more --build

author: netblue30 <netblue30@protonmail.com> 2021-05-06 15:39:36 -0400
committer: netblue30 <netblue30@protonmail.com> 2021-05-06 15:39:36 -0400
commit: 43e47483ff94753655ade1e633e973725d8fb505 (patch)
tree: f4f69043bcb37fd62c6d60da57cad5b6027f46c5 /src/fbuilder/build_home.c
parent: some wireshark hardening (#4245) (diff)
download: firejail-43e47483ff94753655ade1e633e973725d8fb505.tar.gz
firejail-43e47483ff94753655ade1e633e973725d8fb505.tar.zst
firejail-43e47483ff94753655ade1e633e973725d8fb505.zip
1 files changed, 1 insertions, 25 deletions
diff --git a/src/fbuilder/build_home.c b/src/fbuilder/build_home.c
index d7706282a..b3ec6cffd 100644
--- a/src/fbuilder/build_home.c
+++ b/src/fbuilder/build_home.c
@@ -23,30 +23,6 @@
 static FileDB *db_skip = NULL;
 static FileDB *db_out = NULL;
-static void load_whitelist_common(void) {
-        FILE *fp = fopen(SYSCONFDIR "/whitelist-common.inc", "r");
-        if (!fp) {
-                fprintf(stderr, "Error: cannot open whitelist-common.inc\n");
-                exit(1);
-        }
-        char buf[MAX_BUF];
-        while (fgets(buf, MAX_BUF, fp)) {
-                if (strncmp(buf, "whitelist ${HOME}/", 18) != 0)
-                        continue;
-                char *fn = buf + 18;
-                char *ptr = strchr(buf, '\n');
-                if (!ptr)
-                        continue;
-                *ptr = '\0';
-                // add the file to skip list
-                db_skip = filedb_add(db_skip, fn);
-        }
-        fclose(fp);
-}
 void process_home(const char *fname, char *home, int home_len) {
        assert(fname);
        assert(home);
@@ -162,7 +138,7 @@ void build_home(const char *fname, FILE *fp) {
        assert(fname);
        // load whitelist common
-        load_whitelist_common();
+        db_skip = filedb_load_whitelist(db_skip, "whitelist-common.inc", "whitelist ${HOME}/");
        // find user home directory
        struct passwd *pw = getpwuid(getuid());
author	netblue30 <netblue30@protonmail.com>	2021-05-06 15:39:36 -0400
committer	netblue30 <netblue30@protonmail.com>	2021-05-06 15:39:36 -0400
commit	43e47483ff94753655ade1e633e973725d8fb505 (patch)
tree	f4f69043bcb37fd62c6d60da57cad5b6027f46c5 /src/fbuilder/build_home.c
parent	some wireshark hardening (#4245) (diff)
download	firejail-43e47483ff94753655ade1e633e973725d8fb505.tar.gz firejail-43e47483ff94753655ade1e633e973725d8fb505.tar.zst firejail-43e47483ff94753655ade1e633e973725d8fb505.zip

diff --git a/src/fbuilder/build_home.c b/src/fbuilder/build_home.c index d7706282a..b3ec6cffd 100644 --- a/src/fbuilder/build_home.c +++ b/src/fbuilder/build_home.c
@@ -23,30 +23,6 @@
23	static FileDB *db_skip = NULL;	23	static FileDB *db_skip = NULL;
24	static FileDB *db_out = NULL;	24	static FileDB *db_out = NULL;
25		25
26	static void load_whitelist_common(void) {
27	FILE *fp = fopen(SYSCONFDIR "/whitelist-common.inc", "r");
28	if (!fp) {
29	fprintf(stderr, "Error: cannot open whitelist-common.inc\n");
30	exit(1);
31	}
32
33	char buf[MAX_BUF];
34	while (fgets(buf, MAX_BUF, fp)) {
35	if (strncmp(buf, "whitelist ${HOME}/", 18) != 0)
36	continue;
37	char *fn = buf + 18;
38	char *ptr = strchr(buf, '\n');
39	if (!ptr)
40	continue;
41	*ptr = '\0';
42
43	// add the file to skip list
44	db_skip = filedb_add(db_skip, fn);
45	}
46
47	fclose(fp);
48	}
49
50	void process_home(const char fname, char home, int home_len) {	26	void process_home(const char fname, char home, int home_len) {
51	assert(fname);	27	assert(fname);
52	assert(home);	28	assert(home);
@@ -162,7 +138,7 @@ void build_home(const char fname, FILE fp) {
162	assert(fname);	138	assert(fname);
163		139
164	// load whitelist common	140	// load whitelist common
165	load_whitelist_common();	141	db_skip = filedb_load_whitelist(db_skip, "whitelist-common.inc", "whitelist ${HOME}/");
166		142
167	// find user home directory	143	// find user home directory
168	struct passwd *pw = getpwuid(getuid());	144	struct passwd *pw = getpwuid(getuid());