[PR #2732] [CLOSED] improve/add support for arbitrary home directories #4501

New issue

Closed

opened 2026-05-05 10:21:17 -06:00 by gitea-mirror · 0 comments

gitea-mirror commented

2026-05-05 10:21:17 -06:00

Owner

📋 Pull Request Information

Original PR: https://github.com/netblue30/firejail/pull/2732
Author: @smitsohu
Created: 5/30/2019
Status: ❌ Closed

Base: master ← Head: homedir

📝 Commits (10+)

f3a1dd4 improve/add support for home directories outside /home
c7b5a25 don't resolve symlinks in homedir path
c865879 close fd, add mountinfo checks
dd208cb cleanup
33d43d9 fix system user support
5e0083f disallow stacking of private* options
2a98d56 fix chroot, overlay options (never run without a procfs)
a5da270 uncommon homedir locations should not break profiles
30695b5 make homedir symlink resolution configurable
a3374e0 fix homedir sanity check

📊 Changes

11 files changed (+213 additions, -59 deletions)

View changed files

📝 etc/firejail.config (+3 -0)
📝 src/firejail/checkcfg.c (+2 -0)
📝 src/firejail/firejail.h (+1 -0)
📝 src/firejail/fs.c (+30 -14)
📝 src/firejail/fs_home.c (+60 -32)
📝 src/firejail/fs_whitelist.c (+9 -1)
📝 src/firejail/main.c (+70 -8)
📝 src/firejail/profile.c (+12 -0)
📝 src/firejail/restrict_users.c (+14 -2)
📝 src/firejail/sandbox.c (+10 -0)
📝 src/firejail/util.c (+2 -2)

📄 Description

Relevant mostly for home directories outside /home or paths containing symbolic links. This pull request aims at removing all implicit assumptions about the location of the user home directory (which in fact can be almost anywhere in the filesystem). Instead it adds a new restriction that the home directory must be owned by the user.

#1078
Fixes #2259 (kind of)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/netblue30/firejail/pull/2732 **Author:** [@smitsohu](https://github.com/smitsohu) **Created:** 5/30/2019 **Status:** ❌ Closed **Base:** `master` ← **Head:** `homedir` --- ### 📝 Commits (10+) - [`f3a1dd4`](https://github.com/netblue30/firejail/commit/f3a1dd4987963eef551d37d2917af090375e28e2) improve/add support for home directories outside /home - [`c7b5a25`](https://github.com/netblue30/firejail/commit/c7b5a25553a0d2b15f25751e5a0305fffc7220e7) don't resolve symlinks in homedir path - [`c865879`](https://github.com/netblue30/firejail/commit/c8658791c4c740a96f03bbad41596d807a4ae720) close fd, add mountinfo checks - [`dd208cb`](https://github.com/netblue30/firejail/commit/dd208cb4989bc585d09c7f5ce29320f0dc26deac) cleanup - [`33d43d9`](https://github.com/netblue30/firejail/commit/33d43d9d5183c58e45030930818d7ccb96b5e03e) fix system user support - [`5e0083f`](https://github.com/netblue30/firejail/commit/5e0083fd7c1d0143c294a7ffb0ad0d769bddc0d8) disallow stacking of private* options - [`2a98d56`](https://github.com/netblue30/firejail/commit/2a98d5653e249b2e820efec39987715c258d3786) fix chroot, overlay options (never run without a procfs) - [`a5da270`](https://github.com/netblue30/firejail/commit/a5da2709e0d7999bb7106e64ec56dba1f557ecc5) uncommon homedir locations should not break profiles - [`30695b5`](https://github.com/netblue30/firejail/commit/30695b55d5c01b69891c4a0a0dc684eb91043b75) make homedir symlink resolution configurable - [`a3374e0`](https://github.com/netblue30/firejail/commit/a3374e0577ac4b0d93ec06403973afd57af3619d) fix homedir sanity check ### 📊 Changes **11 files changed** (+213 additions, -59 deletions) <details> <summary>View changed files</summary> 📝 `etc/firejail.config` (+3 -0) 📝 `src/firejail/checkcfg.c` (+2 -0) 📝 `src/firejail/firejail.h` (+1 -0) 📝 `src/firejail/fs.c` (+30 -14) 📝 `src/firejail/fs_home.c` (+60 -32) 📝 `src/firejail/fs_whitelist.c` (+9 -1) 📝 `src/firejail/main.c` (+70 -8) 📝 `src/firejail/profile.c` (+12 -0) 📝 `src/firejail/restrict_users.c` (+14 -2) 📝 `src/firejail/sandbox.c` (+10 -0) 📝 `src/firejail/util.c` (+2 -2) </details> ### 📄 Description Relevant mostly for home directories outside /home or paths containing symbolic links. This pull request aims at removing all implicit assumptions about the location of the user home directory (which in fact can be almost anywhere in the filesystem). Instead it adds a new restriction that the home directory must be owned by the user. #1078 Fixes #2259 (kind of) --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>

gitea-mirror

2026-05-05 10:21:17 -06:00

closed this issue
added the
pull-request
label

gitea-mirror referenced this issue

2026-05-05 10:33:34 -06:00

[PR #4501] [MERGED] Blacklist Exodus wallet #5171

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#4501

No description provided.

Rows
Columns