librelad
f49455e38e
fix(de-sudo): route all confirmed container-tree writes through the privileged path
Exhaustive audit (workflow: 19 finders + adversarial per-file verify; 85 raw ->
66 unique -> 39 confirmed) found 36 direct writes into the container-owned tree
that bypass runFileOp/runFileWrite/runCfgOp (manager => EACCES in rootless) plus
3 $?-masking sites. Fixes by area:
- apps: grafana + prometheus install hooks (sudo chmod -> runFileOp chmod);
gluetun provider etag (tee -> runFileWrite).
- webui generators: task-create (10 sites: mkdir/chown/tee/jq|tee/sed|tee ->
runFileOp/runFileWrite); app-icons (mkdir/cp/mv); config icon cp; system
metrics + update throttle stamps (runAsManager touch -> runFileOp touch);
setup-lock rm; updater history seed + cp.
- task health checker: 4 log writes (tee -a -> runFileWrite -a) + 3 find -delete
(-> runFileOp find).
- config reconcile: backup cp -> runCfgOp; live cp -> runFileWrite < tmp for
container-owned configs (the container user can't read a manager 0600 tmp).
- peer pull: tar extract into the container tree -> runFileOp tar.
- masking: ip_find_available + folder_group(x2) — split 'local VAR=$(cmd)' so $?
reaches the following [[ $? ]] check.
15 files, all pass bash -n; fixed idioms confirmed gone.
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Signed-off-by: librelad <librelad@digitalangels.vip>
2026-05-31 03:50:48 +01:00
..
2026-05-21 20:37:54 +01:00
2026-05-24 18:21:46 +01:00
2026-05-31 03:09:25 +01:00
2026-05-31 03:50:48 +01:00
2026-05-31 03:09:25 +01:00
2026-05-31 03:09:25 +01:00
2026-05-21 20:37:54 +01:00
2026-05-31 03:09:25 +01:00
2026-05-22 11:26:42 +01:00