[tor-commits] [Git][tpo/applications/tor-browser-build][main] Bug 41050: Improve disk leak sanitization on startup.

Subject: [tor-commits] [Git][tpo/applications/tor-browser-build][main] Bug 41050: Improve disk leak sanitization on startup.

From: "ma1 \(@ma1\) via tor-commits" <tor-commits@xxxxxxxxxxxxxxxxxxxx>

Date: Tue, 19 Dec 2023 09:23:37 +0000

Auto-submitted: auto-generated

Cc: "ma1 \(@ma1\)" <git@xxxxxxxxxxxxxxxxxxxxx>

Delivered-to: archiver@xxxxxxxx

Delivery-date: Tue, 19 Dec 2023 04:23:49 -0500

Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=lists.torproject.org; s=2022-eugeni; t=1702977825; bh=zC9KwfYVyeITnfIioc2XkYsS7FERS2csepwEVOOQwZI=; h=Date:To:Subject:List-Id:List-Unsubscribe:List-Archive:List-Post: List-Help:List-Subscribe:From:Reply-To:Cc:From; b=lTECJnI2SUJNu0yOiZMA+fZFFADBpRZtdmormD89ZXO8G6kjuF8cWmR26/B2lX74S ou1xHjtgwR7VdGEGIKVl/xsxUgrHic25VhWMHDktMg3koaJ1L8cGPP36GSB9micY5p eA9jiLpDA7Fn8aa08oEBX4Ziz4hTafq0hlQuLB4uUzv4+DXQxTtKyRUcVWUjKY+36V OBSw2UOVg1hfHUKXZ/cwriPmq60tAkxhuuHV9+2RGL2777Sr5a7zHyTKu1xp38DIWJ XiG4ow5n/cBkKpXVORHtBQN9khE7aPNZBY/fzXH+67jX2xOgKcPk2JnURulNKHZ/zs w7AdEkpdz88Cw==

List-archive: <http://lists.torproject.org/pipermail/tor-commits/>

List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>

List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>

List-post: <mailto:tor-commits@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>

Reply-to: noreply@xxxxxxxxxxxxxx

Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>

Title: GitLab

ma1 pushed to branch main at The Tor Project / Applications / tor-browser-build

Commits:

5a97ba07

by hackademix at 2023-12-19T10:22:07+01:00

Bug 41050: Improve disk leak sanitization on startup.

1 changed file:

projects/browser/RelativeLink/start-browser

Changes:

projects/browser/RelativeLink/start-browser

@@ -258,18 +258,32 @@ HOME="${PWD}"
  export HOME
  # Prevent disk leaks in $HOME/.local/share (tor-browser#17560)
 +function erase_leaky() {
 +	local leaky="$1"
 +	[ -e "$leaky" ] &&
 +	( srm -r "$leaky" ||
 +	  wipe -r "$leaky" ||
 +	  find "$leaky" -type f -exec shred -u {} \; ;
 +	  rm -rf "$leaky"
 +	) > /dev/null 2>&1
 +}
  local_dir="$HOME/.local/"
  share_dir="$local_dir/share"
 -if [ -d "$share_dir" ]; then
 -    ( srm -r "$share_dir" ||
 -      wipe -r "$share_dir" ||
 -      find "$share_dir" -type f -exec shred -u {} \; ;
 -      rm -rf "$share_dir"
 -    ) > /dev/null 2>&1
 -else
 -    mkdir -p "$local_dir"
 +# We don't want to mess with symlinks, possibly pointing outside the
 +# Browser directory (tor-browser-build#41050).
 +# We're not using realpath/readlink for consistency with the (possibly
 +# outdated) availability assumptions made elsewhere in this script.
 +if ! [ -L "$local_dir" -o -L "$share_dir" ]; then
 +	if [ -d "$share_dir" ]; then
 +		for leaky_path in "gvfs-metadata" "recently-used.xbel"; do
 +			erase_leaky "$share_dir/$leaky_path"
 +		done
 +	else
 +		mkdir -p "$local_dir"
 +	fi
 +	ln -fs /dev/null "$share_dir"
  fi
 -ln -fs /dev/null "$share_dir"
 +[ -L "$HOME/.cache" ] || erase_leaky "$HOME/.cache/nvidia"
  [% IF c("var/tor-browser") -%]
  SYSARCHITECTURE=$(getconf LONG_BIT)

_______________________________________________ tor-commits mailing list tor-commits@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits