diff --git a/binaries/aarch64/nfqws b/binaries/aarch64/nfqws index b041bf25..8ec10fb8 100755 Binary files a/binaries/aarch64/nfqws and b/binaries/aarch64/nfqws differ diff --git a/binaries/aarch64/tpws b/binaries/aarch64/tpws index 3c5fd00b..aec6c6d7 100755 Binary files a/binaries/aarch64/tpws and b/binaries/aarch64/tpws differ diff --git a/binaries/arm/nfqws b/binaries/arm/nfqws index ae395793..10e5c258 100755 Binary files a/binaries/arm/nfqws and b/binaries/arm/nfqws differ diff --git a/binaries/arm/tpws b/binaries/arm/tpws index 0fedc6cc..7d5039f3 100755 Binary files a/binaries/arm/tpws and b/binaries/arm/tpws differ diff --git a/binaries/mips32r1-lsb/nfqws b/binaries/mips32r1-lsb/nfqws index f1243d5a..103654e2 100755 Binary files a/binaries/mips32r1-lsb/nfqws and b/binaries/mips32r1-lsb/nfqws differ diff --git a/binaries/mips32r1-lsb/tpws b/binaries/mips32r1-lsb/tpws index 2fdf41b5..0cf17c51 100755 Binary files a/binaries/mips32r1-lsb/tpws and b/binaries/mips32r1-lsb/tpws differ diff --git a/binaries/mips32r1-msb/nfqws b/binaries/mips32r1-msb/nfqws index 4bce5392..de2f6533 100755 Binary files a/binaries/mips32r1-msb/nfqws and b/binaries/mips32r1-msb/nfqws differ diff --git a/binaries/mips32r1-msb/tpws b/binaries/mips32r1-msb/tpws index fd62cc1c..ce12d54e 100755 Binary files a/binaries/mips32r1-msb/tpws and b/binaries/mips32r1-msb/tpws differ diff --git a/binaries/mips64r2-msb/nfqws b/binaries/mips64r2-msb/nfqws index 88a435aa..cb15e995 100755 Binary files a/binaries/mips64r2-msb/nfqws and b/binaries/mips64r2-msb/nfqws differ diff --git a/binaries/mips64r2-msb/tpws b/binaries/mips64r2-msb/tpws index 3af7bd86..e30f0508 100755 Binary files a/binaries/mips64r2-msb/tpws and b/binaries/mips64r2-msb/tpws differ diff --git a/binaries/ppc/nfqws b/binaries/ppc/nfqws index 3e7c535a..40f80803 100755 Binary files a/binaries/ppc/nfqws and b/binaries/ppc/nfqws differ diff --git a/binaries/ppc/tpws b/binaries/ppc/tpws index 0e1fdb0a..8f1cccf5 100755 Binary files a/binaries/ppc/tpws and b/binaries/ppc/tpws differ diff --git a/binaries/x86/nfqws b/binaries/x86/nfqws index 3fe23b8b..1c08988b 100755 Binary files a/binaries/x86/nfqws and b/binaries/x86/nfqws differ diff --git a/binaries/x86/tpws b/binaries/x86/tpws index 08d0f8b7..ef70b4c7 100755 Binary files a/binaries/x86/tpws and b/binaries/x86/tpws differ diff --git a/binaries/x86_64/nfqws b/binaries/x86_64/nfqws index 65454929..d03bf7d8 100755 Binary files a/binaries/x86_64/nfqws and b/binaries/x86_64/nfqws differ diff --git a/binaries/x86_64/tpws b/binaries/x86_64/tpws index bf475552..e07aa10b 100755 Binary files a/binaries/x86_64/tpws and b/binaries/x86_64/tpws differ diff --git a/binaries/x86_64/tpws_wsl.tgz b/binaries/x86_64/tpws_wsl.tgz index aef5a8b7..b74f94c9 100644 Binary files a/binaries/x86_64/tpws_wsl.tgz and b/binaries/x86_64/tpws_wsl.tgz differ diff --git a/nfq/sec.c b/nfq/sec.c index e3e3769c..4c911730 100644 --- a/nfq/sec.c +++ b/nfq/sec.c @@ -50,6 +50,9 @@ SYS_fork, #ifdef SYS_vfork SYS_vfork, #endif +#ifdef SYS_uselib +SYS_uselib, +#endif #ifdef SYS_unlink SYS_unlink, #endif @@ -112,7 +115,23 @@ SYS_rename, #ifdef SYS_renameat2 SYS_renameat2, #endif -SYS_renameat +SYS_renameat, +#ifdef SYS_process_vm_readv +SYS_process_vm_readv, +#endif +#ifdef SYS_process_vm_writev +SYS_process_vm_writev, +#endif +#ifdef SYS_process_vm_madvise +SYS_process_madvise, +#endif +#ifdef SYS_tkill +SYS_tkill, +#endif +#ifdef SYS_tgkill +SYS_tgkill, +#endif +SYS_kill, SYS_ptrace }; #define BLOCKED_SYSCALL_COUNT (sizeof(blocked_syscalls)/sizeof(*blocked_syscalls)) diff --git a/tpws/sec.c b/tpws/sec.c index 7b428aa8..2c4251e4 100644 --- a/tpws/sec.c +++ b/tpws/sec.c @@ -50,6 +50,9 @@ SYS_fork, #ifdef SYS_vfork SYS_vfork, #endif +#ifdef SYS_uselib +SYS_uselib, +#endif #ifdef SYS_unlink SYS_unlink, #endif @@ -112,7 +115,23 @@ SYS_rename, #ifdef SYS_renameat2 SYS_renameat2, #endif -SYS_renameat +SYS_renameat, +#ifdef SYS_process_vm_readv +SYS_process_vm_readv, +#endif +#ifdef SYS_process_vm_writev +SYS_process_vm_writev, +#endif +#ifdef SYS_process_vm_madvise +SYS_process_madvise, +#endif +#ifdef SYS_tkill +SYS_tkill, +#endif +#ifdef SYS_tgkill +SYS_tgkill, +#endif +SYS_kill, SYS_ptrace }; #define BLOCKED_SYSCALL_COUNT (sizeof(blocked_syscalls)/sizeof(*blocked_syscalls))