mirrors/electron
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions 1

fix: only remove hijackable envs from foreign parent (#41079)

Browse source
This commit is contained in:
Cheng Zhao 2024-01-25 00:51:27 +09:00 committed by GitHub
parent 5ced88a90a
commit 031d636823
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
4 changed files with 19 additions and 32 deletions
Download patch file Download diff file Expand all files Collapse all files

1
filenames.gni
View file

@ -656,7 +656,6 @@ filenames = {
"shell/common/node_includes.h", "shell/common/node_includes.h",
"shell/common/node_util.cc", "shell/common/node_util.cc",
"shell/common/node_util.h", "shell/common/node_util.h",
"shell/common/node_util_mac.mm",
"shell/common/options_switches.cc", "shell/common/options_switches.cc",
"shell/common/options_switches.h", "shell/common/options_switches.h",
"shell/common/platform_util.cc", "shell/common/platform_util.cc",

21
shell/app/node_main.cc
View file

@ -83,6 +83,23 @@ void ExitIfContainsDisallowedFlags(const std::vector<std::string>& argv) {
} }
} }
#if BUILDFLAG(IS_MAC)
// A list of node envs that may be used to inject scripts.
const char* kHijackableEnvs[] = {"NODE_OPTIONS", "NODE_REPL_EXTERNAL_MODULE"};
// Return true if there is any env in kHijackableEnvs.
bool UnsetHijackableEnvs(base::Environment* env) {
bool has = false;
for (const char* name : kHijackableEnvs) {
if (env->HasVar(name)) {
env->UnSetVar(name);
has = true;
}
}
return has;
}
#endif
#if IS_MAS_BUILD() #if IS_MAS_BUILD()
void SetCrashKeyStub(const std::string& key, const std::string& value) {} void SetCrashKeyStub(const std::string& key, const std::string& value) {}
void ClearCrashKeyStub(const std::string& key) {} void ClearCrashKeyStub(const std::string& key) {}
@ -124,8 +141,8 @@ int NodeMain(int argc, char* argv[]) {
// NODE_OPTIONS: "--require 'bad.js'"}}) // NODE_OPTIONS: "--require 'bad.js'"}})
// To prevent Electron apps from being used to work around macOS security // To prevent Electron apps from being used to work around macOS security
// restrictions, when the parent process is not part of the app bundle, all // restrictions, when the parent process is not part of the app bundle, all
// environment variables starting with NODE_ will be removed. // environment variables that may be used to inject scripts are removed.
if (util::UnsetAllNodeEnvs()) { if (UnsetHijackableEnvs(os_env.get())) {
LOG(ERROR) << "Node.js environment variables are disabled because this " LOG(ERROR) << "Node.js environment variables are disabled because this "
"process is invoked by other apps."; "process is invoked by other apps.";
} }

6
shell/common/node_util.h
View file

@ -27,12 +27,6 @@ v8::MaybeLocal<v8::Value> CompileAndCall(
std::vector<v8::Local<v8::String>>* parameters, std::vector<v8::Local<v8::String>>* parameters,
std::vector<v8::Local<v8::Value>>* arguments); std::vector<v8::Local<v8::Value>>* arguments);
#if BUILDFLAG(IS_MAC)
// Unset all environment variables that start with NODE_. Return false if there
// is no node env at all.
bool UnsetAllNodeEnvs();
#endif
} // namespace electron::util } // namespace electron::util
#endif // ELECTRON_SHELL_COMMON_NODE_UTIL_H_ #endif // ELECTRON_SHELL_COMMON_NODE_UTIL_H_

23
shell/common/node_util_mac.mm
View file

@ -1,23 +0,0 @@
// Copyright (c) 2023 Microsoft, Inc.
// Use of this source code is governed by the MIT license that can be
// found in the LICENSE file.
#include "shell/common/node_util.h"
#include <Foundation/Foundation.h>
namespace electron::util {
bool UnsetAllNodeEnvs() {
bool has_unset = false;
for (NSString* env in NSProcessInfo.processInfo.environment) {
if (![env hasPrefix:@"NODE_"])
continue;
const char* name = [[env componentsSeparatedByString:@"="][0] UTF8String];
unsetenv(name);
has_unset = true;
}
return has_unset;
}
} // namespace electron::util