diff options
author | smitsohu <smitsohu@gmail.com> | 2020-08-17 17:08:43 +0200 |
---|---|---|
committer | smitsohu <smitsohu@gmail.com> | 2020-08-17 17:08:43 +0200 |
commit | 9e3b7b90cf9aad35fc8db2eabdeb9e1ed038acea (patch) | |
tree | c6732e4a925e5f594cf30db251db9e8e65d3b0e7 /src/fnet | |
parent | various x11 xorg enhancements (diff) | |
download | firejail-9e3b7b90cf9aad35fc8db2eabdeb9e1ed038acea.tar.gz firejail-9e3b7b90cf9aad35fc8db2eabdeb9e1ed038acea.tar.zst firejail-9e3b7b90cf9aad35fc8db2eabdeb9e1ed038acea.zip |
add dumpable warnings
Diffstat (limited to 'src/fnet')
-rw-r--r-- | src/fnet/main.c | 16 |
1 files changed, 10 insertions, 6 deletions
diff --git a/src/fnet/main.c b/src/fnet/main.c index 95e12164e..22879b8ce 100644 --- a/src/fnet/main.c +++ b/src/fnet/main.c | |||
@@ -21,6 +21,7 @@ | |||
21 | #include <sys/types.h> | 21 | #include <sys/types.h> |
22 | #include <sys/stat.h> | 22 | #include <sys/stat.h> |
23 | #include <sys/utsname.h> | 23 | #include <sys/utsname.h> |
24 | #include <sys/prctl.h> | ||
24 | 25 | ||
25 | int arg_quiet = 0; | 26 | int arg_quiet = 0; |
26 | 27 | ||
@@ -64,16 +65,19 @@ printf("\n"); | |||
64 | usage(); | 65 | usage(); |
65 | return 1; | 66 | return 1; |
66 | } | 67 | } |
67 | |||
68 | char *quiet = getenv("FIREJAIL_QUIET"); | ||
69 | if (quiet && strcmp(quiet, "yes") == 0) | ||
70 | arg_quiet = 1; | ||
71 | |||
72 | if (strcmp(argv[1], "-h") == 0 || strcmp(argv[1], "--help") == 0 || strcmp(argv[1], "-?") ==0) { | 68 | if (strcmp(argv[1], "-h") == 0 || strcmp(argv[1], "--help") == 0 || strcmp(argv[1], "-?") ==0) { |
73 | usage(); | 69 | usage(); |
74 | return 0; | 70 | return 0; |
75 | } | 71 | } |
76 | else if (argc == 3 && strcmp(argv[1], "ifup") == 0) { | 72 | #ifdef WARN_DUMPABLE |
73 | if (prctl(PR_GET_DUMPABLE, 0, 0, 0, 0) == 1 && getuid() && getenv("FIREJAIL_PLUGIN")) | ||
74 | fprintf(stderr, "Error fnet: I am dumpable\n"); | ||
75 | #endif | ||
76 | char *quiet = getenv("FIREJAIL_QUIET"); | ||
77 | if (quiet && strcmp(quiet, "yes") == 0) | ||
78 | arg_quiet = 1; | ||
79 | |||
80 | if (argc == 3 && strcmp(argv[1], "ifup") == 0) { | ||
77 | net_if_up(argv[2]); | 81 | net_if_up(argv[2]); |
78 | } | 82 | } |
79 | else if (argc == 2 && strcmp(argv[1], "printif") == 0) { | 83 | else if (argc == 2 && strcmp(argv[1], "printif") == 0) { |