libsandbox: handle symlinks properly

Make sure we handle edge cases that involve symlinks and functions that
operate on symlinks.  This includes newer style *at functions that can go
between operating on symlinks and operating on the linked files, and on
symlinks to files that live in explicitly denied paths.

URL: http://bugs.gentoo.org/254914
Signed-off-by: Mike Frysinger <vapier@gentoo.org>
Reported-by: Mike Auty <ikelos@gentoo.org>

1 files changed, 4 insertions, 4 deletions

diff --git a/libsandbox/libsandbox.h b/libsandbox/libsandbox.h
index 8ed6d70..5e45b23 100644
--- a/libsandbox/libsandbox.h
+++ b/libsandbox/libsandbox.h
@@ -17,10 +17,10 @@
 #define _FUNCTION_SANDBOX_SAFE(test) \
 	(!is_sandbox_on() || (test))
 
-#define FUNCTION_SANDBOX_SAFE_AT(_dirfd, _path) \
-       _FUNCTION_SANDBOX_SAFE(before_syscall(_dirfd, WRAPPER_NR, STRING_NAME, _path))
+#define FUNCTION_SANDBOX_SAFE_AT(_dirfd, _path, _flags) \
+       _FUNCTION_SANDBOX_SAFE(before_syscall(_dirfd, WRAPPER_NR, STRING_NAME, _path, _flags))
 #define FUNCTION_SANDBOX_SAFE(_path) \
-        FUNCTION_SANDBOX_SAFE_AT(AT_FDCWD, _path)
+        FUNCTION_SANDBOX_SAFE_AT(AT_FDCWD, _path, 0)
 
 #define FUNCTION_SANDBOX_SAFE_ACCESS_AT(_dirfd, _path, _flags) \
        _FUNCTION_SANDBOX_SAFE(before_syscall_access(_dirfd, WRAPPER_NR, STRING_NAME, _path, _flags))
@@ -40,7 +40,7 @@
 int canonicalize(const char *, char *);
 
 bool is_sandbox_on(void);
-bool before_syscall(int, int, const char *, const char *);
+bool before_syscall(int, int, const char *, const char *, int);
 bool before_syscall_access(int, int, const char *, const char *, int);
 bool before_syscall_open_int(int, int, const char *, const char *, int);
 bool before_syscall_open_char(int, int, const char *, const char *, const char *);