Command line and full screen utilities for browsing procfs, a "pseudo" file system dynamically generated by Linux to provide information about the status of entries in its process table.
Go to file
Jim Warner 1ba0e999c6 top: eliminate that potential vulnerability for TOCTOU
Initially, I was going to ignore that coverity warning
CID #177876. But, since top may be running SETUID it's
best if it can be avoided instead. The fix was simple.

We'll trade the access() call for a real fopen() call.
This time-of-check-time-of-use warning should go away.
------------------------------------------------------

When XDG support was originally introduced in top, the
author made a poor choice in access(). A real question
that needed asking was 'does the file exist'. However,
the question that was asked was 'can this real user ID
or this real group ID access the file'. Then, when the
fopen() is finally issued, top would use the effective
user ID or the effective group ID to access that file.

That's what opened the potential TOCTOU vulnerability,
which was important only if top was running SUID/SGID.

Signed-off-by: Jim Warner <james.warner@comcast.net>
2017-10-14 21:44:56 +11:00
contrib
Documentation
include misc: fix strtod_nol_err tests 2016-07-13 20:08:51 +10:00
lib misc: fix strtod_nol_err tests 2016-07-13 20:08:51 +10:00
man-po ps: recognize SCHED_DEADLINE 2016-11-07 10:23:01 +01:00
misc
po Merge branch 'free_french_alignment' into 'master' 2016-08-23 10:44:53 +00:00
proc whattime: Fix formatting 2017-09-23 17:32:29 +10:00
ps ps: don't use '+' truncation indicator with multi-byte 2017-10-02 22:20:58 +11:00
testsuite Consolidated patch of previously merged CYGWIN support 2017-09-03 20:59:23 +10:00
top top: eliminate that potential vulnerability for TOCTOU 2017-10-14 21:44:56 +11:00
.gitignore Consolidated patch of previously merged CYGWIN support 2017-09-03 20:59:23 +10:00
.gitlab-ci.yml added gettext to dependency 2016-04-20 22:15:27 +10:00
AUTHORS
autogen.sh
ChangeLog
configure.ac Consolidated patch of previously merged CYGWIN support 2017-09-03 20:59:23 +10:00
COPYING
COPYING.LIB
create-man-pot.sh
free.1 watch,free: interpet intervals in non-locale way 2016-07-03 16:14:36 +10:00
free.c misc: eliminate all those remaining gcc -Wall warnings 2017-05-22 21:34:32 +10:00
INSTALL.md
kill.1
Makefile.am Consolidated patch of previously merged CYGWIN support 2017-09-03 20:59:23 +10:00
NEWS NEWS: acknowledged top's multi-byte support extensions 2017-10-01 22:19:58 +11:00
pgrep.1 pkill: Return 0 if successfully killed process 2017-02-04 11:44:01 +11:00
pgrep.c pkill: Return 0 if successfully killed process 2017-02-04 11:44:01 +11:00
pidof.1
pidof.c pidof: check cmd if space in argv0 2016-04-17 16:43:26 +10:00
pkill.1
pmap.1
pmap.c pmap: fix printing bug associated with the '-x' option 2016-09-11 09:21:44 +10:00
pwdx.1
pwdx.c
README.md misc: repair a single instance of 'whitespace' boo-boo 2016-07-09 13:23:27 +10:00
skill.1
skill.c Consolidated patch of previously merged CYGWIN support 2017-09-03 20:59:23 +10:00
slabtop.1
slabtop.c
snice.1
sysctl.8
sysctl.c Avoid confusing messages caused by EIO on reading 2017-08-30 22:39:56 +10:00
sysctl.conf
sysctl.conf.5 misc: remove some newly introduced trailing whitespace 2016-09-26 07:41:04 +10:00
tload.1
tload.c Fix out of boundary write on 1x1 terminals 2017-08-30 22:39:56 +10:00
translate-man.sh
uptime.1
uptime.c
vmstat.8
vmstat.c vmstat: Fix alignment for disk partition format 2017-09-25 09:09:57 +10:00
w.1
w.c Added Cygwin build support 2016-03-10 15:04:27 -08:00
watch.1 documentation: Update watch man page 2016-07-03 16:16:28 +10:00
watch.c misc: eliminate all those remaining gcc -Wall warnings 2017-05-22 21:34:32 +10:00

build status procps

procps is a set of command line and full-screen utilities that provide information out of the pseudo-filesystem most commonly located at /proc. This filesystem provides a simple interface to the kernel data structures. The programs of procps generally concentrate on the structures that describe the processess running on the system.

The following programs are found in procps:

  • free - Report the amount of free and used memory in the system
  • kill - Send a signal to a process based on PID
  • pgrep - List processes based on name or other attributes
  • pkill - Send a signal to a process based on name or other attributes
  • pmap - Report memory map of a process
  • ps - Report information of processes
  • pwdx - Report current directory of a process
  • skill - Obsolete version of pgrep/pkill
  • slabtop - Display kernel slab cache information in real time
  • snice - Renice a process
  • sysctl - Read or Write kernel parameters at run-time
  • tload - Graphical representation of system load average
  • top - Dynamic real-time view of running processes
  • uptime - Display how long the system has been running
  • vmstat - Report virtual memory statistics
  • w - Report logged in users and what they are doing
  • watch - Execute a program periodically, showing output fullscreen

Reporting Bugs

There are a few ways of reporting bugs or feature requests:

  1. Your distributions bug reporter. If you are using a distribution your first port of call is their bug tracker. This is because each distribution has their own patches and way of dealing with bugs. Also bug reporting often does not need any subscription to websites.
  2. GitLab Issues - To the left of this page is the issue tracker. You can report bugs here.
  3. Email list - We have an email list (see below) where you can report bugs. The problem with this method is bug reports often get lost and cannot be tracked. This is especially a big problem when its something that will take time to resolve.

If you need to report bugs, there is more details on the Bug Reporting page.

Email List

The email list for the developers and users of procps is found at http://www.freelists.org/archive/procps/ This email list discusses the development of procps and is used by distributions to also forward or discuss bugs.