diff options
author | glitsj16 <glitsj16@users.noreply.github.com> | 2020-02-24 17:59:10 +0000 |
---|---|---|
committer | GitHub <noreply@github.com> | 2020-02-24 17:59:10 +0000 |
commit | 56b60dfd0ec5227318f21409093eca965baf136a (patch) | |
tree | 058f03951a15c92820141f69e9925254601b1849 | |
parent | add lua support for mpv (#3243) (diff) | |
download | firejail-56b60dfd0ec5227318f21409093eca965baf136a.tar.gz firejail-56b60dfd0ec5227318f21409093eca965baf136a.tar.zst firejail-56b60dfd0ec5227318f21409093eca965baf136a.zip |
additional Lua blacklisting (#3246)
* more lua blacklisting in disable-interpreters.inc
* add some paths to allow-lua.inc
* Revert blacklisting /usr/include/lauxlib.h in disable-interpreters.inc
/usr/include/lauxlib.h is handled in disable-devel.inc. Thanks to @rusty-snake for pointing that out.
-rw-r--r-- | etc/allow-lua.inc | 2 | ||||
-rw-r--r-- | etc/disable-interpreters.inc | 1 |
2 files changed, 3 insertions, 0 deletions
diff --git a/etc/allow-lua.inc b/etc/allow-lua.inc index c3c1baa44..e0d13e319 100644 --- a/etc/allow-lua.inc +++ b/etc/allow-lua.inc | |||
@@ -3,7 +3,9 @@ | |||
3 | include allow-lua.local | 3 | include allow-lua.local |
4 | 4 | ||
5 | noblacklist ${PATH}/lua* | 5 | noblacklist ${PATH}/lua* |
6 | noblacklist /usr/include/lauxlib.h | ||
6 | noblacklist /usr/include/lua* | 7 | noblacklist /usr/include/lua* |
7 | noblacklist /usr/lib/liblua* | 8 | noblacklist /usr/lib/liblua* |
8 | noblacklist /usr/lib/lua | 9 | noblacklist /usr/lib/lua |
9 | noblacklist /usr/share/lua | 10 | noblacklist /usr/share/lua |
11 | noblacklist /usr/share/lua* | ||
diff --git a/etc/disable-interpreters.inc b/etc/disable-interpreters.inc index c51c5fb63..bb8e16b96 100644 --- a/etc/disable-interpreters.inc +++ b/etc/disable-interpreters.inc | |||
@@ -16,6 +16,7 @@ blacklist /usr/include/lua* | |||
16 | blacklist /usr/lib/liblua* | 16 | blacklist /usr/lib/liblua* |
17 | blacklist /usr/lib/lua | 17 | blacklist /usr/lib/lua |
18 | blacklist /usr/share/lua | 18 | blacklist /usr/share/lua |
19 | blacklist /usr/share/lua* | ||
19 | 20 | ||
20 | # Node.js | 21 | # Node.js |
21 | blacklist ${PATH}/node | 22 | blacklist ${PATH}/node |