mirrors/sway
1
0
Fork 0
mirror of https://github.com/swaywm/sway.git synced 2026-04-28 06:46:26 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Remove allowed shell check from swayrun

Browse source 
Because swayrun should be run from a safe environment, validating
the user's shell against /etc/shells seems unnecessary.
This commit is contained in:
Corey Hinshaw 2019-02-10 20:41:04 -05:00
parent f1d64f811d
commit eb22dee79c
3 changed files with 5 additions and 44 deletions
Download patch file Download diff file Expand all files Collapse all files

36
swayrun/main.c
View file

@ -1,48 +1,16 @@
#define _POSIX_C_SOURCE 200809L // for getline #define _POSIX_C_SOURCE 200809L
#include <errno.h> #include <errno.h>
#include <stdbool.h>
#include <stdio.h> #include <stdio.h>
#include <stdlib.h> #include <stdlib.h>
#include <string.h> #include <string.h>
#include <unistd.h> #include <unistd.h>
#include "stringop.h"
#define SWAY_COMMAND "sway" #define SWAY_COMMAND "sway"
char allowed_shell(char *shell) {
FILE *fp;
char *line = NULL;
size_t len = 0;
char allowed = false;
if (strstr(shell, "false") != NULL || strstr(shell, "nologin") != NULL) {
return false;
}
fp = fopen("/etc/shells", "r");
if (fp == NULL) {
return true;
}
while (getline(&line, &len, fp) != -1) {
strip_whitespace(line);
if (strcmp(shell, line) == 0) {
allowed = true;
break;
}
}
fclose(fp);
if (line) {
free(line);
}
return allowed;
}
int main(int argc, char **argv) { int main(int argc, char **argv) {
char *shell = getenv("SHELL"); char *shell = getenv("SHELL");
if (shell && allowed_shell(shell)) { if (shell) {
// 3 exec arguments + argc + argv[argc] NULL pointer // 3 exec arguments + argc + argv[argc] NULL pointer
int exec_argc = 4 + argc; int exec_argc = 4 + argc;
char **exec_argv = malloc(exec_argc * sizeof(char*)); char **exec_argv = malloc(exec_argc * sizeof(char*));

2
swayrun/meson.build
View file

@ -1,7 +1,5 @@
executable( executable(
'swayrun', 'swayrun',
'main.c', 'main.c',
include_directories: [sway_inc],
link_with: [lib_sway_common],
install: true install: true
) )

11
swayrun/swayrun.1.scd
View file

@ -11,16 +11,11 @@ _swayrun_ [options...] [command]
# DESCRIPTION # DESCRIPTION
Attempts to run *sway*(1) via the user's login shell. This allows environment Attempts to run *sway*(1) via the user's login shell. This allows environment
configuration and other login actions, for example when run via a login manager. configuration and other login actions, for example when run via a display manager.
All arguments to swayrun will be passed through unaltered to sway. All arguments to swayrun will be passed through unaltered to sway.
If a valid login shell cannot be determined, sway will be executed normally. If a login shell cannot be determined, sway will be executed normally.
# CONFIGURATION
swayrun will consult */etc/shells* if it exists for a list of valid login
shells. In addition, *false* and *nologin* will be considered invalid shells.
# ENVIRONMENT # ENVIRONMENT
@ -31,4 +26,4 @@ _SHELL_
# SEE # SEE
*sway*(1) *shells*(5) *sway*(1)