Skip to content

null9900/pledge-unveil

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
unveil_driver
unveil_driver
 
 
.gitignore
.gitignore
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
main.c
main.c
 
 
pledge.c
pledge.c
 
 
pledge.h
pledge.h
 
 
unveil.c
unveil.c
 
 
unveil.h
unveil.h
 
 

Repository files navigation

To fix list

  • Unveil driver does not support multiprocess.
  • Child processes do not inherit the parent's pledge and unveil calls.
  • Vulnerable to Time-of-check to time-of-use attack.
  • Unveil driver only works with absolute paths. It uses a very simple string comparison to check for allowed paths and it can be fooled in many ways. For example, ../../,/d?v/ or using a network address.
  • Unveil driver hooks only openat system call to check if opened files are allowed. Other system calls need to be hooked like open.
  • A lot of functions lack error checking.
  • Incomplete mapping from pledge promises to Linux system calls.
  • Pledge second parameter char *execpromises is not implemented
  • Unveil second parameter char *permissions is not implemented.

unveil_driver/ftrace_helper.h is a modified copy form https://github.com/shubham0d/Immutable-file-linux

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages