DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Packages and Ports

OpenBSD Packages and Ports Installation and upgrading of packages and ports on OpenBSD.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 19th December 2018
beavers beavers is offline
Fdisk Soldier
 
Join Date: Nov 2017
Posts: 77
Default Chromium download error

After a recent update on -current, Chromium no longer lets me download files:
Code:
Could not read the contents of user

Error opening directory '/home/user': Permission denied
Permissions on that directory haven't changed. Anyone else seeing this behavior?
Reply With Quote
  #2   (View Single Post)  
Old 19th December 2018
jggimi's Avatar
jggimi jggimi is online now
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 6,730
Default

For -current users, --enable-unveil was enabled by default on November 17. You can revert to prior operation by disabling the security feature. Run chromium with "--disable-unveil".
Reply With Quote
  #3   (View Single Post)  
Old 19th December 2018
Head_on_a_Stick's Avatar
Head_on_a_Stick Head_on_a_Stick is offline
Real Name: Matthew
Bloaty McBloatFace
 
Join Date: Dec 2015
Location: London
Posts: 138
Default

Quote:
Originally Posted by beavers View Post
Chromium no longer lets me download files
If you pre-set the download destination to ~/Downloads then Chromium should be able to save stuff there even with unveil(2) enabled.
__________________
Linux is for people who hate Windows. BSD is for people who love UNIX.
Reply With Quote
  #4   (View Single Post)  
Old 6th May 2019
brudan brudan is offline
Fdisk Soldier
 
Join Date: Dec 2018
Posts: 82
Default

I'm on OpenBSD 6.5. My ~/Downloads is a symlink to a directory on a separate harddrive and it seems unveil is preventing chromium from following the link.

I want to enjoy the added security of unveil, but would like chromium to be able to follow the symlink to my Downloads directory. Please, how do I accomplish that?

Also, what if I want ~/.config/chromium to also be a symlink? Would it be too complicated to allow that, too?

(I cannot make much of the unveil(2) man page.)

Last edited by brudan; 6th May 2019 at 01:00 PM. Reason: changed "don't want to disable unveil" (a triple negative!) to a clearer equivalent
Reply With Quote
  #5   (View Single Post)  
Old 6th May 2019
jggimi's Avatar
jggimi jggimi is online now
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 6,730
Default

You cannot defeat unveil restrictions with symbolic links. I perceive your options are:
  1. Move the user's $HOME to the other drive.
  2. Create mount points on the other drive for $HOME/{Downloads,.config/chromium}
  3. Run with unveil disabled.
  4. Use a different browser.
Reply With Quote
  #6   (View Single Post)  
Old 6th May 2019
brudan brudan is offline
Fdisk Soldier
 
Join Date: Dec 2018
Posts: 82
Default

Thank you, jggimi. Sounds like unveil does not have a whitelist feature (similar to mechanism in firejail for linux). Pity. That would have been the easy fix I was hoping for.

Does OpenBSD have something similar to Linux's 'mount --bind'? If so, I can't seem to find it--but if it does, I could bind-mount the external ~/Downloads and ~/.config/chromium directories to my home folder. That would be a nice solution.
Reply With Quote
  #7   (View Single Post)  
Old 6th May 2019
jggimi's Avatar
jggimi jggimi is online now
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 6,730
Default

No, there's no equivalent.
Reply With Quote
  #8   (View Single Post)  
Old 6th May 2019
brudan brudan is offline
Fdisk Soldier
 
Join Date: Dec 2018
Posts: 82
Default

I found this: https://dataswamp.org/~solene/2018-0...ount-bind.html
I tested and it has the same effect as a bind mount, but is too complicated for my taste.

I guess I'll either use chromium with unveil disabled or else will just stick with firefox.

Thanks a bundle, as always. You are always a great help.
Reply With Quote
  #9   (View Single Post)  
Old 6th May 2019
jggimi's Avatar
jggimi jggimi is online now
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 6,730
Default

Unveil symbolic link functionality is subject to possible future revision, per the BUGS section of the unveil(2) man page.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Chromium browser causes reboots jwhal OpenBSD Packages and Ports 5 3rd January 2016 11:57 PM
Google Chromium in ports now Oliver_H FreeBSD Ports and Packages 12 21st October 2010 08:11 PM
FreeBSD Google Chromium in FreeBSD ports now Oliver_H News 0 15th October 2010 10:43 AM
Chromium browser mechanic OpenBSD Packages and Ports 5 3rd September 2010 02:00 PM
how to install chromium... clovis FreeBSD Ports and Packages 4 11th August 2010 08:25 PM


All times are GMT. The time now is 06:37 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick