cleanup

author: netblue30 <netblue30@yahoo.com> 2018-10-20 08:51:33 -0400
committer: netblue30 <netblue30@yahoo.com> 2018-10-20 08:51:33 -0400
commit: d5d0236c0080b5d997dc7f8126ebe6117d527988 (patch)
tree: 0cbc5c609419cde42e8a1920917302f8d1783c5e
parent: cleanup (diff)
download: firejail-d5d0236c0080b5d997dc7f8126ebe6117d527988.tar.gz
firejail-d5d0236c0080b5d997dc7f8126ebe6117d527988.tar.zst
firejail-d5d0236c0080b5d997dc7f8126ebe6117d527988.zip
4 files changed, 0 insertions, 152 deletions
diff --git a/gcov.sh b/gcov.sh
index 6fa03f557..a46e92591 100755
--- a/gcov.sh
+++ b/gcov.sh
@@ -41,8 +41,6 @@ lcov -q --capture -d src/firejail -d src/firemon \
 make test-root
 generate
 sleep 2
-exit
 make test-network
 generate
diff --git a/src/firejail/paths.c b/src/firejail/paths.c
index 121cbeb4a..a53240cc2 100644
--- a/src/firejail/paths.c
+++ b/src/firejail/paths.c
@@ -93,59 +93,3 @@ unsigned int count_paths(void) {
        assert(path_cnt);
        return path_cnt;
 }
-// Return 1 if PROGRAM exists in $PATH and is runnable by the
-// invoking user (not root).
-// In other words, tests "will execvp(PROGRAM, ...) succeed?"
-int program_in_path(const char *program) {
-        assert(program && *program);
-        assert(strchr(program, '/') == 0);
-        assert(strcmp(program, ".") != 0);
-        assert(strcmp(program, "..") != 0);
-        if (!paths)
-                init_paths();
-        assert(paths);
-        size_t proglen = strlen(program);
-        char *scratch = malloc(longest_path_elt + proglen + 2);
-        if (!scratch)
-                errExit("malloc");
-        int found = 0;
-        size_t dlen;
-        char **p;
-        for (p = paths; *p; p++) {
-                char *dir = *p;
-                dlen = strlen(dir);
-                // init_paths should ensure that this is true; as long
-                // as it is true, 'scratch' has enough space for "$p/$program".
-                assert(dlen <= longest_path_elt);
-                memcpy(scratch, dir, dlen);
-                scratch[dlen++] = '/';
-                // copy proglen+1 bytes to copy the nul terminator at
-                // the end of 'program'.
-                memcpy(scratch + dlen, program, proglen+1);
-                if (access(scratch, X_OK) == 0) {
-                        // must also verify that this is a regular file
-                        // ('x' permission means something different for directories).
-                        // exec follows symlinks, so use stat, not lstat.
-                        struct stat st;
-                        if (stat(scratch, &st)) {
-                                perror(scratch);
-                                exit(1);
-                        }
-                        if (S_ISREG(st.st_mode)) {
-                                found = 1;
-                                break;
-                        }
-                }
-        }
-        free(scratch);
-        return found;
-}
diff --git a/src/firejail/util.c b/src/firejail/util.c
index 485ddb3af..6c1a89b56 100644
--- a/src/firejail/util.c
+++ b/src/firejail/util.c
@@ -569,19 +569,6 @@ char *clean_pathname(const char *path) {
        return rv;
 }
-void check_unsigned(const char *str, const char *msg) {
-        EUID_ASSERT();
-        const char *ptr = str;
-        while (*ptr != ' ' && *ptr != '\t' && *ptr != '\0') {
-                if (!isdigit(*ptr)) {
-                        fprintf(stderr, "%s %s\n", msg, str);
-                        exit(1);
-                }
-                ptr++;
-        }
-}
 #define BUFLEN 4096
 // find the first child for this parent; return 1 if error
 int find_child(pid_t parent, pid_t *child) {
@@ -865,86 +852,6 @@ uid_t get_group_id(const char *group) {
 }
-static int remove_callback(const char *fpath, const struct stat *sb, int typeflag, struct FTW *ftwbuf) {
-        (void) sb;
-        (void) typeflag;
-        (void) ftwbuf;
-        assert(fpath);
-        if (strcmp(fpath, ".") == 0)
-                return 0;
-        if (remove(fpath)) {    // removes the link not the actual file
-                perror("remove");
-                fprintf(stderr, "Error: cannot remove file from user .firejail directory: %s\n", fpath);
-                exit(1);
-        }
-        return 0;
-}
-int remove_overlay_directory(void) {
-        EUID_ASSERT();
-        struct stat s;
-        sleep(1);
-        char *path;
-        if (asprintf(&path, "%s/.firejail", cfg.homedir) == -1)
-                errExit("asprintf");
-        if (lstat(path, &s) == 0) {
-                // deal with obvious problems such as symlinks and root ownership
-                if (!S_ISDIR(s.st_mode)) {
-                        if (S_ISLNK(s.st_mode))
-                                fprintf(stderr, "Error: %s is a symbolic link\n", path);
-                        else
-                                fprintf(stderr, "Error: %s is not a directory\n", path);
-                        exit(1);
-                }
-                if (s.st_uid != getuid()) {
-                        fprintf(stderr, "Error: %s is not owned by the current user\n", path);
-                        exit(1);
-                }
-                pid_t child = fork();
-                if (child < 0)
-                        errExit("fork");
-                if (child == 0) {
-                        // open ~/.firejail, fails if there is any symlink
-                        int fd = safe_fd(path, O_PATH|O_DIRECTORY|O_NOFOLLOW|O_CLOEXEC);
-                        if (fd == -1)
-                                errExit("safe_fd");
-                        // chdir to ~/.firejail
-                        if (fchdir(fd) == -1)
-                                errExit("fchdir");
-                        close(fd);
-                        EUID_ROOT();
-                        // FTW_PHYS - do not follow symbolic links
-                        if (nftw(".", remove_callback, 64, FTW_DEPTH | FTW_PHYS) == -1)
-                                errExit("nftw");
-                        EUID_USER();
-                        // remove ~/.firejail
-                        if (rmdir(path) == -1)
-                                errExit("rmdir");
-#ifdef HAVE_GCOV
-                        __gcov_flush();
-#endif
-                        _exit(0);
-                }
-                // wait for the child to finish
-                waitpid(child, NULL, 0);
-                // check if ~/.firejail was deleted
-                if (stat(path, &s) == -1)
-                        return 0;
-                else
-                        return 1;
-        }
-        return 0;
-}
 void flush_stdin(void) {
        if (isatty(STDIN_FILENO)) {
                int cnt = 0;
diff --git a/test/fs/fs.sh b/test/fs/fs.sh
index 28c7338e3..8395b1002 100755
--- a/test/fs/fs.sh
+++ b/test/fs/fs.sh
@@ -22,7 +22,6 @@ rm -fr ~/_firejail_test_*
 echo "TESTING: /sys/fs access (test/fs/sys_fs.exp)"
 ./sys_fs.exp
-echo "TESTING: kmsg access (test/fs/kmsg.exp)"
 if [ -c /dev/kmsg ]; then
        echo "TESTING: kmsg access (test/fs/kmsg.exp)"
        ./kmsg.exp
author	netblue30 <netblue30@yahoo.com>	2018-10-20 08:51:33 -0400
committer	netblue30 <netblue30@yahoo.com>	2018-10-20 08:51:33 -0400
commit	d5d0236c0080b5d997dc7f8126ebe6117d527988 (patch)
tree	0cbc5c609419cde42e8a1920917302f8d1783c5e
parent	cleanup (diff)
download	firejail-d5d0236c0080b5d997dc7f8126ebe6117d527988.tar.gz firejail-d5d0236c0080b5d997dc7f8126ebe6117d527988.tar.zst firejail-d5d0236c0080b5d997dc7f8126ebe6117d527988.zip

diff --git a/gcov.sh b/gcov.sh index 6fa03f557..a46e92591 100755 --- a/gcov.sh +++ b/gcov.sh
@@ -41,8 +41,6 @@ lcov -q --capture -d src/firejail -d src/firemon \
41	make test-root	41	make test-root
42	generate	42	generate
43	sleep 2	43	sleep 2
44	exit
45
46		44
47	make test-network	45	make test-network
48	generate	46	generate


diff --git a/src/firejail/paths.c b/src/firejail/paths.c index 121cbeb4a..a53240cc2 100644 --- a/src/firejail/paths.c +++ b/src/firejail/paths.c
@@ -93,59 +93,3 @@ unsigned int count_paths(void) {
93	assert(path_cnt);	93	assert(path_cnt);
94	return path_cnt;	94	return path_cnt;
95	}	95	}
96
97	// Return 1 if PROGRAM exists in $PATH and is runnable by the
98	// invoking user (not root).
99	// In other words, tests "will execvp(PROGRAM, ...) succeed?"
100	int program_in_path(const char *program) {
101	assert(program && *program);
102	assert(strchr(program, '/') == 0);
103	assert(strcmp(program, ".") != 0);
104	assert(strcmp(program, "..") != 0);
105
106	if (!paths)
107	init_paths();
108	assert(paths);
109
110	size_t proglen = strlen(program);
111	char *scratch = malloc(longest_path_elt + proglen + 2);
112	if (!scratch)
113	errExit("malloc");
114
115	int found = 0;
116	size_t dlen;
117	char **p;
118	for (p = paths; *p; p++) {
119	char dir = p;
120	dlen = strlen(dir);
121
122	// init_paths should ensure that this is true; as long
123	// as it is true, 'scratch' has enough space for "$p/$program".
124	assert(dlen <= longest_path_elt);
125
126	memcpy(scratch, dir, dlen);
127	scratch[dlen++] = '/';
128
129	// copy proglen+1 bytes to copy the nul terminator at
130	// the end of 'program'.
131	memcpy(scratch + dlen, program, proglen+1);
132
133	if (access(scratch, X_OK) == 0) {
134	// must also verify that this is a regular file
135	// ('x' permission means something different for directories).
136	// exec follows symlinks, so use stat, not lstat.
137	struct stat st;
138	if (stat(scratch, &st)) {
139	perror(scratch);
140	exit(1);
141	}
142	if (S_ISREG(st.st_mode)) {
143	found = 1;
144	break;
145	}
146	}
147	}
148
149	free(scratch);
150	return found;
151	}


diff --git a/src/firejail/util.c b/src/firejail/util.c index 485ddb3af..6c1a89b56 100644 --- a/src/firejail/util.c +++ b/src/firejail/util.c
@@ -569,19 +569,6 @@ char clean_pathname(const char path) {
569	return rv;	569	return rv;
570	}	570	}
571		571
572	void check_unsigned(const char str, const char msg) {
573	EUID_ASSERT();
574	const char *ptr = str;
575	while (ptr != ' ' && ptr != '\t' && *ptr != '\0') {
576	if (!isdigit(*ptr)) {
577	fprintf(stderr, "%s %s\n", msg, str);
578	exit(1);
579	}
580	ptr++;
581	}
582	}
583
584
585	#define BUFLEN 4096	572	#define BUFLEN 4096
586	// find the first child for this parent; return 1 if error	573	// find the first child for this parent; return 1 if error
587	int find_child(pid_t parent, pid_t *child) {	574	int find_child(pid_t parent, pid_t *child) {
@@ -865,86 +852,6 @@ uid_t get_group_id(const char *group) {
865	}	852	}
866		853
867		854
868	static int remove_callback(const char fpath, const struct stat sb, int typeflag, struct FTW *ftwbuf) {
869	(void) sb;
870	(void) typeflag;
871	(void) ftwbuf;
872	assert(fpath);
873
874	if (strcmp(fpath, ".") == 0)
875	return 0;
876
877	if (remove(fpath)) { // removes the link not the actual file
878	perror("remove");
879	fprintf(stderr, "Error: cannot remove file from user .firejail directory: %s\n", fpath);
880	exit(1);
881	}
882
883	return 0;
884	}
885
886
887	int remove_overlay_directory(void) {
888	EUID_ASSERT();
889	struct stat s;
890	sleep(1);
891
892	char *path;
893	if (asprintf(&path, "%s/.firejail", cfg.homedir) == -1)
894	errExit("asprintf");
895
896	if (lstat(path, &s) == 0) {
897	// deal with obvious problems such as symlinks and root ownership
898	if (!S_ISDIR(s.st_mode)) {
899	if (S_ISLNK(s.st_mode))
900	fprintf(stderr, "Error: %s is a symbolic link\n", path);
901	else
902	fprintf(stderr, "Error: %s is not a directory\n", path);
903	exit(1);
904	}
905	if (s.st_uid != getuid()) {
906	fprintf(stderr, "Error: %s is not owned by the current user\n", path);
907	exit(1);
908	}
909
910	pid_t child = fork();
911	if (child < 0)
912	errExit("fork");
913	if (child == 0) {
914	// open ~/.firejail, fails if there is any symlink
915	int fd = safe_fd(path, O_PATH\|O_DIRECTORY\|O_NOFOLLOW\|O_CLOEXEC);
916	if (fd == -1)
917	errExit("safe_fd");
918	// chdir to ~/.firejail
919	if (fchdir(fd) == -1)
920	errExit("fchdir");
921	close(fd);
922
923	EUID_ROOT();
924	// FTW_PHYS - do not follow symbolic links
925	if (nftw(".", remove_callback, 64, FTW_DEPTH \| FTW_PHYS) == -1)
926	errExit("nftw");
927
928	EUID_USER();
929	// remove ~/.firejail
930	if (rmdir(path) == -1)
931	errExit("rmdir");
932	#ifdef HAVE_GCOV
933	__gcov_flush();
934	#endif
935	_exit(0);
936	}
937	// wait for the child to finish
938	waitpid(child, NULL, 0);
939	// check if ~/.firejail was deleted
940	if (stat(path, &s) == -1)
941	return 0;
942	else
943	return 1;
944	}
945	return 0;
946	}
947
948	void flush_stdin(void) {	855	void flush_stdin(void) {
949	if (isatty(STDIN_FILENO)) {	856	if (isatty(STDIN_FILENO)) {
950	int cnt = 0;	857	int cnt = 0;


diff --git a/test/fs/fs.sh b/test/fs/fs.sh index 28c7338e3..8395b1002 100755 --- a/test/fs/fs.sh +++ b/test/fs/fs.sh
@@ -22,7 +22,6 @@ rm -fr ~/_firejail_test_*
22	echo "TESTING: /sys/fs access (test/fs/sys_fs.exp)"	22	echo "TESTING: /sys/fs access (test/fs/sys_fs.exp)"
23	./sys_fs.exp	23	./sys_fs.exp
24		24
25	echo "TESTING: kmsg access (test/fs/kmsg.exp)"
26	if [ -c /dev/kmsg ]; then	25	if [ -c /dev/kmsg ]; then
27	echo "TESTING: kmsg access (test/fs/kmsg.exp)"	26	echo "TESTING: kmsg access (test/fs/kmsg.exp)"
28	./kmsg.exp	27	./kmsg.exp