projects / platform / upstream / nsjail.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1d9b33b)
Use O_CLOEXEC when possible to avoid leaking FDs 1.2
authorJagger <robert@swiecki.net>
Sat, 10 Sep 2016 01:20:32 +0000 (03:20 +0200)
committerJagger <robert@swiecki.net>
Sat, 10 Sep 2016 01:20:32 +0000 (03:20 +0200)
mount.c patch | blob | history
subproc.c patch | blob | history
util.c patch | blob | history

diff --git a/mount.c b/mount.c
index 9f6b8e311e94cdb995976aa5be60e52531215cf1..6f7bd818d16bd9b9242ce07a668c42129f2b9d5b 100644 (file)
--- a/mount.c
+++ b/mount.c
@@ -104,11 +104,11 @@ static bool mountMount(struct nsjconf_t *nsjconf, struct mounts_t *mpt, const ch
                        LOG_W("Couldn't create upper directories for '%s'", dst);
                        return false;
                }
-               int fd = TEMP_FAILURE_RETRY(open(dst, O_CREAT | O_RDONLY, 0644));
+               int fd = TEMP_FAILURE_RETRY(open(dst, O_CREAT | O_RDONLY | O_CLOEXEC, 0644));
                if (fd >= 0) {
                        close(fd);
                } else {
-                       PLOG_W("open('%s', O_CREAT|O_RDONLY, 0700)", dst);
+                       PLOG_W("open('%s', O_CREAT|O_RDONLY|O_CLOEXEC, 0700)", dst);
                }
        }
 
diff --git a/subproc.c b/subproc.c
index 0f287be92fc05173fba0108575313df3eda3f162..047600a064e2d0ba81300275feba89e10ac82cc7 100644 (file)
--- a/subproc.c
+++ b/subproc.c
@@ -112,7 +112,7 @@ static void subprocAdd(struct nsjconf_t *nsjconf, pid_t pid, int sock)
 
        char fname[PATH_MAX];
        snprintf(fname, sizeof(fname), "/proc/%d/syscall", (int)pid);
-       p->pid_syscall_fd = TEMP_FAILURE_RETRY(open(fname, O_RDONLY));
+       p->pid_syscall_fd = TEMP_FAILURE_RETRY(open(fname, O_RDONLY | O_CLOEXEC));
 
        TAILQ_INSERT_HEAD(&nsjconf->pids, p, pointers);
 
diff --git a/util.c b/util.c
index 345843351048867168aa3f081ac67e6c9b1e3e9a..afb0083cbd0ec5fae07928f94f94951358fd2b48 100644 (file)
--- a/util.c
+++ b/util.c
@@ -62,9 +62,9 @@ ssize_t utilReadFromFd(int fd, void *buf, size_t len)
 ssize_t utilReadFromFile(const char *fname, void *buf, size_t len)
 {
        int fd;
-       TEMP_FAILURE_RETRY(fd = open(fname, O_RDONLY));
+       TEMP_FAILURE_RETRY(fd = open(fname, O_RDONLY | O_CLOEXEC));
        if (fd == -1) {
-               LOG_E("open('%s', O_RDONLY)", fname);
+               LOG_E("open('%s', O_RDONLY|O_CLOEXEC)", fname);
                return -1;
        }
        ssize_t ret = utilReadFromFd(fd, buf, len);
Domain: System / System Framework;