We use cookies to ensure you get the best experience on our website
Inicio Explorar Axuda
Rexistro Iniciar sesión
0ct0pu5
/
ladybird
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Explorar o código

Kernel: Ensure that an unveil node with no permission is never accepted

Otherwise nodes inheriting from root may still be accessed with
`access(..., F_OK)`.
Also adds a test case to TestKernelUnveil about this behaviour.
Ali Mohammad Pur %!s(int64=4) %!d(string=hai) anos
pai
8ce015742d
achega
90de1ded55
Modificáronse 2 ficheiros con 5 adicións e 1 borrados
Unificar vista Mostrar estatísticas de Diff
  1. 1 1
      Kernel/FileSystem/VirtualFileSystem.cpp
  2. 4 0
      Tests/Kernel/TestKernelUnveil.cpp

+ 1 - 1
Kernel/FileSystem/VirtualFileSystem.cpp
Ver ficheiro 

@@ -851,7 +851,7 @@ KResult VFS::validate_path_against_process_veil(StringView path, int options)
 
         return EINVAL;
 
         return EINVAL;
 
 
 
     auto* unveiled_path = find_matching_unveiled_path(path);
 
     auto* unveiled_path = find_matching_unveiled_path(path);
 
-    if (!unveiled_path) {
 
+    if (!unveiled_path || unveiled_path->permissions() == UnveilAccess::None) {
 
         dbgln("Rejecting path '{}' since it hasn't been unveiled.", path);
 
         dbgln("Rejecting path '{}' since it hasn't been unveiled.", path);
 
         dump_backtrace();
 
         dump_backtrace();
 
         return ENOENT;
 
         return ENOENT;

+ 4 - 0
Tests/Kernel/TestKernelUnveil.cpp
Ver ficheiro 

@@ -52,4 +52,8 @@ TEST_CASE(test_failures)
 
     res = unveil("/bin", "w");
 
     res = unveil("/bin", "w");
 
     if (res >= 0)
 
     if (res >= 0)
 
         FAIL("unveil permitted after unveil state locked");
 
         FAIL("unveil permitted after unveil state locked");
 
+
 
+    res = access("/bin/id", F_OK);
 
+    if (res == 0)
 
+        FAIL("access(..., F_OK) permitted after locked veil without relevant unveil");
 
 }
 
 }

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5