QubesOS/qubes-core-admin-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

qrexec: validate target domain (#743)

Browse Source
This commit is contained in:
Marek Marczykowski-Górecki 2013-08-15 00:01:56 +02:00
parent aedd97bb3a
commit c95cd3a054
1 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
qrexec/qrexec-policy
View File

@ -85,6 +85,20 @@ def is_domain_running(target):
return True return True
return False return False
def validate_target(target):
# special targets
if target in ['$dispvm', 'dom0']:
return True
from qubes.qubes import QubesVmCollection
qc = QubesVmCollection()
qc.lock_db_for_reading()
qc.load()
qc.unlock_db()
return qc.get_vm_by_name(target) is not None
def spawn_target_if_necessary(target): def spawn_target_if_necessary(target):
if is_domain_running(target): if is_domain_running(target):
return return
@ -144,6 +158,13 @@ def main():
exec_index=args[2] exec_index=args[2]
process_ident=args[3] process_ident=args[3]
if not validate_target(target):
print >> sys.stderr, "Rpc failed (unknown domain):", domain, target, exec_index
text = "Domain '%s' doesn't exists (service %s called by domain %s)." % (
target, exec_index, domain)
subprocess.call(["/usr/bin/zenity", "--error", "--text", text])
os.execl(QREXEC_CLIENT, "qrexec-client", "-d", domain, "-l", "/bin/false", "-c", process_ident)
policy_list=read_policy_file(exec_index) policy_list=read_policy_file(exec_index)
if policy_list==None: if policy_list==None:
policy_editor(domain, target, exec_index) policy_editor(domain, target, exec_index)