Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

readlinkat2(AT_EMPTY_PATH) #18

Closed
cyphar opened this issue Dec 29, 2019 · 1 comment
Closed

readlinkat2(AT_EMPTY_PATH) #18

cyphar opened this issue Dec 29, 2019 · 1 comment
Labels
security A security issue or hardening problem. upstream/linux Dependent on upstream kernel work.

Comments

@cyphar
Copy link
Member

cyphar commented Dec 29, 2019
edited
Loading

Right now it's not possible to readlink an O_PATH | O_NOFOLLOW handle to a symlink. While this isn't strictly required for security (after all, readlinkat will give you an error if the target is not a symlink and we don't need special handling for magic-links) this would be a huge nice-to-have.

This is somewhat related to #7 because we would use it for as_unsafe_path.
@cyphar cyphar added security A security issue or hardening problem. upstream/linux Dependent on upstream kernel work. labels Dec 29, 2019
@cyphar cyphar mentioned this issue Dec 29, 2019
Closed
5 tasks
@cyphar
Copy link
Member Author

cyphar commented Jul 16, 2024

It turns out that readlinkat implies AT_EMPTY_PATH since Linux 2.6.38 (see torvalds/linux@65cfc6722361).

@cyphar cyphar closed this as completed Jul 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
security A security issue or hardening problem. upstream/linux Dependent on upstream kernel work.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@cyphar