Kernel: Forbid access to /sys/kernel/power_state for Jailed processes

There's simply no benefit in allowing sandboxed programs to change the
power state of the machine, so disallow writes to the mentioned node to
prevent malicious programs to request that.
This commit is contained in:
Liav A 2022-11-11 14:55:28 +02:00 committed by Andrew Kaster
parent 1aa07d7328
commit 2e55956784
Notes: sideshowbarker 2024-07-17 03:47:58 +09:00

View File

@ -16,6 +16,7 @@
#include <Kernel/Process.h> #include <Kernel/Process.h>
#include <Kernel/Sections.h> #include <Kernel/Sections.h>
#include <Kernel/TTY/ConsoleManagement.h> #include <Kernel/TTY/ConsoleManagement.h>
#include <Kernel/WorkQueue.h>
namespace Kernel { namespace Kernel {
@ -45,18 +46,25 @@ ErrorOr<void> SysFSPowerStateSwitchNode::truncate(u64 size)
ErrorOr<size_t> SysFSPowerStateSwitchNode::write_bytes(off_t offset, size_t count, UserOrKernelBuffer const& data, OpenFileDescription*) ErrorOr<size_t> SysFSPowerStateSwitchNode::write_bytes(off_t offset, size_t count, UserOrKernelBuffer const& data, OpenFileDescription*)
{ {
TRY(Process::current().jail().with([&](auto const& my_jail) -> ErrorOr<void> {
// Note: If we are in a jail, don't let the current process to change the power state.
if (my_jail)
return Error::from_errno(EPERM);
return {};
}));
if (Checked<off_t>::addition_would_overflow(offset, count)) if (Checked<off_t>::addition_would_overflow(offset, count))
return EOVERFLOW; return Error::from_errno(EOVERFLOW);
if (offset > 0) if (offset > 0)
return EINVAL; return Error::from_errno(EINVAL);
if (count > 1) if (count > 1)
return EINVAL; return Error::from_errno(EINVAL);
char buf[1]; char buf[1];
TRY(data.read(buf, 1)); TRY(data.read(buf, 1));
if (buf[0] == '0')
return Error::from_errno(EINVAL);
switch (buf[0]) { switch (buf[0]) {
case '0': case '0':
return EINVAL; VERIFY_NOT_REACHED();
case '1': case '1':
reboot(); reboot();
VERIFY_NOT_REACHED(); VERIFY_NOT_REACHED();
@ -64,9 +72,8 @@ ErrorOr<size_t> SysFSPowerStateSwitchNode::write_bytes(off_t offset, size_t coun
poweroff(); poweroff();
VERIFY_NOT_REACHED(); VERIFY_NOT_REACHED();
default: default:
return EINVAL; VERIFY_NOT_REACHED();
} }
VERIFY_NOT_REACHED();
} }
void SysFSPowerStateSwitchNode::reboot() void SysFSPowerStateSwitchNode::reboot()