Inconsistencies between Landlock and non-landlock mode #19

Nova issue

Aberto

aberto por crtxcr 2021-10-26 22:28:47 +02:00 · 0 comentários

crtxcr comentou 2021-10-26 22:28:47 +02:00

Proprietário

Copiar link

Code written under the assumption breaks when compiled on landlock-enabled systems.

qssb_append_path_policy(policy, QSSB_FS_ALLOW_READ | QSSB_FS_ALLOW_WRITE)

generall assumes natural behaviour, such as delete being allowed, or the creation of sockets etc.

On landlock, this behaviour changes.

So, we may need to simply implicitly add the necessary flags.

Code written under the assumption breaks when compiled on landlock-enabled systems. qssb_append_path_policy(policy, QSSB_FS_ALLOW_READ | QSSB_FS_ALLOW_WRITE) generall assumes natural behaviour, such as delete being allowed, or the creation of sockets etc. On landlock, this behaviour changes. So, we may need to simply implicitly add the necessary flags.

crtxcr adicionou o rótulo

bug

2021-10-26 22:28:47 +02:00

crtxcr citou esta issue em um commit 2021-12-27 00:44:43 +01:00

Add EXILE_FS_ALLOW_ALL_{READ,WRITE}

Acesse para participar desta conversação.

Nenhum branch/tag especificado

Branches Tags

master

next

WIP/enosys

WIP/cpp

Etiquetas

Limpar etiquetas   

bug

Something is not working

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

  

help wanted

Need some help

  

invalid

Something is wrong

  

question

More information is needed

  

wontfix

This won't be fixed

Sem etiqueta

bug

duplicate

enhancement

help wanted

invalid

question

wontfix

Marco

Limpar marco

Nenhum item

Sem marco

Responsáveis

Limpar responsáveis

Sem responsável

1 participante(s)

Notificações

Inscrever-se

Data limite

A data limite é inválida ou está fora do intervalo. Por favor, use o formato 'dd/mm/aaaa'.

Data limite não informada.

Dependências

Nenhuma dependência definida.

Referência: crtxcr/exile.h#19

Nenhuma descrição fornecida.