diff options
| author |  smitsohu <smitsohu@gmail.com> | 2018-08-22 11:03:17 +0200 |
|---|---|---|
| committer | smitsohu <smitsohu@gmail.com> | 2018-08-22 11:03:17 +0200 |
| commit | 1e01430bdfcb63c9f8027ddbb204a224cb179576 (patch) | |
| tree | 327c9a72b90ce8b33f3d9f1f380f3313617501bc | |
| parent | Update steam.profile to support proton/steamplay (diff) | |
| download | firejail-1e01430bdfcb63c9f8027ddbb204a224cb179576.tar.gz firejail-1e01430bdfcb63c9f8027ddbb204a224cb179576.tar.zst firejail-1e01430bdfcb63c9f8027ddbb204a224cb179576.zip | |
drop privs when permissions are changed in /run/user/$UID
| -rw-r--r-- | src/firejail/fs.c | 44 | ||||
| -rw-r--r-- | src/firejail/util.c | 6 |
2 files changed, 43 insertions, 7 deletions
diff --git a/src/firejail/fs.c b/src/firejail/fs.c index 24ff553d7..8db14d502 100644 --- a/src/firejail/fs.c +++ b/src/firejail/fs.c | |||
| @@ -641,8 +641,26 @@ void fs_proc_sys_dev_boot(void) { | |||
| 641 | char *fnamegpg; | 641 | char *fnamegpg; |
| 642 | if (asprintf(&fnamegpg, "/run/user/%d/gnupg", getuid()) == -1) | 642 | if (asprintf(&fnamegpg, "/run/user/%d/gnupg", getuid()) == -1) |
| 643 | errExit("asprintf"); | 643 | errExit("asprintf"); |
| 644 | if (stat(fnamegpg, &s) == -1) | 644 | if (stat(fnamegpg, &s) == -1) { |
| 645 | mkdir_attr(fnamegpg, 0700, getuid(), getgid()); | 645 | pid_t child = fork(); |
| 646 | if (child < 0) | ||
| 647 | errExit("fork"); | ||
| 648 | if (child == 0) { | ||
| 649 | // drop privileges | ||
| 650 | drop_privs(0); | ||
| 651 | if (mkdir(fnamegpg, 0700) == -1) | ||
| 652 | {;} // do nothing | ||
| 653 | if (set_perms(fnamegpg, -1, -1, 0700)) | ||
| 654 | {;} | ||
| 655 | #ifdef HAVE_GCOV | ||
| 656 | __gcov_flush(); | ||
| 657 | #endif | ||
| 658 | _exit(0); | ||
| 659 | } | ||
| 660 | // wait for the child to finish | ||
| 661 | waitpid(child, NULL, 0); | ||
| 662 | fs_logger2("create", fnamegpg); | ||
| 663 | } | ||
| 646 | if (stat(fnamegpg, &s) == 0) | 664 | if (stat(fnamegpg, &s) == 0) |
| 647 | disable_file(BLACKLIST_FILE, fnamegpg); | 665 | disable_file(BLACKLIST_FILE, fnamegpg); |
| 648 | free(fnamegpg); | 666 | free(fnamegpg); |
| @@ -651,8 +669,26 @@ void fs_proc_sys_dev_boot(void) { | |||
| 651 | char *fnamesysd; | 669 | char *fnamesysd; |
| 652 | if (asprintf(&fnamesysd, "/run/user/%d/systemd", getuid()) == -1) | 670 | if (asprintf(&fnamesysd, "/run/user/%d/systemd", getuid()) == -1) |
| 653 | errExit("asprintf"); | 671 | errExit("asprintf"); |
| 654 | if (stat(fnamesysd, &s) == -1) | 672 | if (stat(fnamesysd, &s) == -1) { |
| 655 | mkdir_attr(fnamesysd, 0755, getuid(), getgid()); | 673 | pid_t child = fork(); |
| 674 | if (child < 0) | ||
| 675 | errExit("fork"); | ||
| 676 | if (child == 0) { | ||
| 677 | // drop privileges | ||
| 678 | drop_privs(0); | ||
| 679 | if (mkdir(fnamesysd, 0755) == -1) | ||
| 680 | {;} // do nothing | ||
| 681 | if (set_perms(fnamesysd, -1, -1, 0755)) | ||
| 682 | {;} | ||
| 683 | #ifdef HAVE_GCOV | ||
| 684 | __gcov_flush(); | ||
| 685 | #endif | ||
| 686 | _exit(0); | ||
| 687 | } | ||
| 688 | // wait for the child to finish | ||
| 689 | waitpid(child, NULL, 0); | ||
| 690 | fs_logger2("create", fnamesysd); | ||
| 691 | } | ||
| 656 | if (stat(fnamesysd, &s) == 0) | 692 | if (stat(fnamesysd, &s) == 0) |
| 657 | disable_file(BLACKLIST_FILE, fnamesysd); | 693 | disable_file(BLACKLIST_FILE, fnamesysd); |
| 658 | free(fnamesysd); | 694 | free(fnamesysd); |
diff --git a/src/firejail/util.c b/src/firejail/util.c index c15e3b691..86faaf8b8 100644 --- a/src/firejail/util.c +++ b/src/firejail/util.c | |||
| @@ -1053,7 +1053,7 @@ int safe_fd(const char *path, int flags) { | |||
| 1053 | errExit("open"); | 1053 | errExit("open"); |
| 1054 | 1054 | ||
| 1055 | // traverse the path and return -1 if a symlink is encountered | 1055 | // traverse the path and return -1 if a symlink is encountered |
| 1056 | int entered = 0; | 1056 | int weird_pathname = 1; |
| 1057 | int fd = -1; | 1057 | int fd = -1; |
| 1058 | char *tok = strtok(dup, "/"); | 1058 | char *tok = strtok(dup, "/"); |
| 1059 | while (tok) { | 1059 | while (tok) { |
| @@ -1062,7 +1062,7 @@ int safe_fd(const char *path, int flags) { | |||
| 1062 | tok = strtok(NULL, "/"); | 1062 | tok = strtok(NULL, "/"); |
| 1063 | continue; | 1063 | continue; |
| 1064 | } | 1064 | } |
| 1065 | entered = 1; | 1065 | weird_pathname = 0; |
| 1066 | 1066 | ||
| 1067 | // open the directory | 1067 | // open the directory |
| 1068 | fd = openat(parentfd, tok, O_PATH|O_DIRECTORY|O_NOFOLLOW|O_CLOEXEC); | 1068 | fd = openat(parentfd, tok, O_PATH|O_DIRECTORY|O_NOFOLLOW|O_CLOEXEC); |
| @@ -1077,7 +1077,7 @@ int safe_fd(const char *path, int flags) { | |||
| 1077 | } | 1077 | } |
| 1078 | if (p != dup) { | 1078 | if (p != dup) { |
| 1079 | // consistent flags for top level directories (////foo, /.///foo) | 1079 | // consistent flags for top level directories (////foo, /.///foo) |
| 1080 | if (!entered) | 1080 | if (weird_pathname) |
| 1081 | flags = O_PATH|O_DIRECTORY|O_CLOEXEC; | 1081 | flags = O_PATH|O_DIRECTORY|O_CLOEXEC; |
| 1082 | // open last path segment | 1082 | // open last path segment |
| 1083 | fd = openat(parentfd, p + 1, flags|O_NOFOLLOW); | 1083 | fd = openat(parentfd, p + 1, flags|O_NOFOLLOW); |