phase1

author: netblue30 <netblue30@yahoo.com> 2018-07-27 20:48:21 -0400
committer: netblue30 <netblue30@yahoo.com> 2018-07-27 20:48:21 -0400
commit: e40e088836289e2e6f18215922943fa241e0cfa8 (patch)
tree: 28b01400a2c2933d7e15ba223862e34ebae7c056 /src
parent: phase1 (diff)
download: firejail-e40e088836289e2e6f18215922943fa241e0cfa8.tar.gz
firejail-e40e088836289e2e6f18215922943fa241e0cfa8.tar.zst
firejail-e40e088836289e2e6f18215922943fa241e0cfa8.zip
8 files changed, 11 insertions, 562 deletions
diff --git a/src/fcopy/Makefile.in b/src/fcopy/Makefile.in
deleted file mode 100644
index c9e7d87ab..000000000
--- a/src/fcopy/Makefile.in
+++ /dev/null
@@ -1,14 +0,0 @@
-all: fcopy
-include ../common.mk
-%.o : %.c $(H_FILE_LIST) ../include/common.h ../include/syscall.h
-        $(CC) $(CFLAGS) $(EXTRA_CFLAGS) $(INCLUDE) -c $< -o $@
-fcopy: $(OBJS)
-        $(CC)  $(LDFLAGS) -o $@ $(OBJS) $(LIBS) $(EXTRA_LDFLAGS)
-clean:; rm -f *.o fcopy *.gcov *.gcda *.gcno
-distclean: clean
-        rm -fr Makefile
diff --git a/src/fcopy/main.c b/src/fcopy/main.c
deleted file mode 100644
index e93cd1cb8..000000000
--- a/src/fcopy/main.c
+++ /dev/null
@@ -1,405 +0,0 @@
-/*
- * Copyright (C) 2014-2018 Firejail Authors
- *
- * This file is part of firejail project
- *
- * This program is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License as published by
- * the Free Software Foundation; either version 2 of the License, or
- * (at your option) any later version.
- *
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- * GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License along
- * with this program; if not, write to the Free Software Foundation, Inc.,
- * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
- */
-#include "../include/common.h"
-#include <fcntl.h>
-#include <ftw.h>
-#include <errno.h>
-#include <pwd.h>
-int arg_quiet = 0;
-static int arg_follow_link = 0;
-#define COPY_LIMIT (500 * 1024 *1024)
-static int size_limit_reached = 0;
-static unsigned file_cnt = 0;
-static unsigned size_cnt = 0;
-static char *outpath = NULL;
-static char *inpath = NULL;
-// modified version of the function from util.c
-static void copy_file(const char *srcname, const char *destname, mode_t mode, uid_t uid, gid_t gid) {
-        assert(srcname);
-        assert(destname);
-        mode &= 07777;
-        // don't copy the file if it is already there
-        struct stat s;
-        if (stat(destname, &s) == 0)
-                return;
-        // open source
-        int src = open(srcname, O_RDONLY);
-        if (src < 0) {
-                if (!arg_quiet)
-                        fprintf(stderr, "Warning fcopy: cannot open %s, file not copied\n", srcname);
-                return;
-        }
-        // open destination
-        int dst = open(destname, O_CREAT|O_WRONLY|O_TRUNC, 0755);
-        if (dst < 0) {
-                if (!arg_quiet)
-                        fprintf(stderr, "Warning fcopy: cannot open %s, file not copied\n", destname);
-                close(src);
-                return;
-        }
-        // copy
-        ssize_t len;
-        static const int BUFLEN = 1024;
-        unsigned char buf[BUFLEN];
-        while ((len = read(src, buf, BUFLEN)) > 0) {
-                int done = 0;
-                while (done != len) {
-                        int rv = write(dst, buf + done, len - done);
-                        if (rv == -1)
-                                goto errexit;
-                        done += rv;
-                }
-        }
-        fflush(0);
-        if (fchown(dst, uid, gid) == -1)
-                goto errexit;
-        if (fchmod(dst, mode) == -1)
-                goto errexit;
-        close(src);
-        close(dst);
-        return;
-errexit:
-        close(src);
-        close(dst);
-        unlink(destname);
-        if (!arg_quiet)
-                fprintf(stderr, "Warning fcopy: cannot copy %s\n", destname);
-}
-// modified version of the function in firejail/util.c
-static void mkdir_attr(const char *fname, mode_t mode, uid_t uid, gid_t gid) {
-        assert(fname);
-        mode &= 07777;
-        if (mkdir(fname, mode) == -1 ||
-        chmod(fname, mode) == -1) {
-                fprintf(stderr, "Error fcopy: failed to create %s directory\n", fname);
-                errExit("mkdir/chmod");
-        }
-        if (chown(fname, uid, gid)) {
-                if (!arg_quiet)
-                        fprintf(stderr, "Warning fcopy: failed to change ownership of %s\n", fname);
-        }
-}
-void copy_link(const char *target, const char *linkpath, mode_t mode, uid_t uid, gid_t gid) {
-        (void) mode;
-        (void) uid;
-        (void) gid;
-        // if the link is already there, don't create it
-        struct stat s;
-        if (stat(linkpath, &s) == 0)
-               return;
-        char *rp = realpath(target, NULL);
-        if (rp) {
-                if (symlink(rp, linkpath) == -1) {
-                        free(rp);
-                        goto errout;
-                }
-                free(rp);
-        }
-        else
-                goto errout;
-        return;
-errout:
-        if (!arg_quiet)
-                fprintf(stderr, "Warning fcopy: cannot create symbolic link %s\n", target);
-}
-static int first = 1;
-static int fs_copydir(const char *infname, const struct stat *st, int ftype, struct FTW *sftw) {
-        (void) st;
-        (void) sftw;
-        assert(infname);
-        assert(*infname != '\0');
-        assert(outpath);
-        assert(*outpath != '\0');
-        assert(inpath);
-        // check size limit
-        if (size_limit_reached)
-                return 0;
-        char *outfname;
-        if (asprintf(&outfname, "%s%s", outpath, infname + strlen(inpath)) == -1)
-                errExit("asprintf");
-        // don't copy it if we already have the file
-        struct stat s;
-        if (stat(outfname, &s) == 0) {
-                if (first)
-                        first = 0;
-                else if (!arg_quiet)
-                        fprintf(stderr, "Warning fcopy: skipping %s, file already present\n", infname);
-                free(outfname);
-                return 0;
-        }
-        // extract mode and ownership
-        if (stat(infname, &s) != 0) {
-                if (!arg_quiet)
-                        fprintf(stderr, "Warning fcopy: skipping %s, cannot find inode\n", infname);
-                free(outfname);
-                return 0;
-        }
-        uid_t uid = s.st_uid;
-        gid_t gid = s.st_gid;
-        mode_t mode = s.st_mode;
-        // recalculate size
-        if ((s.st_size + size_cnt) > COPY_LIMIT) {
-                fprintf(stderr, "Error fcopy: size limit of %dMB reached\n", (COPY_LIMIT / 1024) / 1024);
-                size_limit_reached = 1;
-                free(outfname);
-                return 0;
-        }
-        file_cnt++;
-        size_cnt += s.st_size;
-        if(ftype == FTW_F) {
-                copy_file(infname, outfname, mode, uid, gid);
-        }
-        else if (ftype == FTW_D) {
-                mkdir_attr(outfname, mode, uid, gid);
-        }
-        else if (ftype == FTW_SL) {
-                copy_link(infname, outfname, mode, uid, gid);
-        }
-        return(0);
-}
-static char *check(const char *src) {
-        struct stat s;
-        char *rsrc = realpath(src, NULL);
-        if (!rsrc || stat(rsrc, &s) == -1)
-                goto errexit;
-        // on systems with systemd-resolved installed /etc/resolve.conf is a symlink to
-        //    /run/systemd/resolve/resolv.conf; this file is owned by systemd-resolve user
-        // checking gid will fail for files with a larger group such as /usr/bin/mutt_dotlock
-        uid_t user = getuid();
-        if (user == 0 && strncmp(rsrc, "/run/systemd/resolve/", 21) == 0) {
-                // check user systemd-resolve
-                struct passwd *p = getpwnam("systemd-resolve");
-                if (!p)
-                        goto errexit;
-                if (s.st_uid != user && s.st_uid != p->pw_uid)
-                        goto errexit;
-        }
-        else {
-                if (s.st_uid != user)
-                        goto errexit;
-        }
-        // dir, link, regular file
-        if (S_ISDIR(s.st_mode) || S_ISREG(s.st_mode) || S_ISLNK(s.st_mode))
-                return rsrc;                      // normal exit from the function
-errexit:
-        fprintf(stderr, "Error fcopy: invalid file %s\n", src);
-        exit(1);
-}
-static void duplicate_dir(const char *src, const char *dest, struct stat *s) {
-        (void) s;
-        char *rsrc = check(src);
-        char *rdest = check(dest);
-        inpath = rsrc;
-        outpath = rdest;
-        // walk
-        if(nftw(rsrc, fs_copydir, 1, FTW_PHYS) != 0) {
-                fprintf(stderr, "Error: unable to copy file\n");
-                exit(1);
-        }
-        free(rsrc);
-        free(rdest);
-}
-static void duplicate_file(const char *src, const char *dest, struct stat *s) {
-        char *rsrc = check(src);
-        char *rdest = check(dest);
-        uid_t uid = s->st_uid;
-        gid_t gid = s->st_gid;
-        mode_t mode = s->st_mode;
-        // build destination file name
-        char *name;
-        char *ptr = (arg_follow_link)? strrchr(src, '/'): strrchr(rsrc, '/');
-        ptr++;
-        if (asprintf(&name, "%s/%s", rdest, ptr) == -1)
-                errExit("asprintf");
-        // copy
-        copy_file(rsrc, name, mode, uid, gid);
-        free(name);
-        free(rsrc);
-        free(rdest);
-}
-static void duplicate_link(const char *src, const char *dest, struct stat *s) {
-        char *rsrc = check(src);                  // we drop the result and use the original name
-        char *rdest = check(dest);
-        uid_t uid = s->st_uid;
-        gid_t gid = s->st_gid;
-        mode_t mode = s->st_mode;
-        // build destination file name
-        char *name;
-        //     char *ptr = strrchr(rsrc, '/');
-        char *ptr = strrchr(src, '/');
-        ptr++;
-        if (asprintf(&name, "%s/%s", rdest, ptr) == -1)
-                errExit("asprintf");
-        // copy
-        copy_link(rsrc, name, mode, uid, gid);
-        free(name);
-        free(rsrc);
-        free(rdest);
-}
-static void usage(void) {
-        fputs("Usage: fcopy [--follow-link] src dest\n"
-                "\n"
-                "Copy SRC to DEST/SRC. SRC may be a file, directory, or symbolic link.\n"
-                "If SRC is a directory it is copied recursively.  If it is a symlink,\n"
-                "the link itself is duplicated, unless --follow-link is given,\n"
-                "in which case the destination of the link is copied.\n"
-                "DEST must already exist and must be a directory.\n", stderr);
-}
-int main(int argc, char **argv) {
-#if 0
-        {
-                //system("cat /proc/self/status");
-                int i;
-                for (i = 0; i < argc; i++)
-                        printf("*%s* ", argv[i]);
-                printf("\n");
-        }
-#endif
-        char *quiet = getenv("FIREJAIL_QUIET");
-        if (quiet && strcmp(quiet, "yes") == 0)
-                arg_quiet = 1;
-        char *src;
-        char *dest;
-        if (argc == 3) {
-                src = argv[1];
-                dest = argv[2];
-                arg_follow_link = 0;
-        }
-        else if (argc == 4 && !strcmp(argv[1], "--follow-link")) {
-                src = argv[2];
-                dest = argv[3];
-                arg_follow_link = 1;
-        }
-        else {
-                fprintf(stderr, "Error: arguments missing\n");
-                usage();
-                exit(1);
-        }
-        // trim trailing chars
-        if (src[strlen(src) - 1] == '/')
-                src[strlen(src) - 1] = '\0';
-        if (dest[strlen(dest) - 1] == '/')
-                dest[strlen(dest) - 1] = '\0';
-        // check the two files; remove ending /
-        int len = strlen(src);
-        if (src[len - 1] == '/')
-                src[len - 1] = '\0';
-        if (strcspn(src, "\\*&!?\"'<>%^(){}[];,") != (size_t)len) {
-                fprintf(stderr, "Error fcopy: invalid source file name %s\n", src);
-                exit(1);
-        }
-        len = strlen(dest);
-        if (dest[len - 1] == '/')
-                dest[len - 1] = '\0';
-        if (strcspn(dest, "\\*&!?\"'<>%^(){}[];,~") != (size_t)len) {
-                fprintf(stderr, "Error fcopy: invalid dest file name %s\n", dest);
-                exit(1);
-        }
-        // the destination should be a directory;
-        struct stat s;
-        if (stat(dest, &s) == -1) {
-                fprintf(stderr, "Error fcopy: dest dir %s: %s\n", dest, strerror(errno));
-                exit(1);
-        }
-        if (!S_ISDIR(s.st_mode)) {
-                fprintf(stderr, "Error fcopy: dest %s is not a directory\n", dest);
-                exit(1);
-        }
-        // copy files
-        if ((arg_follow_link ? stat : lstat)(src, &s) == -1) {
-                fprintf(stderr, "Error fcopy: src %s: %s\n", src, strerror(errno));
-                exit(1);
-        }
-        if (S_ISDIR(s.st_mode))
-                duplicate_dir(src, dest, &s);
-        else if (S_ISREG(s.st_mode))
-                duplicate_file(src, dest, &s);
-        else if (S_ISLNK(s.st_mode))
-                duplicate_link(src, dest, &s);
-        else {
-                fprintf(stderr, "Error fcopy: src %s is an unsupported type of file\n", src);
-                exit(1);
-        }
-        return 0;
-}
diff --git a/src/fgit/fgit-install.sh b/src/fgit/fgit-install.sh
deleted file mode 100755
index 1f710c688..000000000
--- a/src/fgit/fgit-install.sh
+++ /dev/null
@@ -1,20 +0,0 @@
-#!/bin/sh
-# Purpose: Fetch, compile, and install firejail from GitHub source. Package-manager agnostic.
-#
-set -e          # exit immediately if one of the commands fails
-cd /tmp         # by the time we start this, we should have a tmpfs mounted on top of /tmp
-git clone --depth=1 https://www.github.com/netblue30/firejail.git
-cd firejail
-./configure --enable-git-install
-make
-sudo make install-strip
-echo "**********************************************************************"
-echo "Mainline git Firejail version was installed in /usr/local."
-echo "If you want to remove it, run"
-echo
-echo "           firejail --git-uninstall"
-echo
-echo "**********************************************************************"
-cd ..
-rm -rf firejail
diff --git a/src/fgit/fgit-uninstall.sh b/src/fgit/fgit-uninstall.sh
deleted file mode 100644
index bc7cc9563..000000000
--- a/src/fgit/fgit-uninstall.sh
+++ /dev/null
@@ -1,16 +0,0 @@
-#!/bin/sh
-# Purpose: Fetch, compile, and install firejail from GitHub source. Package-manager agnostic.
-#
-set -e          # exit immediately if one of the commands fails
-cd /tmp         # by the time we start this, we should have a tmpfs mounted on top of /tmp
-git clone --depth=1 https://www.github.com/netblue30/firejail.git
-cd firejail
-./configure --enable-git-install
-sudo make uninstall
-echo "**********************************************************************"
-echo "Firejail mainline git version uninstalled from /usr/local"
-echo
-echo "**********************************************************************"
-cd ..
-rm -rf firejail
diff --git a/src/firejail/main.c b/src/firejail/main.c
index 04e057e28..891e73eda 100644
--- a/src/firejail/main.c
+++ b/src/firejail/main.c
@@ -1212,6 +1212,7 @@ int main(int argc, char **argv) {
                        arg_trace = 1;
                else if (strcmp(argv[i], "--tracelog") == 0)
                        arg_tracelog = 1;
+#ifndef LTS
                else if (strncmp(argv[i], "--rlimit-cpu=", 13) == 0) {
                        check_unsigned(argv[i] + 13, "Error: invalid rlimit");
                        sscanf(argv[i] + 13, "%llu", &cfg.rlimit_cpu);
@@ -1242,6 +1243,7 @@ int main(int argc, char **argv) {
                        sscanf(argv[i] + 12, "%llu", &cfg.rlimit_as);
                        arg_rlimit_as = 1;
                }
+#endif
                else if (strncmp(argv[i], "--ipc-namespace", 15) == 0)
                        arg_ipc = 1;
                else if (strncmp(argv[i], "--cpu=", 6) == 0)
diff --git a/src/firejail/profile.c b/src/firejail/profile.c
index 057e3582f..ab27c29a8 100644
--- a/src/firejail/profile.c
+++ b/src/firejail/profile.c
@@ -1077,6 +1077,7 @@ int profile_check_line(char *ptr, int lineno, const char *fname) {
                return 0;
        }
+#ifndef LTS
        // rlimit
        if (strncmp(ptr, "rlimit", 6) == 0) {
                if (strncmp(ptr, "rlimit-nofile ", 14) == 0) {
@@ -1116,6 +1117,7 @@ int profile_check_line(char *ptr, int lineno, const char *fname) {
                return 0;
        }
+#endif
        if (strncmp(ptr, "timeout ", 8) == 0) {
                cfg.timeout = extract_timeout(ptr +8);
@@ -1186,13 +1188,14 @@ int profile_check_line(char *ptr, int lineno, const char *fname) {
                ptr += 6;
        }
        else {
-                if (lineno == 0)
+                if (lineno == 0) {
                        fprintf(stderr, "Error: \"%s\" as a command line option is invalid\n", ptr);
-                else if (fname != NULL)
+                        exit(1);
-                        fprintf(stderr, "Error: line %d in %s is invalid\n", lineno, fname);
+                }
-                else
+                else {
-                        fprintf(stderr, "Error: line %d in the custom profile is invalid\n", lineno);
+                        fwarning("\"%s\" is not supported in LTS build\n", ptr);
-                exit(1);
+                        return 0;
+                }
        }
        // some characters just don't belong in filenames
diff --git a/src/firejail/rlimit.c b/src/firejail/rlimit.c
deleted file mode 100644
index e9d459ac2..000000000
--- a/src/firejail/rlimit.c
+++ /dev/null
@@ -1,98 +0,0 @@
-/*
- * Copyright (C) 2014-2018 Firejail Authors
- *
- * This file is part of firejail project
- *
- * This program is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License as published by
- * the Free Software Foundation; either version 2 of the License, or
- * (at your option) any later version.
- *
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
- * GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License along
- * with this program; if not, write to the Free Software Foundation, Inc.,
- * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
-*/
-#include "firejail.h"
-#include <sys/time.h>
-#include <sys/resource.h>
-void set_rlimits(void) {
-        // resource limits
-        struct rlimit rl;
-        if (arg_rlimit_cpu) {
-                rl.rlim_cur = (rlim_t) cfg.rlimit_cpu;
-                rl.rlim_max = (rlim_t) cfg.rlimit_cpu;
-#ifdef HAVE_GCOV
-                __gcov_dump();
-#endif
-                if (setrlimit(RLIMIT_CPU, &rl) == -1)
-                        errExit("setrlimit");
-                if (arg_debug)
-                        printf("Config rlimit: max cpu time %llu\n", cfg.rlimit_cpu);
-        }
-        if (arg_rlimit_nofile) {
-                rl.rlim_cur = (rlim_t) cfg.rlimit_nofile;
-                rl.rlim_max = (rlim_t) cfg.rlimit_nofile;
-#ifdef HAVE_GCOV        // gcov-instrumented programs might crash at this point
-                __gcov_dump();
-#endif
-                if (setrlimit(RLIMIT_NOFILE, &rl) == -1)
-                        errExit("setrlimit");
-                if (arg_debug)
-                        printf("Config rlimit: number of open file descriptors %llu\n", cfg.rlimit_nofile);
-        }
-        if (arg_rlimit_nproc) {
-                rl.rlim_cur = (rlim_t) cfg.rlimit_nproc;
-                rl.rlim_max = (rlim_t) cfg.rlimit_nproc;
-#ifdef HAVE_GCOV
-                __gcov_dump();
-#endif
-                if (setrlimit(RLIMIT_NPROC, &rl) == -1)
-                        errExit("setrlimit");
-                if (arg_debug)
-                        printf("Config rlimit: number of processes %llu\n", cfg.rlimit_nproc);
-        }
-        if (arg_rlimit_fsize) {
-                rl.rlim_cur = (rlim_t) cfg.rlimit_fsize;
-                rl.rlim_max = (rlim_t) cfg.rlimit_fsize;
-#ifdef HAVE_GCOV
-                __gcov_dump();
-#endif
-                if (setrlimit(RLIMIT_FSIZE, &rl) == -1)
-                        errExit("setrlimit");
-                if (arg_debug)
-                        printf("Config rlimit: maximum file size %llu\n", cfg.rlimit_fsize);
-        }
-        if (arg_rlimit_sigpending) {
-                rl.rlim_cur = (rlim_t) cfg.rlimit_sigpending;
-                rl.rlim_max = (rlim_t) cfg.rlimit_sigpending;
-#ifdef HAVE_GCOV
-                __gcov_dump();
-#endif
-                if (setrlimit(RLIMIT_SIGPENDING, &rl) == -1)
-                        errExit("setrlimit");
-                if (arg_debug)
-                        printf("Config rlimit: maximum number of signals pending %llu\n", cfg.rlimit_sigpending);
-        }
-        if (arg_rlimit_as) {
-                rl.rlim_cur = (rlim_t) cfg.rlimit_as;
-                rl.rlim_max = (rlim_t) cfg.rlimit_as;
-#ifdef HAVE_GCOV
-                __gcov_dump();
-#endif
-                if (setrlimit(RLIMIT_AS, &rl) == -1)
-                        errExit("setrlimit");
-                if (arg_debug)
-                        printf("Config rlimit: maximum virtual memory %llu\n", cfg.rlimit_as);
-        }
-}
diff --git a/src/firejail/sandbox.c b/src/firejail/sandbox.c
index 24daedeaa..2335e9ed2 100644
--- a/src/firejail/sandbox.c
+++ b/src/firejail/sandbox.c
@@ -1023,9 +1023,6 @@ int sandbox(void* sandbox_arg) {
        // set capabilities
        set_caps();
-        // set rlimits
-        set_rlimits();
        // set cpu affinity
        if (cfg.cpus) {
                save_cpu(); // save cpu affinity mask to CPU_CFG file
author	netblue30 <netblue30@yahoo.com>	2018-07-27 20:48:21 -0400
committer	netblue30 <netblue30@yahoo.com>	2018-07-27 20:48:21 -0400
commit	e40e088836289e2e6f18215922943fa241e0cfa8 (patch)
tree	28b01400a2c2933d7e15ba223862e34ebae7c056 /src
parent	phase1 (diff)
download	firejail-e40e088836289e2e6f18215922943fa241e0cfa8.tar.gz firejail-e40e088836289e2e6f18215922943fa241e0cfa8.tar.zst firejail-e40e088836289e2e6f18215922943fa241e0cfa8.zip

diff --git a/src/fcopy/Makefile.in b/src/fcopy/Makefile.in deleted file mode 100644 index c9e7d87ab..000000000 --- a/src/fcopy/Makefile.in +++ /dev/null
@@ -1,14 +0,0 @@
1	all: fcopy
2
3	include ../common.mk
4
5	%.o : %.c $(H_FILE_LIST) ../include/common.h ../include/syscall.h
6	$(CC) $(CFLAGS) $(EXTRA_CFLAGS) $(INCLUDE) -c $< -o $@
7
8	fcopy: $(OBJS)
9	$(CC) $(LDFLAGS) -o $@ $(OBJS) $(LIBS) $(EXTRA_LDFLAGS)
10
11	clean:; rm -f .o fcopy .gcov .gcda .gcno
12
13	distclean: clean
14	rm -fr Makefile


diff --git a/src/fcopy/main.c b/src/fcopy/main.c deleted file mode 100644 index e93cd1cb8..000000000 --- a/src/fcopy/main.c +++ /dev/null
@@ -1,405 +0,0 @@
1	/*
2	* Copyright (C) 2014-2018 Firejail Authors
3	*
4	* This file is part of firejail project
5	*
6	* This program is free software; you can redistribute it and/or modify
7	* it under the terms of the GNU General Public License as published by
8	* the Free Software Foundation; either version 2 of the License, or
9	* (at your option) any later version.
10	*
11	* This program is distributed in the hope that it will be useful,
12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14	* GNU General Public License for more details.
15	*
16	* You should have received a copy of the GNU General Public License along
17	* with this program; if not, write to the Free Software Foundation, Inc.,
18	* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
19	*/
20
21	#include "../include/common.h"
22	#include <fcntl.h>
23	#include <ftw.h>
24	#include <errno.h>
25	#include <pwd.h>
26
27	int arg_quiet = 0;
28	static int arg_follow_link = 0;
29
30	#define COPY_LIMIT (500 * 1024 *1024)
31	static int size_limit_reached = 0;
32	static unsigned file_cnt = 0;
33	static unsigned size_cnt = 0;
34
35	static char *outpath = NULL;
36	static char *inpath = NULL;
37
38	// modified version of the function from util.c
39	static void copy_file(const char srcname, const char destname, mode_t mode, uid_t uid, gid_t gid) {
40	assert(srcname);
41	assert(destname);
42	mode &= 07777;
43
44	// don't copy the file if it is already there
45	struct stat s;
46	if (stat(destname, &s) == 0)
47	return;
48
49	// open source
50	int src = open(srcname, O_RDONLY);
51	if (src < 0) {
52	if (!arg_quiet)
53	fprintf(stderr, "Warning fcopy: cannot open %s, file not copied\n", srcname);
54	return;
55	}
56
57	// open destination
58	int dst = open(destname, O_CREAT\|O_WRONLY\|O_TRUNC, 0755);
59	if (dst < 0) {
60	if (!arg_quiet)
61	fprintf(stderr, "Warning fcopy: cannot open %s, file not copied\n", destname);
62	close(src);
63	return;
64	}
65
66	// copy
67	ssize_t len;
68	static const int BUFLEN = 1024;
69	unsigned char buf[BUFLEN];
70	while ((len = read(src, buf, BUFLEN)) > 0) {
71	int done = 0;
72	while (done != len) {
73	int rv = write(dst, buf + done, len - done);
74	if (rv == -1)
75	goto errexit;
76	done += rv;
77	}
78	}
79	fflush(0);
80
81	if (fchown(dst, uid, gid) == -1)
82	goto errexit;
83	if (fchmod(dst, mode) == -1)
84	goto errexit;
85
86	close(src);
87	close(dst);
88
89	return;
90
91	errexit:
92	close(src);
93	close(dst);
94	unlink(destname);
95	if (!arg_quiet)
96	fprintf(stderr, "Warning fcopy: cannot copy %s\n", destname);
97	}
98
99
100	// modified version of the function in firejail/util.c
101	static void mkdir_attr(const char *fname, mode_t mode, uid_t uid, gid_t gid) {
102	assert(fname);
103	mode &= 07777;
104
105	if (mkdir(fname, mode) == -1 \|\|
106	chmod(fname, mode) == -1) {
107	fprintf(stderr, "Error fcopy: failed to create %s directory\n", fname);
108	errExit("mkdir/chmod");
109	}
110	if (chown(fname, uid, gid)) {
111	if (!arg_quiet)
112	fprintf(stderr, "Warning fcopy: failed to change ownership of %s\n", fname);
113	}
114	}
115
116
117	void copy_link(const char target, const char linkpath, mode_t mode, uid_t uid, gid_t gid) {
118	(void) mode;
119	(void) uid;
120	(void) gid;
121
122	// if the link is already there, don't create it
123	struct stat s;
124	if (stat(linkpath, &s) == 0)
125	return;
126
127	char *rp = realpath(target, NULL);
128	if (rp) {
129	if (symlink(rp, linkpath) == -1) {
130	free(rp);
131	goto errout;
132	}
133	free(rp);
134	}
135	else
136	goto errout;
137
138	return;
139	errout:
140	if (!arg_quiet)
141	fprintf(stderr, "Warning fcopy: cannot create symbolic link %s\n", target);
142	}
143
144
145
146	static int first = 1;
147	static int fs_copydir(const char infname, const struct stat st, int ftype, struct FTW *sftw) {
148	(void) st;
149	(void) sftw;
150	assert(infname);
151	assert(*infname != '\0');
152	assert(outpath);
153	assert(*outpath != '\0');
154	assert(inpath);
155
156	// check size limit
157	if (size_limit_reached)
158	return 0;
159
160	char *outfname;
161	if (asprintf(&outfname, "%s%s", outpath, infname + strlen(inpath)) == -1)
162	errExit("asprintf");
163
164	// don't copy it if we already have the file
165	struct stat s;
166	if (stat(outfname, &s) == 0) {
167	if (first)
168	first = 0;
169	else if (!arg_quiet)
170	fprintf(stderr, "Warning fcopy: skipping %s, file already present\n", infname);
171	free(outfname);
172	return 0;
173	}
174
175	// extract mode and ownership
176	if (stat(infname, &s) != 0) {
177	if (!arg_quiet)
178	fprintf(stderr, "Warning fcopy: skipping %s, cannot find inode\n", infname);
179	free(outfname);
180	return 0;
181	}
182	uid_t uid = s.st_uid;
183	gid_t gid = s.st_gid;
184	mode_t mode = s.st_mode;
185
186	// recalculate size
187	if ((s.st_size + size_cnt) > COPY_LIMIT) {
188	fprintf(stderr, "Error fcopy: size limit of %dMB reached\n", (COPY_LIMIT / 1024) / 1024);
189	size_limit_reached = 1;
190	free(outfname);
191	return 0;
192	}
193
194	file_cnt++;
195	size_cnt += s.st_size;
196
197	if(ftype == FTW_F) {
198	copy_file(infname, outfname, mode, uid, gid);
199	}
200	else if (ftype == FTW_D) {
201	mkdir_attr(outfname, mode, uid, gid);
202	}
203	else if (ftype == FTW_SL) {
204	copy_link(infname, outfname, mode, uid, gid);
205	}
206
207	return(0);
208	}
209
210
211	static char check(const char src) {
212	struct stat s;
213	char *rsrc = realpath(src, NULL);
214	if (!rsrc \|\| stat(rsrc, &s) == -1)
215	goto errexit;
216
217	// on systems with systemd-resolved installed /etc/resolve.conf is a symlink to
218	// /run/systemd/resolve/resolv.conf; this file is owned by systemd-resolve user
219	// checking gid will fail for files with a larger group such as /usr/bin/mutt_dotlock
220	uid_t user = getuid();
221	if (user == 0 && strncmp(rsrc, "/run/systemd/resolve/", 21) == 0) {
222	// check user systemd-resolve
223	struct passwd *p = getpwnam("systemd-resolve");
224	if (!p)
225	goto errexit;
226	if (s.st_uid != user && s.st_uid != p->pw_uid)
227	goto errexit;
228	}
229	else {
230	if (s.st_uid != user)
231	goto errexit;
232	}
233
234	// dir, link, regular file
235	if (S_ISDIR(s.st_mode) \|\| S_ISREG(s.st_mode) \|\| S_ISLNK(s.st_mode))
236	return rsrc; // normal exit from the function
237
238	errexit:
239	fprintf(stderr, "Error fcopy: invalid file %s\n", src);
240	exit(1);
241	}
242
243
244	static void duplicate_dir(const char src, const char dest, struct stat *s) {
245	(void) s;
246	char *rsrc = check(src);
247	char *rdest = check(dest);
248	inpath = rsrc;
249	outpath = rdest;
250
251	// walk
252	if(nftw(rsrc, fs_copydir, 1, FTW_PHYS) != 0) {
253	fprintf(stderr, "Error: unable to copy file\n");
254	exit(1);
255	}
256
257	free(rsrc);
258	free(rdest);
259	}
260
261
262	static void duplicate_file(const char src, const char dest, struct stat *s) {
263	char *rsrc = check(src);
264	char *rdest = check(dest);
265	uid_t uid = s->st_uid;
266	gid_t gid = s->st_gid;
267	mode_t mode = s->st_mode;
268
269	// build destination file name
270	char *name;
271	char *ptr = (arg_follow_link)? strrchr(src, '/'): strrchr(rsrc, '/');
272	ptr++;
273	if (asprintf(&name, "%s/%s", rdest, ptr) == -1)
274	errExit("asprintf");
275
276	// copy
277	copy_file(rsrc, name, mode, uid, gid);
278
279	free(name);
280	free(rsrc);
281	free(rdest);
282	}
283
284
285	static void duplicate_link(const char src, const char dest, struct stat *s) {
286	char *rsrc = check(src); // we drop the result and use the original name
287	char *rdest = check(dest);
288	uid_t uid = s->st_uid;
289	gid_t gid = s->st_gid;
290	mode_t mode = s->st_mode;
291
292	// build destination file name
293	char *name;
294	// char *ptr = strrchr(rsrc, '/');
295	char *ptr = strrchr(src, '/');
296	ptr++;
297	if (asprintf(&name, "%s/%s", rdest, ptr) == -1)
298	errExit("asprintf");
299
300	// copy
301	copy_link(rsrc, name, mode, uid, gid);
302
303	free(name);
304	free(rsrc);
305	free(rdest);
306	}
307
308
309	static void usage(void) {
310	fputs("Usage: fcopy [--follow-link] src dest\n"
311	"\n"
312	"Copy SRC to DEST/SRC. SRC may be a file, directory, or symbolic link.\n"
313	"If SRC is a directory it is copied recursively. If it is a symlink,\n"
314	"the link itself is duplicated, unless --follow-link is given,\n"
315	"in which case the destination of the link is copied.\n"
316	"DEST must already exist and must be a directory.\n", stderr);
317	}
318
319
320	int main(int argc, char **argv) {
321	#if 0
322	{
323	//system("cat /proc/self/status");
324	int i;
325	for (i = 0; i < argc; i++)
326	printf("%s ", argv[i]);
327	printf("\n");
328	}
329	#endif
330	char *quiet = getenv("FIREJAIL_QUIET");
331	if (quiet && strcmp(quiet, "yes") == 0)
332	arg_quiet = 1;
333
334	char *src;
335	char *dest;
336
337	if (argc == 3) {
338	src = argv[1];
339	dest = argv[2];
340	arg_follow_link = 0;
341	}
342	else if (argc == 4 && !strcmp(argv[1], "--follow-link")) {
343	src = argv[2];
344	dest = argv[3];
345	arg_follow_link = 1;
346	}
347	else {
348	fprintf(stderr, "Error: arguments missing\n");
349	usage();
350	exit(1);
351	}
352
353	// trim trailing chars
354	if (src[strlen(src) - 1] == '/')
355	src[strlen(src) - 1] = '\0';
356	if (dest[strlen(dest) - 1] == '/')
357	dest[strlen(dest) - 1] = '\0';
358
359	// check the two files; remove ending /
360	int len = strlen(src);
361	if (src[len - 1] == '/')
362	src[len - 1] = '\0';
363	if (strcspn(src, "\\*&!?\"'<>%^(){}[];,") != (size_t)len) {
364	fprintf(stderr, "Error fcopy: invalid source file name %s\n", src);
365	exit(1);
366	}
367
368	len = strlen(dest);
369	if (dest[len - 1] == '/')
370	dest[len - 1] = '\0';
371	if (strcspn(dest, "\\*&!?\"'<>%^(){}[];,~") != (size_t)len) {
372	fprintf(stderr, "Error fcopy: invalid dest file name %s\n", dest);
373	exit(1);
374	}
375
376	// the destination should be a directory;
377	struct stat s;
378	if (stat(dest, &s) == -1) {
379	fprintf(stderr, "Error fcopy: dest dir %s: %s\n", dest, strerror(errno));
380	exit(1);
381	}
382	if (!S_ISDIR(s.st_mode)) {
383	fprintf(stderr, "Error fcopy: dest %s is not a directory\n", dest);
384	exit(1);
385	}
386
387	// copy files
388	if ((arg_follow_link ? stat : lstat)(src, &s) == -1) {
389	fprintf(stderr, "Error fcopy: src %s: %s\n", src, strerror(errno));
390	exit(1);
391	}
392
393	if (S_ISDIR(s.st_mode))
394	duplicate_dir(src, dest, &s);
395	else if (S_ISREG(s.st_mode))
396	duplicate_file(src, dest, &s);
397	else if (S_ISLNK(s.st_mode))
398	duplicate_link(src, dest, &s);
399	else {
400	fprintf(stderr, "Error fcopy: src %s is an unsupported type of file\n", src);
401	exit(1);
402	}
403
404	return 0;
405	}


diff --git a/src/fgit/fgit-install.sh b/src/fgit/fgit-install.sh deleted file mode 100755 index 1f710c688..000000000 --- a/src/fgit/fgit-install.sh +++ /dev/null
@@ -1,20 +0,0 @@
1	#!/bin/sh
2	# Purpose: Fetch, compile, and install firejail from GitHub source. Package-manager agnostic.
3	#
4
5	set -e # exit immediately if one of the commands fails
6	cd /tmp # by the time we start this, we should have a tmpfs mounted on top of /tmp
7	git clone --depth=1 https://www.github.com/netblue30/firejail.git
8	cd firejail
9	./configure --enable-git-install
10	make
11	sudo make install-strip
12	echo "**********************************************************************"
13	echo "Mainline git Firejail version was installed in /usr/local."
14	echo "If you want to remove it, run"
15	echo
16	echo " firejail --git-uninstall"
17	echo
18	echo "**********************************************************************"
19	cd ..
20	rm -rf firejail


diff --git a/src/fgit/fgit-uninstall.sh b/src/fgit/fgit-uninstall.sh deleted file mode 100644 index bc7cc9563..000000000 --- a/src/fgit/fgit-uninstall.sh +++ /dev/null
@@ -1,16 +0,0 @@
1	#!/bin/sh
2	# Purpose: Fetch, compile, and install firejail from GitHub source. Package-manager agnostic.
3	#
4
5	set -e # exit immediately if one of the commands fails
6	cd /tmp # by the time we start this, we should have a tmpfs mounted on top of /tmp
7	git clone --depth=1 https://www.github.com/netblue30/firejail.git
8	cd firejail
9	./configure --enable-git-install
10	sudo make uninstall
11	echo "**********************************************************************"
12	echo "Firejail mainline git version uninstalled from /usr/local"
13	echo
14	echo "**********************************************************************"
15	cd ..
16	rm -rf firejail


diff --git a/src/firejail/main.c b/src/firejail/main.c index 04e057e28..891e73eda 100644 --- a/src/firejail/main.c +++ b/src/firejail/main.c
@@ -1212,6 +1212,7 @@ int main(int argc, char **argv) {
1212	arg_trace = 1;	1212	arg_trace = 1;
1213	else if (strcmp(argv[i], "--tracelog") == 0)	1213	else if (strcmp(argv[i], "--tracelog") == 0)
1214	arg_tracelog = 1;	1214	arg_tracelog = 1;
		1215	#ifndef LTS
1215	else if (strncmp(argv[i], "--rlimit-cpu=", 13) == 0) {	1216	else if (strncmp(argv[i], "--rlimit-cpu=", 13) == 0) {
1216	check_unsigned(argv[i] + 13, "Error: invalid rlimit");	1217	check_unsigned(argv[i] + 13, "Error: invalid rlimit");
1217	sscanf(argv[i] + 13, "%llu", &cfg.rlimit_cpu);	1218	sscanf(argv[i] + 13, "%llu", &cfg.rlimit_cpu);
@@ -1242,6 +1243,7 @@ int main(int argc, char **argv) {
1242	sscanf(argv[i] + 12, "%llu", &cfg.rlimit_as);	1243	sscanf(argv[i] + 12, "%llu", &cfg.rlimit_as);
1243	arg_rlimit_as = 1;	1244	arg_rlimit_as = 1;
1244	}	1245	}
		1246	#endif
1245	else if (strncmp(argv[i], "--ipc-namespace", 15) == 0)	1247	else if (strncmp(argv[i], "--ipc-namespace", 15) == 0)
1246	arg_ipc = 1;	1248	arg_ipc = 1;
1247	else if (strncmp(argv[i], "--cpu=", 6) == 0)	1249	else if (strncmp(argv[i], "--cpu=", 6) == 0)


diff --git a/src/firejail/profile.c b/src/firejail/profile.c index 057e3582f..ab27c29a8 100644 --- a/src/firejail/profile.c +++ b/src/firejail/profile.c
@@ -1077,6 +1077,7 @@ int profile_check_line(char ptr, int lineno, const char fname) {
1077	return 0;	1077	return 0;
1078	}	1078	}
1079		1079
		1080	#ifndef LTS
1080	// rlimit	1081	// rlimit
1081	if (strncmp(ptr, "rlimit", 6) == 0) {	1082	if (strncmp(ptr, "rlimit", 6) == 0) {
1082	if (strncmp(ptr, "rlimit-nofile ", 14) == 0) {	1083	if (strncmp(ptr, "rlimit-nofile ", 14) == 0) {
@@ -1116,6 +1117,7 @@ int profile_check_line(char ptr, int lineno, const char fname) {
1116		1117
1117	return 0;	1118	return 0;
1118	}	1119	}
		1120	#endif
1119		1121
1120	if (strncmp(ptr, "timeout ", 8) == 0) {	1122	if (strncmp(ptr, "timeout ", 8) == 0) {
1121	cfg.timeout = extract_timeout(ptr +8);	1123	cfg.timeout = extract_timeout(ptr +8);
@@ -1186,13 +1188,14 @@ int profile_check_line(char ptr, int lineno, const char fname) {
1186	ptr += 6;	1188	ptr += 6;
1187	}	1189	}
1188	else {	1190	else {
1189	if (lineno == 0)	1191	if (lineno == 0) {
1190	fprintf(stderr, "Error: \"%s\" as a command line option is invalid\n", ptr);	1192	fprintf(stderr, "Error: \"%s\" as a command line option is invalid\n", ptr);
1191	else if (fname != NULL)	1193	exit(1);
1192	fprintf(stderr, "Error: line %d in %s is invalid\n", lineno, fname);	1194	}
1193	else	1195	else {
1194	fprintf(stderr, "Error: line %d in the custom profile is invalid\n", lineno);	1196	fwarning("\"%s\" is not supported in LTS build\n", ptr);
1195	exit(1);	1197	return 0;
		1198	}
1196	}	1199	}
1197		1200
1198	// some characters just don't belong in filenames	1201	// some characters just don't belong in filenames


diff --git a/src/firejail/rlimit.c b/src/firejail/rlimit.c deleted file mode 100644 index e9d459ac2..000000000 --- a/src/firejail/rlimit.c +++ /dev/null
@@ -1,98 +0,0 @@
1	/*
2	* Copyright (C) 2014-2018 Firejail Authors
3	*
4	* This file is part of firejail project
5	*
6	* This program is free software; you can redistribute it and/or modify
7	* it under the terms of the GNU General Public License as published by
8	* the Free Software Foundation; either version 2 of the License, or
9	* (at your option) any later version.
10	*
11	* This program is distributed in the hope that it will be useful,
12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14	* GNU General Public License for more details.
15	*
16	* You should have received a copy of the GNU General Public License along
17	* with this program; if not, write to the Free Software Foundation, Inc.,
18	* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
19	*/
20	#include "firejail.h"
21	#include <sys/time.h>
22	#include <sys/resource.h>
23
24	void set_rlimits(void) {
25	// resource limits
26	struct rlimit rl;
27	if (arg_rlimit_cpu) {
28	rl.rlim_cur = (rlim_t) cfg.rlimit_cpu;
29	rl.rlim_max = (rlim_t) cfg.rlimit_cpu;
30	#ifdef HAVE_GCOV
31	__gcov_dump();
32	#endif
33	if (setrlimit(RLIMIT_CPU, &rl) == -1)
34	errExit("setrlimit");
35	if (arg_debug)
36	printf("Config rlimit: max cpu time %llu\n", cfg.rlimit_cpu);
37	}
38
39	if (arg_rlimit_nofile) {
40	rl.rlim_cur = (rlim_t) cfg.rlimit_nofile;
41	rl.rlim_max = (rlim_t) cfg.rlimit_nofile;
42	#ifdef HAVE_GCOV // gcov-instrumented programs might crash at this point
43	__gcov_dump();
44	#endif
45	if (setrlimit(RLIMIT_NOFILE, &rl) == -1)
46	errExit("setrlimit");
47	if (arg_debug)
48	printf("Config rlimit: number of open file descriptors %llu\n", cfg.rlimit_nofile);
49	}
50
51	if (arg_rlimit_nproc) {
52	rl.rlim_cur = (rlim_t) cfg.rlimit_nproc;
53	rl.rlim_max = (rlim_t) cfg.rlimit_nproc;
54	#ifdef HAVE_GCOV
55	__gcov_dump();
56	#endif
57	if (setrlimit(RLIMIT_NPROC, &rl) == -1)
58	errExit("setrlimit");
59	if (arg_debug)
60	printf("Config rlimit: number of processes %llu\n", cfg.rlimit_nproc);
61	}
62
63	if (arg_rlimit_fsize) {
64	rl.rlim_cur = (rlim_t) cfg.rlimit_fsize;
65	rl.rlim_max = (rlim_t) cfg.rlimit_fsize;
66	#ifdef HAVE_GCOV
67	__gcov_dump();
68	#endif
69	if (setrlimit(RLIMIT_FSIZE, &rl) == -1)
70	errExit("setrlimit");
71	if (arg_debug)
72	printf("Config rlimit: maximum file size %llu\n", cfg.rlimit_fsize);
73	}
74
75	if (arg_rlimit_sigpending) {
76	rl.rlim_cur = (rlim_t) cfg.rlimit_sigpending;
77	rl.rlim_max = (rlim_t) cfg.rlimit_sigpending;
78	#ifdef HAVE_GCOV
79	__gcov_dump();
80	#endif
81	if (setrlimit(RLIMIT_SIGPENDING, &rl) == -1)
82	errExit("setrlimit");
83	if (arg_debug)
84	printf("Config rlimit: maximum number of signals pending %llu\n", cfg.rlimit_sigpending);
85	}
86
87	if (arg_rlimit_as) {
88	rl.rlim_cur = (rlim_t) cfg.rlimit_as;
89	rl.rlim_max = (rlim_t) cfg.rlimit_as;
90	#ifdef HAVE_GCOV
91	__gcov_dump();
92	#endif
93	if (setrlimit(RLIMIT_AS, &rl) == -1)
94	errExit("setrlimit");
95	if (arg_debug)
96	printf("Config rlimit: maximum virtual memory %llu\n", cfg.rlimit_as);
97	}
98	}


diff --git a/src/firejail/sandbox.c b/src/firejail/sandbox.c index 24daedeaa..2335e9ed2 100644 --- a/src/firejail/sandbox.c +++ b/src/firejail/sandbox.c
@@ -1023,9 +1023,6 @@ int sandbox(void* sandbox_arg) {
1023	// set capabilities	1023	// set capabilities
1024	set_caps();	1024	set_caps();
1025		1025
1026	// set rlimits
1027	set_rlimits();
1028
1029	// set cpu affinity	1026	// set cpu affinity
1030	if (cfg.cpus) {	1027	if (cfg.cpus) {
1031	save_cpu(); // save cpu affinity mask to CPU_CFG file	1028	save_cpu(); // save cpu affinity mask to CPU_CFG file