Add check_cloexec_fds debug command

Add a debug command (to be executed manually via Alt+F2) to check that all of gnome-shell's file descriptors have the CLOEXEC flag set. This is important so that internal file descriptors do not get passed to apps when they are launched. It prints a warning message for every fd that does not have the flag set. fdwalk() is used from the standard library if available (it is not available in glibc), otherwise we use the same implementation as glib has internally. https://gitlab.gnome.org/GNOME/gnome-shell/merge_requests/132
2018-07-27 11:30:22 -05:00
parent 4b522a02c3
commit 49d8ff38e7
5 changed files with 122 additions and 1 deletions
--- a/js/ui/runDialog.js
+++ b/js/ui/runDialog.js
@ -62,7 +62,11 @@ var RunDialog = new Lang.Class({
                                   'rt': () => {
                                       Main.reloadThemeResource();
                                       Main.loadTheme();
-                                   }
+                                   },
+
+                                   'check_cloexec_fds': () => {
+                                       Shell.util_check_cloexec_fds();
+                                   },
                                 };