X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=src%2Ftmpfiles.c;h=984eaf0de192538f0209fa3880a8b03ab8f3f86d;hb=867b3b7d6b88ba4d07ec7c830576d4ac2f7dd226;hp=73246bdd6773a605ea8f388a9bbf75e7c6acc8f9;hpb=29003cffa7389256a9ac1e42c8a47f85a633573d;p=elogind.git diff --git a/src/tmpfiles.c b/src/tmpfiles.c index 73246bdd6..984eaf0de 100644 --- a/src/tmpfiles.c +++ b/src/tmpfiles.c @@ -149,7 +149,7 @@ static int dir_cleanup( DIR *sub_dir; int q; - sub_dir = xopendirat(dirfd(d), dent->d_name); + sub_dir = xopendirat(dirfd(d), dent->d_name, O_NOFOLLOW); if (sub_dir == NULL) { if (errno != ENOENT) { log_error("opendir(%s/%s) failed: %m", p, dent->d_name); @@ -182,6 +182,13 @@ static int dir_cleanup( } } else { + /* Skip files for which the sticky bit is + * set. These are semantics we define, and are + * unknown elsewhere. See XDG_RUNTIME_DIR + * specification for details. */ + if (s.st_mode & S_ISVTX) + continue; + if (mountpoint) { if (streq(dent->d_name, ".journal") && s.st_uid == 0) @@ -497,8 +504,9 @@ static int parse_line(const char *fname, unsigned line, const char *buffer, cons } if (i->type != CREATE_FILE && - i->type != CREATE_DIRECTORY && i->type != TRUNCATE_FILE && + i->type != CREATE_DIRECTORY && + i->type != TRUNCATE_DIRECTORY && i->type != IGNORE_PATH && i->type != REMOVE_PATH && i->type != RECURSIVE_REMOVE_PATH) { @@ -583,6 +591,12 @@ static int parse_line(const char *fname, unsigned line, const char *buffer, cons } if ((r = hashmap_put(items, i->path, i)) < 0) { + if (r == -EEXIST) { + log_warning("Two or more conflicting lines for %s configured, ignoring.", i->path); + r = 0; + goto finish; + } + log_error("Failed to insert item %s: %s", i->path, strerror(-r)); goto finish; }