From 4438f14f2892b5c88d158ae8fad0a80a2eebfd44 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@protonmail.com>
Date: Mon, 5 Jul 2021 13:10:04 -0400
Subject: allow/deny fbuilder

---
 src/fbuilder/build_fs.c   | 8 ++++----
 src/fbuilder/build_home.c | 4 ++--
 2 files changed, 6 insertions(+), 6 deletions(-)

(limited to 'src')

diff --git a/src/fbuilder/build_fs.c b/src/fbuilder/build_fs.c
index 8700e0ba1..019c3ac5a 100644
--- a/src/fbuilder/build_fs.c
+++ b/src/fbuilder/build_fs.c
@@ -182,12 +182,12 @@ static void var_callback(char *ptr) {
 void build_var(const char *fname, FILE *fp) {
 	assert(fname);
 
-	var_skip = filedb_load_whitelist(var_skip, "whitelist-var-common.inc", "whitelist /var/");
+	var_skip = filedb_load_whitelist(var_skip, "whitelist-var-common.inc", "allow /var/");
 	process_files(fname, "/var", var_callback);
 
 	// always whitelist /var
 	if (var_out)
-		filedb_print(var_out, "whitelist /var/", fp);
+		filedb_print(var_out, "allow /var/", fp);
 	fprintf(fp, "include whitelist-var-common.inc\n");
 }
 
@@ -222,12 +222,12 @@ static void share_callback(char *ptr) {
 void build_share(const char *fname, FILE *fp) {
 	assert(fname);
 
-	share_skip = filedb_load_whitelist(share_skip, "whitelist-usr-share-common.inc", "whitelist /usr/share/");
+	share_skip = filedb_load_whitelist(share_skip, "whitelist-usr-share-common.inc", "allow /usr/share/");
 	process_files(fname, "/usr/share", share_callback);
 
 	// always whitelist /usr/share
 	if (share_out)
-		filedb_print(share_out, "whitelist /usr/share/", fp);
+		filedb_print(share_out, "allow /usr/share/", fp);
 	fprintf(fp, "include whitelist-usr-share-common.inc\n");
 }
 
diff --git a/src/fbuilder/build_home.c b/src/fbuilder/build_home.c
index b3ec6cffd..f283a0cce 100644
--- a/src/fbuilder/build_home.c
+++ b/src/fbuilder/build_home.c
@@ -138,7 +138,7 @@ void build_home(const char *fname, FILE *fp) {
 	assert(fname);
 
 	// load whitelist common
-	db_skip = filedb_load_whitelist(db_skip, "whitelist-common.inc", "whitelist ${HOME}/");
+	db_skip = filedb_load_whitelist(db_skip, "whitelist-common.inc", "allow ${HOME}/");
 
 	// find user home directory
 	struct passwd *pw = getpwuid(getuid());
@@ -166,7 +166,7 @@ void build_home(const char *fname, FILE *fp) {
 
 	// print the out list if any
 	if (db_out) {
-		filedb_print(db_out, "whitelist ${HOME}/", fp);
+		filedb_print(db_out, "allow ${HOME}/", fp);
 		fprintf(fp, "include whitelist-common.inc\n");
 	}
 	else
-- 
cgit v1.2.3-70-g09d2