pyrox.dev / nixpkgs
lol
fork atom

Conditionally logging debug messages based on the WRAPPER_DEBUG env var being set (or not)

Parnell Springmeyer 128bdac9 d8ecd5eb

options
unified split
Changed files
+22 -13
nixos
modules
security
wrappers
wrapper.c
+22 -13
nixos/modules/security/wrappers/wrapper.c 
···

       
26

       
 

       
static char * sourceProg = SOURCE_PROG;


     

       
27

       
 

       
static char * wrapperDir = WRAPPER_DIR;


     

       
28

       
 

       



     

       

       

       
     

       

       

       
     

       

       

       
     

       
29

       
 

       
// Update the capabilities of the running process to include the given


     

       
30

       
 

       
// capability in the Ambient set.


     

       
31

       
 

       
static void set_ambient_cap(cap_value_t cap)


     
···

       
34

       
 

       



     

       
35

       
 

       
    if (capng_update(CAPNG_ADD, CAPNG_INHERITABLE, (unsigned long) cap))


     

       
36

       
 

       
    {


     

       
37

       
-

       
        printf("cannot raise the capability into the Inheritable set\n");


     

       
38

       
 

       
        exit(1);


     

       
39

       
 

       
    }


     

       
40

       
 

       



     
···

       
56

       
 

       



     

       
57

       
 

       
    if(!caps)


     

       
58

       
 

       
    {


     

       
59

       
-

       
        fprintf(stderr, "no caps set or could not retrieve the caps for this file, not doing anything...\n");


     

       

       

       
     

       

       

       
     

       
60

       
 

       
        return 1;


     

       
61

       
 

       
    }


     

       
62

       
 

       



     
···

       
127

       
 

       
      cap_value_t capnum;


     

       
128

       
 

       
      if (cap_from_name(tok, &capnum))


     

       
129

       
 

       
      {


     

       
130

       
-

       
          fprintf(stderr, "cap_from_name failed, skipping: %s\n", tok);


     

       

       

       
     

       
131

       
 

       
      }


     

       
132

       
 

       
      else if (capnum == CAP_SETPCAP)


     

       
133

       
 

       
      {


     

       
134

       
-

       
        // Check for the cap_setpcap capability, we set this on the


     

       
135

       
-

       
        // wrapper so it can elevate the capabilities to the Ambient


     

       
136

       
-

       
        // set but we do not want to propagate it down into the


     

       
137

       
-

       
        // wrapped program.


     

       
138

       
-

       
        //


     

       
139

       
-

       
        // TODO: what happens if that's the behavior you want


     

       
140

       
-

       
        // though???? I'm preferring a strict vs. loose policy here.


     

       
141

       
-

       
        fprintf(stderr, "cap_setpcap in set, skipping it\n");


     

       

       

       
     

       
142

       
 

       
      }


     

       
143

       
 

       
      else


     

       
144

       
 

       
      {


     

       
145

       
-

       
        set_ambient_cap(capnum);


     

       
146

       
-

       
        printf("raised %s into the Ambient capability set\n", tok);


     

       

       

       
     

       

       

       
     

       
147

       
 

       
      }


     

       
148

       
 

       
    }


     

       
149

       
 

       
    cap_free(capstr);


     
···

       
26

       
 

       
static char * sourceProg = SOURCE_PROG;


     

       
27

       
 

       
static char * wrapperDir = WRAPPER_DIR;


     

       
28

       
 

       



     

       
29

       
+

       
// Wrapper debug variable name


     

       
30

       
+

       
static char * wrapperDebug = "WRAPPER_DEBUG";


     

       
31

       
+

       



     

       
32

       
 

       
// Update the capabilities of the running process to include the given


     

       
33

       
 

       
// capability in the Ambient set.


     

       
34

       
 

       
static void set_ambient_cap(cap_value_t cap)


     
···

       
37

       
 

       



     

       
38

       
 

       
    if (capng_update(CAPNG_ADD, CAPNG_INHERITABLE, (unsigned long) cap))


     

       
39

       
 

       
    {


     

       
40

       
+

       
        perror("cannot raise the capability into the Inheritable set\n");


     

       
41

       
 

       
        exit(1);


     

       
42

       
 

       
    }


     

       
43

       
 

       



     
···

       
59

       
 

       



     

       
60

       
 

       
    if(!caps)


     

       
61

       
 

       
    {


     

       
62

       
+

       
        if(getenv(wrapperDebug))


     

       
63

       
+

       
            fprintf(stderr, "no caps set or could not retrieve the caps for this file, not doing anything...");


     

       
64

       
+

       



     

       
65

       
 

       
        return 1;


     

       
66

       
 

       
    }


     

       
67

       
 

       



     
···

       
132

       
 

       
      cap_value_t capnum;


     

       
133

       
 

       
      if (cap_from_name(tok, &capnum))


     

       
134

       
 

       
      {


     

       
135

       
+

       
          if(getenv(wrapperDebug))


     

       
136

       
+

       
              fprintf(stderr, "cap_from_name failed, skipping: %s", tok);


     

       
137

       
 

       
      }


     

       
138

       
 

       
      else if (capnum == CAP_SETPCAP)


     

       
139

       
 

       
      {


     

       
140

       
+

       
          // Check for the cap_setpcap capability, we set this on the


     

       
141

       
+

       
          // wrapper so it can elevate the capabilities to the Ambient


     

       
142

       
+

       
          // set but we do not want to propagate it down into the


     

       
143

       
+

       
          // wrapped program.


     

       
144

       
+

       
          //


     

       
145

       
+

       
          // TODO: what happens if that's the behavior you want


     

       
146

       
+

       
          // though???? I'm preferring a strict vs. loose policy here.


     

       
147

       
+

       
          if(getenv(wrapperDebug))


     

       
148

       
+

       
              fprintf(stderr, "cap_setpcap in set, skipping it\n");


     

       
149

       
 

       
      }


     

       
150

       
 

       
      else


     

       
151

       
 

       
      {


     

       
152

       
+

       
          set_ambient_cap(capnum);


     

       
153

       
+

       



     

       
154

       
+

       
          if(getenv(wrapperDebug))


     

       
155

       
+

       
              fprintf(stderr, "raised %s into the Ambient capability set\n", tok);


     

       
156

       
 

       
      }


     

       
157

       
 

       
    }


     

       
158

       
 

       
    cap_free(capstr);