aboutsummaryrefslogtreecommitdiffstats
path: root/etc
diff options
context:
space:
mode:
authorLibravatar glitsj16 <glitsj16@users.noreply.github.com>2020-02-24 17:59:10 +0000
committerLibravatar GitHub <noreply@github.com>2020-02-24 17:59:10 +0000
commit56b60dfd0ec5227318f21409093eca965baf136a (patch)
tree058f03951a15c92820141f69e9925254601b1849 /etc
parentadd lua support for mpv (#3243) (diff)
downloadfirejail-56b60dfd0.tar.gz
firejail-56b60dfd0.tar.zst
firejail-56b60dfd0.zip
additional Lua blacklisting (#3246)
* more lua blacklisting in disable-interpreters.inc * add some paths to allow-lua.inc * Revert blacklisting /usr/include/lauxlib.h in disable-interpreters.inc /usr/include/lauxlib.h is handled in disable-devel.inc. Thanks to @rusty-snake for pointing that out.
Diffstat (limited to 'etc')
-rw-r--r--etc/allow-lua.inc2
-rw-r--r--etc/disable-interpreters.inc1
2 files changed, 3 insertions, 0 deletions
diff --git a/etc/allow-lua.inc b/etc/allow-lua.inc
index c3c1baa44..e0d13e319 100644
--- a/etc/allow-lua.inc
+++ b/etc/allow-lua.inc
@@ -3,7 +3,9 @@
3include allow-lua.local 3include allow-lua.local
4 4
5noblacklist ${PATH}/lua* 5noblacklist ${PATH}/lua*
6noblacklist /usr/include/lauxlib.h
6noblacklist /usr/include/lua* 7noblacklist /usr/include/lua*
7noblacklist /usr/lib/liblua* 8noblacklist /usr/lib/liblua*
8noblacklist /usr/lib/lua 9noblacklist /usr/lib/lua
9noblacklist /usr/share/lua 10noblacklist /usr/share/lua
11noblacklist /usr/share/lua*
diff --git a/etc/disable-interpreters.inc b/etc/disable-interpreters.inc
index c51c5fb63..bb8e16b96 100644
--- a/etc/disable-interpreters.inc
+++ b/etc/disable-interpreters.inc
@@ -16,6 +16,7 @@ blacklist /usr/include/lua*
16blacklist /usr/lib/liblua* 16blacklist /usr/lib/liblua*
17blacklist /usr/lib/lua 17blacklist /usr/lib/lua
18blacklist /usr/share/lua 18blacklist /usr/share/lua
19blacklist /usr/share/lua*
19 20
20# Node.js 21# Node.js
21blacklist ${PATH}/node 22blacklist ${PATH}/node
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-07-20 02:00:23 +0000