Diffusion FreeBSD src repository 49c98a4bf3a8

nameicap_check_dotdot: trim tracker on check
49c98a4bf3a8
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

nameicap_check_dotdot: trim tracker on check

Tracker should contain exactly the path from the starting directory to
the current lookup point. Otherwise we might not detect some cases of
dotdot escape. Consequently, if we are walking up the tree by dotdot
lookup, we must remove an entries below the walked directory.

Reviewed by: markj
Tested by: arichardson, pho
Sponsored by: The FreeBSD Foundation
MFC after: 1 week
Differential revision: https://reviews.freebsd.org/D28907

Details

Provenance

kib	Authored on Feb 28 2021, 12:15 AM

Reviewer

Differential Revision

D28907: open(2): Remove O_BENEATH and AT_BENEATH

Parents

rGe8a2862aa038: Add nameicap_cleanup_from(), to clean tracker list starting from some element

Branches

Unknown

Tags

Unknown

Event Timeline

kib committed rG49c98a4bf3a8: nameicap_check_dotdot: trim tracker on check (authored by kib).Mar 2 2021, 6:21 PM

kib added an edge: D28907: open(2): Remove O_BENEATH and AT_BENEATH.Mar 2 2021, 6:23 PM

kib mentioned this in rGaf188c01b303: nameicap_check_dotdot: trim tracker on check.Mar 4 2021, 7:27 PM

kib mentioned this in rG8ae87de4df1d: nameicap_check_dotdot: trim tracker on check.Mar 4 2021, 8:10 PM

kib mentioned this in rG45cc277b8522: nameicap_check_dotdot: trim tracker on check.Mar 21 2021, 5:55 PM

Changes (1)

Path

Size

sys/

kern/

rG49c98a4bf3a8

sys/kern/vfs_lookup.c

Loading...