3732524bfa
exile_init_policy(): Don't unshare network namespaces by default
...
This no longer works on some distros (e. g. Ubuntu 24.04) which
move (back) to restrict unprivileged user namespaces, and is
not required when Landlock is available, which is more and more
a given, thankfully.
2024-05-26 19:28:02 +02:00
4059c1a093
landlock_prepare_ruleset(): zero-init landlock structs
...
'landlock_ruleset_attr' used to only have a single member. Meanwhile,
depending on linux/headers version, others may be present. So zero-init
the struct, as otherwise we might get 'Invalid argument' return codes,
as those we do not explicitly initialize might contain garbage values.
2024-05-24 13:25:10 +02:00
44b9a17bec
Allow specifying uid/gid to map in user namespace
2022-12-27 13:25:12 +01:00
f662398ac3
test: test_launch_get(): Fix typo and remove redundant call
2022-12-27 13:14:39 +01:00
7b859d0aed
exile_launch_get(): Remove redundant seek
2022-12-26 18:36:17 +01:00
5cd0a36ced
test.sh: Fix regression causing status code to be lost
...
The changes in 01c5cbf701
2022-12-26 18:29:32 +01:00
618f223491
enter_namespaces(): Fix uid/gid mapping
...
This was not caught before because a test was missing, fprintf() without ferror()
didn't help, and calling code did not depend on uid maps so far.
Add tests.
2022-12-26 18:23:34 +01:00
01c5cbf701
test.sh: Make it more portable
2022-12-20 10:50:42 +01:00
769f729dc5
README.md: Update
2022-10-26 10:27:38 +02:00
40d23af355
concat_path(): Add missing free() calls
2022-10-23 19:54:21 +02:00
b5f83499f3
exile_append_syscall_policy(): Add missing free()
2022-10-23 19:52:56 +02:00
ff60ec227d
perform_mounts(): Fix potential leak and fix iteration
...
We would not free 'concat_path' in all potential paths.
Also, the iteration would not continue potentially.
This was case unlikely to be hit in practise.
2022-10-23 19:48:33 +02:00
e711a1d53a
exile_landlock_is_available(): Fix availability check
...
The check only assumed the existance of ABI version 1, which
is not the case any more.
Closes: https://github.com/quitesimpleorg/exile.h/issues/1
2022-08-16 23:07:49 +02:00
6628bf4fb7
README: Update and minor improvements
2022-08-16 23:07:42 +02:00
3fa73b0b97
Close file fds by default, introduce policy->keep_fds_open
...
The better default is to close them, not keeping them open.
Does not close sockets and pipes to not interfere with IPC.
Issue: #10
2022-07-17 13:00:02 +02:00
8f38dc4480
check_policy_sanity(): Allow vows and syscall policies
...
Adjust checks to allow a mixed mode between syscall policies and vows.
Check for some easy to make mistakes in such scenario.
2022-06-09 10:02:12 +02:00
42d44b0cc1
README.md: Minor improvements throughout the file
2022-06-06 14:07:37 +02:00
bd3641981c
Introduce EXILE_SYSCALL_DENY_RET_NOSYS for syscalls like clone3()
...
clone3() is used more and more, but we cannot filter it. We can either
allow it fully or return ENONYS. Some libraries perform fallbacks to the
older clone() in that case, which we can filter again.
2022-06-06 14:07:37 +02:00
bbbdfc44da
exile.hpp: do_clone(): free stack memory
2022-05-29 19:25:53 +02:00
2dc61828f1
README: Clarify limitations
2022-04-29 21:25:21 +02:00
cdc265cedf
c++: exile_launch(): Correct std::enable_if logic if type is a ptr
2022-04-29 21:23:53 +02:00
91858efa51
vows map: Add memfd_create, rseq
2022-04-22 08:37:34 +02:00
88995d214d
README.md: Minor improvements (typos, rephrasing)
2022-04-07 00:04:52 +02:00
6eb47daf84
README: Update Debian section
2022-03-28 19:25:55 +02:00
8bf87717a5
vows: ioctl: Make TIOCSTI illegal even when IOCTL vow is set
2022-03-28 19:14:02 +02:00
bcaefffbe8
Improve various error messages
2022-03-28 19:04:28 +02:00
ed5098f2c6
README: Begin demo section
2022-03-17 17:10:38 +01:00
ea66ef76eb
exile_flags_to_landlock(): Cover more with ALL_WRITE, except devices
...
More consistent with mount(), where MS_NODEV disallows those.
We may need to introduce a flag that simply allows everything
2022-03-17 15:47:22 +01:00
66def7a28f
append_syscall_to_bpf(): Check for unlikely case of too many sock_filters
2022-03-17 15:47:22 +01:00
dbf8e87440
exile.hpp: Mark do_clone inline, not static
2022-03-17 15:47:22 +01:00
98421fab90
Makefile: Build exile.o separately, link it in all tests
2022-03-17 15:47:22 +01:00
70c3fef500
exile.h: Retire static child_read/write_pipe vars
2022-03-17 15:47:22 +01:00
69829374c7
exile.h: Move definitions to new file exile.c
...
Especially with exile_launch(), we will be included
from more than one translation unit. Thus, ODR becomes
a headache now.
So move definitions to exile.c.
2022-03-17 15:47:22 +01:00
005851c645
exile.h: Add extern "C" guards
2022-03-17 15:47:22 +01:00
95fa11e928
c++: Add explicit exile_launch() std::basic_string variant
2022-03-17 15:47:22 +01:00
97e2025758
c++: Retire exile_launch_trivial(), use std::enable_if
2022-03-17 15:47:22 +01:00
8cfb73568a
Makefile: Add 'tests' target, depend on headers too to rebuild on changes of those
2022-03-17 15:47:22 +01:00
e7a5ba7f7f
test.sh: Also run C++ tests
2022-03-17 15:47:22 +01:00
e52eda186b
Add test.cpp to test C++ API
2022-03-17 15:47:22 +01:00
90ed5bbae9
Begin C++ API: Add exile.hpp with exile_launch() wrappers
2022-03-17 15:47:22 +01:00
48b6de9036
struct syscall_vow_map: change 'str' to const char*
2022-03-17 15:47:22 +01:00
93acb13929
test: Introduce LOG(), avoid inconsistent printf/fprintf
2022-03-17 15:47:22 +01:00
9247a6636b
Introduce exile_vows_from_str()
2022-03-17 15:47:22 +01:00
4a3ac8e0bc
exile_launch(): Improve handling/logging of errors
2022-01-16 21:46:11 +01:00
ed54575b89
exile_launch(): Open another pipe to also write to child
2022-01-16 21:46:11 +01:00
0caff45600
EXILE_LOG_ERROR: Prepend function name
2022-01-16 21:46:11 +01:00
080c0e53c2
test: test_mkpath(): Cleanup before run and on success
2022-01-16 21:46:11 +01:00
4adc13215b
exile_append_path_policies(): Add sentinel macro, making *policy() version redundant
2022-01-16 21:46:11 +01:00
bf29edf213
Update README with most recent draft
2022-01-16 21:46:11 +01:00
68bfd7e66c
Update copyright header
2022-01-16 21:46:11 +01:00
