diff options
author | smitsohu <smitsohu@gmail.com> | 2018-06-22 20:10:17 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2018-06-22 20:10:17 +0200 |
commit | bc70dbf152b10185f61b020064967f9b4616e100 (patch) | |
tree | 35f6cc518d7563818f13e112b0f110aae70b0364 /src | |
parent | print Xephyr params at startup (diff) | |
download | firejail-bc70dbf152b10185f61b020064967f9b4616e100.tar.gz firejail-bc70dbf152b10185f61b020064967f9b4616e100.tar.zst firejail-bc70dbf152b10185f61b020064967f9b4616e100.zip |
fix whitelisting of /dev/log
/dev/log is a symlink to /run/systemd/journal/dev-log on Debian/Ubuntu and probably elsewhere
Diffstat (limited to 'src')
-rw-r--r-- | src/firejail/fs_whitelist.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/src/firejail/fs_whitelist.c b/src/firejail/fs_whitelist.c index 9ef80e5c3..5f8c734bc 100644 --- a/src/firejail/fs_whitelist.c +++ b/src/firejail/fs_whitelist.c | |||
@@ -581,6 +581,8 @@ void fs_whitelist(void) { | |||
581 | // special handling for /dev/shm | 581 | // special handling for /dev/shm |
582 | // on some platforms (Debian wheezy, Ubuntu 14.04), it is a symlink to /run/shm | 582 | // on some platforms (Debian wheezy, Ubuntu 14.04), it is a symlink to /run/shm |
583 | if (strcmp(new_name, "/dev/shm") == 0 && strcmp(fname, "/run/shm") == 0); | 583 | if (strcmp(new_name, "/dev/shm") == 0 && strcmp(fname, "/run/shm") == 0); |
584 | // special handling for /dev/log, which can be a symlink to /run/systemd/journal/dev-log | ||
585 | if (strcmp(new_name, "/dev/log") == 0 && strcmp(fname, "/run/systemd/journal/dev-log") == 0); | ||
584 | // special processing for /proc/self/fd files | 586 | // special processing for /proc/self/fd files |
585 | else if (strcmp(new_name, "/dev/fd") == 0 && strcmp(fname, "/proc/self/fd") == 0); | 587 | else if (strcmp(new_name, "/dev/fd") == 0 && strcmp(fname, "/proc/self/fd") == 0); |
586 | else if (strcmp(new_name, "/dev/stdin") == 0 && strcmp(fname, "/proc/self/fd/0") == 0); | 588 | else if (strcmp(new_name, "/dev/stdin") == 0 && strcmp(fname, "/proc/self/fd/0") == 0); |