]> git.ipfire.org Git - thirdparty/systemd.git/commit
projects / thirdparty / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6b21ad3) | patch
fs-util: add new CHASE_SAFE flag to chase_symlinks()
authorLennart Poettering <lennart@poettering.net>
Thu, 4 Jan 2018 18:44:27 +0000 (19:44 +0100)
committerLennart Poettering <lennart@poettering.net>
Thu, 11 Jan 2018 14:12:16 +0000 (15:12 +0100)
commitf14f1806e329fe92d01f15c22a384702f0cb4ae0
tree0391f83cc44c93997fe80f3ec5c5f552519e62f8tree | snapshot
parent6b21ad33ab2989bb94283b1b2a6656a08b26da62commit | diff
fs-util: add new CHASE_SAFE flag to chase_symlinks()

When the flag is specified we won't transition to a privilege-owned
file or directory from an unprivileged-owned one. This is useful when
privileged code wants to load data from a file unprivileged users have
write access to, and validates the ownership, but want's to make sure
that no symlink games are played to read a root-owned system file
belonging to a different context.
src/basic/fs-util.c diff | blob | blame | history
src/basic/fs-util.h diff | blob | blame | history
src/test/test-fs-util.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.