From dbf00599ff832d570220cdbdc4f3c4a88c08a1dc Mon Sep 17 00:00:00 2001 From: powerjungle Date: Fri, 27 Dec 2024 16:02:25 +0000 Subject: [PATCH] bugfix: do not interact with dbus directory if dbus proxy is disabled --- src/firejail/preproc.c | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/firejail/preproc.c b/src/firejail/preproc.c index e0ca2141f78..2a023338ad6 100644 --- a/src/firejail/preproc.c +++ b/src/firejail/preproc.c @@ -142,8 +142,10 @@ void preproc_build_firejail_dir_locked(void) { // only root should be able to lock files in this directory create_empty_dir_as_root(RUN_FIREJAIL_SANDBOX_DIR, 0700); +#ifdef HAVE_DBUSPROXY create_empty_dir_as_root(RUN_FIREJAIL_DBUS_DIR, 0755); fs_remount(RUN_FIREJAIL_DBUS_DIR, MOUNT_NOEXEC, 0); +#endif create_empty_dir_as_root(RUN_RO_DIR, S_IRUSR); fs_remount(RUN_RO_DIR, MOUNT_READONLY, 0);