000

    Add support for SANDBOX_VERBOSE (enabled by default).  Adjust SANDBOX_DEBUG
    to only enable if equal to 1 or yes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 9a8fcf142a49936aa8e205fba987c3769bd18bc2
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Aug 1 07:57:35 2005 +0000

    Still do normal log if debugging is requested.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit e25c857935dbbab65ba92b1b72b282c2ec32c034
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 27 18:04:35 2005 +0000

    Do not resolve symlinks in PORTAGE_TMPDIR in sandbox .. we will handle that
    
    in libsandbox .. bug #100309.
    
    URL: http://bugs.gentoo.org/100309
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Cameron Blackwood <korgg2@darkqueen.org>

commit 6a368e459c676c5f810cf4f8c8c4bc0b3a893053
Author: Zac Medico <zmedico@gentoo.org>
Date:   Fri Jul 22 08:13:25 2005 +0000

    Print all logging to stderr, bug #90343, comment #15
    
    URL: http://bugs.gentoo.org/90343
    Signed-off-by: Zac Medico <zmedico@gentoo.org>
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit de0b08f8ad2a6dfd624f35f0d649373176312b83
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 14 11:08:27 2005 +0000

    Release sandbox-1.2.11.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 33e8e3839c73f12a2fdf8ec051cd3b859383b1c9
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 14 11:06:38 2005 +0000

    Fix getcwd, bug #98419.
    
    URL: http://bugs.gentoo.org/98419
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: bartron <bartron@gmx.net>

commit 5ad4cab01b63e8e29556e976a4876cb4b225ea96
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jul 8 15:49:23 2005 +0000

    Fix compile error with previous change, and return rather then exit().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5af6c81fa300b0ab4d0a8dae4ea9d7d69eeee56a
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jul 8 15:07:50 2005 +0000

    Remove old logs if present and conflicting with current.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 49ff3bddf52255af380e0fa3b340a5fa0944198c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jul 8 14:52:26 2005 +0000

    Try to cleanup and make error handling/printing consistent.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f85ca7a5db97ffb36cb64991feed56a38ab0b1af
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 7 22:58:16 2005 +0000

    Cleanup access/log printing.  Make access printing honour NOCOLOR.  Fix log
    printing's last line not honouring NOCOLOR.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit fb2ea20e4381585151388b65c9c5373df0a40135
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 7 22:19:52 2005 +0000

    Only declare functions in sandbox_futils.c that are used in libsandbox.c when
    OUTSIDE_LIBSANDBOX is not defined.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit a5fd252f8ef4d0d70bcf43e1a42410230200ea6d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 7 22:14:57 2005 +0000

    Remove unused includes and variables.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 8213f9a331a9d5eb86781f05011deeab89cec7af
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 7 22:08:17 2005 +0000

    Remove sandbox_dir and co - we are not using it anymore.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2dc3265dbf52789b7ffbc8b9e840e1ab5cff14a2
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 7 22:01:14 2005 +0000

    Redo the interface of the get_* functions so that we do not leak memory.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4e253f09266dbce08e4bca389f34e3770cce4523
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 7 21:42:33 2005 +0000

    Major cleanup of sandbox_futils.c.  Removed most of the functions as we now
    write to /var/log/sandbox/, so in theory do not need all that.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ca1a5799c0374408c110e8569b53613084233401
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jul 7 13:01:31 2005 +0000

    Fix possible segfault in env init code.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 073d59a658f3f9085caa354a5fe170a30fd10edd
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 6 21:33:23 2005 +0000

    Cleanup init_env_entries() and check_prefixes().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d4b1f484e6544315c47a18557d809c070260f608
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 6 19:41:26 2005 +0000

    Add check_prefixes() with major cleanup on check_access().
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4f8251346144b1a545a4d49163d224e4014d52cb
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 6 18:40:01 2005 +0000

    Clean up logging in libsandbox.c, and hopefully make it more consistant.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d75d04ccd1cb2780c1f164332deab4557e573b79
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 6 17:35:30 2005 +0000

    Change log dir to /var/log/sandbox/.  Make sure the sandboxed process cannot write to it.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f46a6c2b143f1e7f650c01622e59b6e7b2bc3a92
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 6 00:36:46 2005 +0000

    Remove unused 'pids file' code.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 270d0a8ae97fbf2947b4d4d03c6c09dd1750d547
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jul 6 00:12:49 2005 +0000

    Remove unused variables.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c0da8ccef68b6df67efe30a73c32e188ca9a6ac6
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 3 19:05:34 2005 +0000

    Remove trailing ':' for SANDBOX_PREDICT.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cb97b15cff011b8dacd3c0d11ab3350761786e48
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 3 18:51:27 2005 +0000

    * sandbox-1.2.10, try #2.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0f4f25f27e4ebcbb940da86f2ffb37312e151314
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 3 18:48:50 2005 +0000

    * sandbox-1.2.10
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c9ef15676e1d30cda764ecb08a39eb9958da0fa2
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Jul 3 18:48:22 2005 +0000

    Fix typo in Robin's patch.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 7f8a1a9a3fedc0a4a3c995a70c171c649f74cd0f
Author: Robin Johnson <robbat2@gentoo.org>
Date:   Sun Jul 3 18:46:52 2005 +0000

    Add PREDICT items for nss-db, bug #92079
    
    URL: http://bugs.gentoo.org/92079
    Signed-off-by: Robin Johnson <robbat2@gentoo.org>
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c277956289d56e8ed259ebe3e6f7bc825d79b8c4
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jun 17 12:32:02 2005 +0000

    Move get_sandbox_*_envvar() to sandbox_setup_environ(), as its more appropriate there.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 9c62d427a4f6f18ac5609d8c6421230332780de9
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Jun 17 12:10:14 2005 +0000

    Remove fooling around with exit codes - we error out on presence of a log anyhow.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5503d12bf16a6613b7d92e593a29e1eedc723cdb
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jun 14 21:59:07 2005 +0000

    Label rename for clarity.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ee6684649676dc05d25ae0493855595f991c8de8
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue Jun 14 21:57:00 2005 +0000

    Cleanup the fail_nametoolong stuff a bit more.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 37abdf336ea67a6681e111f09022d1d613a3641e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jun 11 10:04:07 2005 +0000

    Remove hopefully the last ld.so.preload bits we do not use anymore.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 53d8035cda3915ed845cf689b017caf81c25249f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jun 11 10:01:11 2005 +0000

    Remove the unneeded canonicalize() calls in the wrappers - we do it anyhow
    in check_syscall().  Should speed things up a bit (at least for the getcwd()
    and long path name test it goes down to under a second, and not 10+ seconds
    like before).  Also warn if we skip checking due to the canonicalized path
    being too long.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2278e487916bcfc16aff757b75b773bff282a2e7
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jun 11 08:54:24 2005 +0000

    More comment/readability cleanups
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 75578f47bef472ad0c98aa6127f69178555fbee7
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Jun 11 07:25:36 2005 +0000

    Some strncpy/strncat and other cleanups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 07754f24336ee227551acd912841a20f98f7b3ab
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jun 9 17:20:08 2005 +0000

    * sandbox-1.2.9
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 6d64f33eaa042832b516a8ff8c696e5c533fa4fb
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jun 9 16:53:13 2005 +0000

    Move symlink hack down a bit to try and minimize on the amount of lstat()
    calls we do.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 262949767ca40be9e92abff51e3bcdfb9cecfb63
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jun 9 16:47:21 2005 +0000

    Add hack to allow writing to /proc/self/fd (or /dev/fd), bug #91516.
    
    URL: http://bugs.gentoo.org/91516
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Chris Slycord <slycorc@cc.wwu.edu>

commit 4f0670acb8f239e056386359fc3fbdff8eee129b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jun 9 15:47:25 2005 +0000

    Add wrapper for access() function, bug #85413.
    
    URL: http://bugs.gentoo.org/85413
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: ratmice <ratmice@yahoo.com>

commit c5f7df996e9274ce355e3dcd9b5bb606b124d1a8
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jun 9 15:12:20 2005 +0000

    Use generic getcwd() implementation from uclibc - should be more portable
    and looks a bit cleaner.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ac78f9e774c5ee25ae4c9a024d62356e3cf93e37
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jun 9 14:42:11 2005 +0000

    Make sure our true_* pointers are initialized to NULL, and that we check for
    all references that they are valid.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit a0ab51c4e1fdd5749098ef5071446b6c8d7aece5
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Jun 9 14:32:28 2005 +0000

    Be default we will fail if the path name we try to canonicalize is too long.
    
    This however could cause issues with some things (bug #94630 and #21766), so
    if fail_nametoolong == 0, canonicalize() will return a null length string and
    do not fail.
    
    URL: http://bugs.gentoo.org/21766
    URL: http://bugs.gentoo.org/94630
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Spider <spider@gentoo.org>
    Reported-by: Michael Cramer <portage@bigmichi1.dyndns.org>

commit 6d7a01f861debe240b875eeffff4a42aa014804d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jun 8 13:52:33 2005 +0000

    Do not abort if TMPDIR is not valid, but rather use '/tmp', bug #94360
    
    Also make sure we re-export the new TMPDIR environment variable.
    
    URL: http://bugs.gentoo.org/94360
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Krzysiek Pawlik <nelchael@gentoo.org>

commit 234d2edc846197c5bc3939f8256fe58daa37b76f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jun 8 13:39:53 2005 +0000

    Whitespace fixes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit ed8568d1ae20c40e06e031e7dc3d684be22d01c6
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jun 8 13:37:18 2005 +0000

    Fix incorrect free of non-malloc'd array, bug #92313 and #94020
    
    URL: http://bugs.gentoo.org/92313
    URL: http://bugs.gentoo.org/94020
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Signed-off-by: Daniel Gryniewicz <dang@gentoo.org>
    Signed-off-by: Marcus D. Hanwell <cryos@gentoo.org>
    Reported-by: Mike Frysinger <vapier@gentoo.org>
    Reported-by: Corey McGuire <coreyfro@coreyfro.com>

commit a1690cf70011281dfcd520658d4d309daaad18fc
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Jun 8 13:29:37 2005 +0000

    Add /dev/console to write list, bug #38588.
    
    URL: http://bugs.gentoo.org/38588
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Sascha Silbe <sascha-gentoo-bugzilla@silbe.org>

commit 7d9bda636898052fa05d92fb6e58bba66b4e433a
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Sun Jun 5 07:45:28 2005 +0000

    whitespace tweaks
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit d33d0afae00b075a110de18f5fb34fb695851a0e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri May 13 15:24:31 2005 +0000

    * sandbox-1.2.8
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 34f83e7308b2e917cc6d59d0f71e3d55d82c7ba3
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri May 13 15:23:28 2005 +0000

    General cleanups.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4d595fbed05d5eccf51950abe575c327f8916ed5
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri May 13 14:18:05 2005 +0000

    Various LD_PRELOAD cleanups.  Do not unset LD_PRELOAD for parent.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit bc08094a41dbe7bcd6ec313483404b978b83d44c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri May 13 13:30:51 2005 +0000

    Modify get_sandbox_pids_file(), get_sandbox_log() and get_sandbox_debug_log()
    to use TMPDIR if present in environment.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 3debd276c5c6d668c065b7bca6473a87cb6b0993
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri May 13 12:53:15 2005 +0000

    Remove sandbox_log_file from main() as its no longer used.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b972ca0c49c8f9b6f4c31b7730a3b0ce05b09f31
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri May 13 12:52:10 2005 +0000

    Add get_sandbox_debug_log(), and use it (add behaviour similar to SANDBOX_LOG
    if already exported when sandbox started).  Fix get_sandbox_log() and new
    get_sandbox_debug_log() to not use already exported environment variables if
    they have '/' in them.  Use snprintf()'s instead of strncpy()'s.  More
    SB_PATH_MAX fixes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 6e858afbad2f0593f6f74e8bc2a93e1d287184f8
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu May 12 01:08:20 2005 +0000

    Add comments about memory we do not free at the moment.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit b67e8dfd758e389774763f4ec6ec89fe54c662ff
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu May 12 00:09:00 2005 +0000

    * sandbox-1.2.7
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 8e2030f3e892a8a924745663cc8175a42d9009eb
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu May 12 00:07:21 2005 +0000

    More path limit fixes.  Declare SB_BUF_LEN global and use it where needed.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2ba7c60aa686c1e023605e41e17fb28c6380af41
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 23:59:50 2005 +0000

    Fix paths limited to 255 chars.  Fix get_sandbox_dir() returning a string
    with '(null)' in it if we did not call sandbox with absolute path.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit e67319475ce2ef1806e248d9c0dd53e5b92c0c09
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 23:35:14 2005 +0000

    Set SANDBOX_ON *before* doing the child's env stuff, else its not set
    for the child.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit c0712b819e6b1d116618d2c14116fb263c354041
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 23:28:42 2005 +0000

    Remove global preload_adaptable as it is no longer used.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0d301f399743cf9583cd864b091a356295b1667e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 23:23:07 2005 +0000

    Rewrite environment stuff to only be set when execve'ing the child process
    
    to try and avoid issues like bug #91541 that causes sandbox to crash if
    we set LD_PRELOAD sandbox side already.
    
    URL: http://bugs.gentoo.org/91541
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Lasse Bigum <zenith@zenith.dk>

commit a45c0756cfb02ffabc86b4489ce9a1a1117df1b5
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 15:52:08 2005 +0000

    Move print_sandbox_log() up to make things neater.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 1568506b4d6c3196e963defa9d2ea1921936d724
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 15:48:18 2005 +0000

    Remove load_preload_libs(), as its not used anymore.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 19baf7bce8ee3991e8eb8db65f45a16fc2a2c50e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 15:42:45 2005 +0000

    Remove NO_FORK stuff, as its not used, and 'strace -f' works just fine.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 1403e7929c41e5a2b3cfd75493ef3b4931d9b24d
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 15:40:51 2005 +0000

    Remove USE_SYSTEM_SHELL stuff, as it is not secure, and not in use (continued).
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f76577b8e85fc78e160a502b9bbcf3acc9afb56e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 15:39:13 2005 +0000

    Remove USE_SYSTEM_SHELL stuff, as it is not secure, and not in use.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 81d9c4f68629221fa6c39925f15468ddd6d9eda9
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 11 15:36:36 2005 +0000

    Remove ld.so.preload crap - we are not going to use it again.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f6bbf1c8872a5dc73b57c2c01431d89ac1f58adf
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 10 07:38:49 2005 +0000

    Fix typo in code that checks if we got valid group information, causing a
    
    segmentation fault, bug #91637.
    
    URL: http://bugs.gentoo.org/91637
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Olivier Crete <tester@gentoo.org>

commit ed4ba939f440ff848906f75c9f7ea2a58617d651
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 10 07:10:50 2005 +0000

    Really remove libctest.c
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cdab007d2bf39307d1b7d5682bdd4991c953018a
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 10 07:09:21 2005 +0000

    * sandbox-1.2.6
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4b1f983e8deea8c0d1683ec46855a5c5dbbe994b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 10 07:08:21 2005 +0000

    Do not use LD_PRELOAD if it contains libtsocks.so, as it breaks sandbox
    
    for some odd reason, bug #91541.
    
    URL: http://bugs.gentoo.org/91541
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Lasse Bigum <zenith@zenith.dk>

commit b1e6a203300b94122588c92a554788570278476b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon May 9 18:00:45 2005 +0000

    Fix typo (sizeof -> strlen).
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 10739188e3f87d520d90667a55316de2ca0bc976
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sun May 8 11:27:37 2005 +0000

    rewrote sbcontext caching so it accounts for env changes since lib initialization.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit ed0b393782c3ca906e04fb59bb4242dc5176c569
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 4 23:35:39 2005 +0000

    We create libctest.c via configure, so no need to keep it around.  Do some
    cleanup related to libctest.c and libctest during configure.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 72148bc1d73c5a2b6ab3f7d3bc09859f45a8a329
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 4 15:33:47 2005 +0000

    Add rename support of symlinks pointing to protected files/directories.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 5e11e90db093afb6c5d83a04667984757ed70e77
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 4 15:01:12 2005 +0000

    * sandbox-1.2.5
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit fab138a96d080bd9946b1299873204db6b4e757f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed May 4 14:46:50 2005 +0000

    Do not reset already set LD_PRELOAD when starting sandbox.  If LD_PRELOAD is
    
    already set, init of the env vars fails for some reason, so do this later on,
    and do not warn (bug #91431).
    
    URL: http://bugs.gentoo.org/91431
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Nguyen Thai Ngoc Duy <pclouds@gentoo.org>

commit 3cad2e257f07baa90b4c107f6484bf4eb8addc81
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 3 21:43:50 2005 +0000

    Fixup sandbox and sandbox.bashrc to call bash with the proper .bashrc.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 83199e4da40b9ba00ed5db549f64cd78f5aba007
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 3 11:07:38 2005 +0000

    * sandbox-1.2.4
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit cd4334b071566d6061b3020ee4489863309ff15f
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 3 11:06:08 2005 +0000

    Add bug #91040 for previous change.
    
    URL: http://bugs.gentoo.org/91040
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Andrej Filipcic <andrej.filipcic@ijs.si>

commit fddc5695421ed3f40b14c1d59aff684cfdcde9cd
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 3 10:56:19 2005 +0000

    Do not init the env entries with each call, as it creates too many calls to
    
    lstat, etc.  Should speedup things a bit.
    
    URL: http://bugs.gentoo.org/91040
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Andrej Filipcic <andrej.filipcic@ijs.si>

commit 3fd16082eaaaa86ab5f91a0b55bc0a7ecf24b8f0
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Tue May 3 09:59:26 2005 +0000

    Add /dev/pty to default write list.  Noticed by Morfic.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0114a5c3ab1bc32c1d0886e069cadfe786c1a18c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon May 2 23:58:47 2005 +0000

    whitespace fixes
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 9e3f0cef92bc58071c0257a019831b4b681e01b5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon May 2 23:53:52 2005 +0000

    dont define BROKEN_RTLD_NEXT in uClibc
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f516e65bc7634a77fcdd480023f13d87e940e3ef
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Mon May 2 23:53:39 2005 +0000

    dlvsym doesnt exist in uClibc
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit f02d208cc22585354a937bcaa861f3bd58981a70
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Fri Apr 29 22:18:22 2005 +0000

    use dnl for comments, not #
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 1f4e63082e4d301838cd1230fe9bbbfc582ceb18
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Apr 29 13:37:57 2005 +0000

    sandbox-1.2.3
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 42390f5dd42be12b1665dd77855e37f353b8ef75
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Apr 29 00:22:48 2005 +0000

    I cannot spell, shoot me.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit f7190baf7b22bcff411b709d201abdbc8106a95b
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Fri Apr 29 00:15:08 2005 +0000

    Add comment for CXX/F77 puntage
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2e28b2d23e3a95f543cbbeb2ed70a11cfb890d08
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Apr 28 23:43:32 2005 +0000

    Do not check for (*&#$(* CXX or F77.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2583fdcc17a5d9bfd78103541887857accb124d7
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 28 22:54:22 2005 +0000

    gawk -> $AWK
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 5b96f6c577312dc0496b86e7f65c4d723cbd44c4
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Apr 28 22:41:57 2005 +0000

    Do not append '/' to pathname in filter_path() if it already ends with it.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit a4f0a206b2095e5186e613acf0dc5e1c441ef5c4
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 28 22:21:10 2005 +0000

    fix cross-compiling and uclibc and all that jazz
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit adfe64a18ab45ae5d00be00fa29fccdc14a83fc1
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 28 22:20:37 2005 +0000

    whitespace fixes and move LIBC_VERSION to config.h
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 68d89b001251b6cf341f58558eeab198b2dcc907
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 28 22:19:19 2005 +0000

    use automake-1.9 (not that it really matters eh)
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit cede7741e89ebc7cc05325ffd78b878215e0182c
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Apr 28 22:18:52 2005 +0000

    remove the symbols header file
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 2424516742bd511b336ac10e6847f61223d55d67
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Apr 28 16:18:36 2005 +0000

    * sandbox-1.2.2
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 6b9561281a276eee476765dc8f455e569d34acdd
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Thu Apr 28 15:49:30 2005 +0000

    Only check for /dev/{null,zero} for unlink hack, else ricers using /dev/shm
    
    have issues; bug #90592.
    
    URL: http://bugs.gentoo.org/90592
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Robin Johnson <robbat2@gentoo.org>

commit 142d77aae37d46e4bbdd1b3904435a489b1bcb9c
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Apr 23 21:03:40 2005 +0000

    Add sandbox-1.2 release comment to ChangeLog
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 0072d9d3ca9255ee342500a10bfe7834e06a045a
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Apr 23 20:52:57 2005 +0000

    sandbox-1.2.1
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d07476b41ebf9d62a745d51066474bbac9b2b3d2
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sat Apr 23 20:44:15 2005 +0000

    Make sure all functions used in libsandbox.c is declared static.  Define
    
    SB_STATIC in localdecls.h for this.  Include sandbox_futils.c rather than
    linking with its object.  Hopefully this will fix bug #90153.
    
    URL: http://bugs.gentoo.org/90153
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Alexandre Rostovtsev <tetromino@gmail.com>

commit 254d8d150f3692ac4b34e309ea4e46e9988b984f
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Apr 23 06:21:03 2005 +0000

    Tagged and bagged 1.2
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 34214c6c62bafca64f50921b867e9e9883e59251
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Mar 21 23:30:13 2005 +0000

    Allow lchown a symlink in write-allowed path pointing to write-denied target.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit d43c0e034f6ce9152b25868afd7fe0dcf25eb16f
Author: Marius Mauch <genone@gentoo.org>
Date:   Mon Mar 21 08:54:02 2005 +0000

    show resolved symlinks in log
    
    Signed-off-by: Marius Mauch <genone@gentoo.org>

commit fbb34b9081f88e24e3a8dfeb1e4077b8bbf34ec9
Author: Marius Mauch <genone@gentoo.org>
Date:   Mon Mar 14 16:00:45 2005 +0000

    dropping duplicate symbols
    
    Signed-off-by: Marius Mauch <genone@gentoo.org>

commit 4173f398f0f7aec50773b851164af436dae9c6b8
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Mon Mar 14 00:28:10 2005 +0000

    Seems -nostdlib was the problem with the constructor/destructor - remove it
    from Makefile.am, and change the constructor/destructor names again.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4db24ea4c0da0ec3287dfa2e4e8040c38ed6d262
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Mar 13 23:29:28 2005 +0000

    Also rename the _init() and _fini() declarations.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 4c9cfe2dddba6eceb3c408dd2716f7a55c402dfe
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Sun Mar 13 23:23:00 2005 +0000

    Fixup the constructor/destructor function names again (they should be _init()
    
    and _fini() it seems, and not being called caused sandbox_lib_path to be
    unset, and thus breaking the execve() wrapper's LD_PRELOAD protection).
    Add both the path in given SANDBOX_x variable, as well as its symlink
    resolved path in init_env_entries().  Modify filter_path() to be able to
    resolve paths without resolving symlinks, as well as to be able to resolve
    symlinks.  Fix a possible segfault in check_access().  Add symlink resolving
    to check_access() resolving bug #31019.  Add 'hack' for unlink, as the fix
    for bug #31019 cause access violations if we try to remove a symlink that is
    not in protected path, but points to a protected path.  Fix a memory leak in
    sandbox.c (sandbox_pids_file in main()).  Fix the realpath() calls in main()
    (sandbox.c) being unchecked.  Fix the debug logname not having the pid in it
    (pid_string was uninitialized).  General syntax cleanups.
    
    URL: http://bugs.gentoo.org/31019
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: Andrea Luzzardi <scox@sig11.org>

commit b5f747d6757d0b0871c41c70d46a34bb24059675
Author: Brian Harring <ferringb@gentoo.org>
Date:   Wed Mar 9 07:39:50 2005 +0000

    happy output time.
    missing new line.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit d332990aa00afa2490c1cb298d1c53a23614e6d3
Author: Brian Harring <ferringb@gentoo.org>
Date:   Wed Mar 9 07:34:30 2005 +0000

    correct symbols.h building when libdir !+ "/lib"
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 2616a5a14e09454733ff6d0b8eaa6847d01aef18
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Mar 2 17:30:16 2005 +0000

    Hack to make sure sandboxed process cannot remove a device node
    
    URL: http://bugs.gentoo.org/79836
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>
    Reported-by: David Wood <jbevren@yahoo.com>

commit 5ecb9985810a929cc9722bb826dc7915088f247e
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Mar 2 09:18:01 2005 +0000

    Fix symbols.in not added to dist.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 6cf5c3ca64e594bf068ac11bb0c5bb35904706d7
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Mar 2 09:04:45 2005 +0000

    White space fixes.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 477d4cb3b2f4d28304f0778d84aaef545bae58e2
Author: Martin Schlemmer <azarah@gentoo.org>
Date:   Wed Mar 2 09:01:36 2005 +0000

    Fix inverse test logic in canonicalize.c, use a strncpy.  Fix gcc warning in
    getcwd.c.  Add symbols.in and logic to Makefile.am to generate symbol versions
    for glibc and other libc's that use this.  Update libsandbox.c to use these
    symbol versions if available.  Fix exec wrapper to re-export LD_PRELOAD if the
    process unset it.
    
    Signed-off-by: Martin Schlemmer <azarah@gentoo.org>

commit 2d62019fb429798ba96cab96b3a5ad7d4db76e5f
Author: Brian Harring <ferringb@gentoo.org>
Date:   Wed Mar 2 05:48:12 2005 +0000

    killed off _init and _fini in favor of
    void __attribute__ ((constructor)) init_func and
    void __attribute__ ((destructor)) closing_func.  _(init|func) were deprecated.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 9e0e7c36c0958860433ba2453c41890a461d1424
Author: Brian Harring <ferringb@gentoo.org>
Date:   Wed Mar 2 05:36:46 2005 +0000

    work damn you.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 78bfdb4cee54fc60ec4ea3e6464dffc76813df65
Author: Brian Harring <ferringb@gentoo.org>
Date:   Mon Dec 6 21:42:51 2004 +0000

    hopefully cvs is done being stupid.  Compilation fixes, along w/ make dist fix.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 08f4d01d67407c4c458e197c061de377a2a5ab67
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sun Dec 5 06:14:21 2004 +0000

    compilation fixups.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 88064e02ca4aa710b6954d715caa78e33ebd8bac
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sun Dec 5 05:42:10 2004 +0000

    should make things compile again
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit c519aea6404bd3dc7021fd7f994440e6744a2ee6
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Dec 2 05:22:49 2004 +0000

    turn create-localdecls into semi-autotooled
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit 6e7527a0b5ca6b480c2b58f4e681a68cd66019df
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Dec 2 05:20:50 2004 +0000

    need to include config.h
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit e5a2ddec3d454646a656571825c63fa8bddea7f5
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Dec 2 04:46:02 2004 +0000

    touchups
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit bbd9f279d157cce13b7b198922678b54df54ff05
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Dec 2 02:53:00 2004 +0000

    scripts to generate/clean build
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit fe061d7f38cfe70226603ddd97b3d64a8a276287
Author: Mike Frysinger <vapier@gentoo.org>
Date:   Thu Dec 2 02:52:46 2004 +0000

    remove generated files
    
    Signed-off-by: Mike Frysinger <vapier@gentoo.org>

commit c5d5197e0db46558eae3b287e74e5f3a1d406e17
Author: Brian Harring <ferringb@gentoo.org>
Date:   Thu Dec 2 02:25:36 2004 +0000

    stupid libtool.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 39b92fd2fe791a8db057aad06f8469bd0d6f1c3a
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sun Nov 21 02:23:33 2004 +0000

    adjustment so it stops installing a couple of extra srcs to /usr/share.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit dfb9a2160ea1eb7016362e4a6bd146445a85b270
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 13:21:37 2004 +0000

    corrections to remove hardcoded paths.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit b6a187154186eda1dee8769e3e8183218c96e4e7
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 13:21:06 2004 +0000

    nore should these.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 86d035969e4434bf14fd4752070fa36774e65d11
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 13:20:02 2004 +0000

    this shouldn't be in cvs.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 8d79451e82e27c62c64dc660e9ebe39d0c169899
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 13:05:24 2004 +0000

    removed the /usr/lib/portage/ hardcoded reference for bashrc.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit b6952e5c5c394e5f202b31044e1d15fb70e70e33
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 09:26:09 2004 +0000

    nuke the creation of a gz for dist target.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 9a9a218e8779754d0344e86ce7e925ca4d4530c5
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 00:49:15 2004 +0000

    final make dist tweak.  stupid bugger.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit f3c5c1860471e5bf0026247c1e31800e2b0626ec
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 00:43:01 2004 +0000

    corrections for make dist, include canocicalize.c
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit ebe90135b22bfaff450c21dfa99db580a393f8ed
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 00:28:03 2004 +0000

    changed the dist target to include building bz2'd tarballs.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 3af963253dff232c79a811b3da903fb2877b8fef
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 00:21:17 2004 +0000

    annoying autotool files.  stuck usual copyright stuff w/ gpl v2 notice in COPYING.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 2fa024d17e53dca4649d00eb330e7de25f281844
Author: Brian Harring <ferringb@gentoo.org>
Date:   Sat Nov 20 00:17:06 2004 +0000

    a quicky attempt at making authors actually useful.  Fairly complete from what I can see.  Basically walked the
    changelogs, cvs logs, etc.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit b82860b7e655382e0ef7d9f3b052b702333bae29
Author: Brian Harring <ferringb@gentoo.org>
Date:   Fri Nov 19 22:11:38 2004 +0000

    entry regarding cvs shift, and the beast being autotooled.
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>

commit 79cb18ddd2ab2ea4ee108f21dd80a29548faefba
Author: Brian Harring <ferringb@gentoo.org>
Date:   Fri Nov 19 22:03:42 2004 +0000

    Initial revision
    
    Signed-off-by: Brian Harring <ferringb@gentoo.org>
