diff options
author | Kelvin M. Klann <kmk3.code@protonmail.com> | 2020-12-29 11:45:44 -0300 |
---|---|---|
committer | Kelvin M. Klann <kmk3.code@protonmail.com> | 2021-02-06 20:13:15 -0300 |
commit | 0ddc8160bf18b628842da8fbaf51a7e72c0dd336 (patch) | |
tree | aaa71e77f8e1745b21aa8616fcaad354e844d766 | |
parent | disable-interpreters.inc: sort paths (diff) | |
download | firejail-0ddc8160bf18b628842da8fbaf51a7e72c0dd336.tar.gz firejail-0ddc8160bf18b628842da8fbaf51a7e72c0dd336.tar.zst firejail-0ddc8160bf18b628842da8fbaf51a7e72c0dd336.zip |
disable-interpreters.inc: blacklist the other libmozjs
And sort the paths on allow-gjs.inc.
$ pacman -Q js78
js78 78.6.0-1
$ pacman -Qlq js78 | grep -v /usr/include/
/usr/
/usr/bin/
/usr/bin/js78
/usr/bin/js78-config
/usr/lib/
/usr/lib/libmozjs-78.so
/usr/lib/pkgconfig/
/usr/lib/pkgconfig/mozjs-78.pc
This appears to be the only counterpart path missing when looking at the
current lib64 entries with:
$ grep -Fnr lib64 etc
-rw-r--r-- | etc/inc/allow-gjs.inc | 3 | ||||
-rw-r--r-- | etc/inc/disable-interpreters.inc | 1 |
2 files changed, 3 insertions, 1 deletions
diff --git a/etc/inc/allow-gjs.inc b/etc/inc/allow-gjs.inc index f4f9926cd..c1366e093 100644 --- a/etc/inc/allow-gjs.inc +++ b/etc/inc/allow-gjs.inc | |||
@@ -5,7 +5,8 @@ include allow-gjs.local | |||
5 | noblacklist ${PATH}/gjs | 5 | noblacklist ${PATH}/gjs |
6 | noblacklist ${PATH}/gjs-console | 6 | noblacklist ${PATH}/gjs-console |
7 | noblacklist /usr/lib/gjs | 7 | noblacklist /usr/lib/gjs |
8 | noblacklist /usr/lib64/gjs | ||
9 | noblacklist /usr/lib/libgjs* | 8 | noblacklist /usr/lib/libgjs* |
9 | noblacklist /usr/lib/libmozjs-* | ||
10 | noblacklist /usr/lib64/gjs | ||
10 | noblacklist /usr/lib64/libgjs* | 11 | noblacklist /usr/lib64/libgjs* |
11 | noblacklist /usr/lib64/libmozjs-* | 12 | noblacklist /usr/lib64/libmozjs-* |
diff --git a/etc/inc/disable-interpreters.inc b/etc/inc/disable-interpreters.inc index c8f4a505d..5d8a236fb 100644 --- a/etc/inc/disable-interpreters.inc +++ b/etc/inc/disable-interpreters.inc | |||
@@ -20,6 +20,7 @@ blacklist /usr/lib64/lua | |||
20 | blacklist /usr/share/lua* | 20 | blacklist /usr/share/lua* |
21 | 21 | ||
22 | # mozjs | 22 | # mozjs |
23 | blacklist /usr/lib/libmozjs-* | ||
23 | blacklist /usr/lib64/libmozjs-* | 24 | blacklist /usr/lib64/libmozjs-* |
24 | 25 | ||
25 | # Node.js | 26 | # Node.js |