Newsportal USENET - Re: encapsulating directory operations

Re: encapsulating directory operations

Sujet : Re: encapsulating directory operations
De : jameskuyper (at) *nospam* alumni.caltech.edu (James Kuyper)
Groupes : comp.lang.c
Date : 03. Jun 2025, 00:14:08

Autres entêtes

Organisation : A noiseless patient Spider
Message-ID : <101lb81$3irlj$1@dont-email.me>
References : 1 2 3 4 5 6 7 8
User-Agent : Mozilla Thunderbird

On 6/2/25 11:24, Scott Lurndal wrote:

Bonita Montero <Bonita.Montero@gmail.com> writes:
Am 01.06.2025 um 09:43 schrieb Lawrence D'Oliveiro:
>

...

You need the dirfd functions to avoid certain potential security holes
on operations with symlinks.
>
Which security holes ?
>
>
The fchownat() function shall be equivalent to the chown() and lchown()
functions except in the case where path specifies a relative path. In
this case the file to be changed is determined relative to the directory
associated with the file descriptor fd instead of the current working
directory. If the access mode of the open file description associated
with the file descriptor is not O_SEARCH, the function shall check
whether directory searches are permitted using the current permissions
of the directory underlying the file descriptor. If the access mode is
O_SEARCH, the function shall not perform the check.
>
Similiter for fstatat, faccessat, fchownat, openat, readlinkat et alia.

That describes what the functions do, it doesn't explain the potential
security holes that they avoid. The hole might seem obvious to you, but
it's certainly not obvious to me - probably because writing code to
traverse directories is something I've almost never had to do.

Les messages affichés proviennent d'usenet.

Date	Sujet	#	Auteur
20 May 25	encapsulating directory operations	226	Paul Edwards
20 May 25	Re: encapsulating directory operations	30	Lawrence D'Oliveiro
20 May 25	Re: encapsulating directory operations	20	Paul Edwards
21 May 25	Re: encapsulating directory operations	19	Lawrence D'Oliveiro
21 May 25	Re: encapsulating directory operations	18	Paul Edwards
21 May 25	Re: encapsulating directory operations	17	Lawrence D'Oliveiro
21 May 25	Re: encapsulating directory operations	3	Paul Edwards
22 May 25	Re: encapsulating directory operations	2	Lawrence D'Oliveiro
22 May 25	Re: encapsulating directory operations	1	Kaz Kylheku
22 May 25	Re: encapsulating directory operations	13	James Kuyper
22 May 25	Re: encapsulating directory operations	12	Lawrence D'Oliveiro
22 May 25	Re: encapsulating directory operations	11	James Kuyper
22 May 25	Re: encapsulating directory operations	10	Lawrence D'Oliveiro
23 May 25	Re: encapsulating directory operations	9	James Kuyper
23 May 25	Re: encapsulating directory operations	8	Kaz Kylheku
23 May 25	Re: encapsulating directory operations	3	Paul Edwards
23 May 25	Re: encapsulating directory operations	1	Kaz Kylheku
24 May 25	Re: encapsulating directory operations	1	Lawrence D'Oliveiro
23 May 25	Re: encapsulating directory operations	4	James Kuyper
23 May 25	Re: encapsulating directory operations	3	Kaz Kylheku
24 May 25	Re: encapsulating directory operations	2	James Kuyper
24 May 25	Re: encapsulating directory operations	1	Kaz Kylheku
31 May07:20	Re: encapsulating directory operations	9	Bonita Montero
31 May22:42	Re: encapsulating directory operations	8	Lawrence D'Oliveiro
1 Jun06:58	Re: encapsulating directory operations	7	Bonita Montero
1 Jun08:43	Re: encapsulating directory operations	6	Lawrence D'Oliveiro
2 Jun08:35	Re: encapsulating directory operations	5	Bonita Montero
3 Jun00:14	Re: encapsulating directory operations	2	James Kuyper
3 Jun02:02	Re: encapsulating directory operations	1	Kaz Kylheku
3 Jun01:37	Re: encapsulating directory operations	1	Lawrence D'Oliveiro
3 Jun18:41	Re: encapsulating directory operations	1	Bonita Montero
20 May 25	Re: encapsulating directory operations	71	Keith Thompson
20 May 25	Re: encapsulating directory operations	25	Richard Heathfield
20 May 25	Re: encapsulating directory operations	1	Paul Edwards
20 May 25	Re: encapsulating directory operations	1	David Brown
20 May 25	Re: encapsulating directory operations	7	Kaz Kylheku
20 May 25	Re: encapsulating directory operations	6	Richard Heathfield
20 May 25	Re: encapsulating directory operations	2	Muttley
20 May 25	Re: encapsulating directory operations	1	Paul Edwards
20 May 25	Re: encapsulating directory operations	3	Paul Edwards
20 May 25	Re: encapsulating directory operations	2	Richard Heathfield
20 May 25	Re: encapsulating directory operations	1	Paul Edwards
23 May 25	Re: encapsulating directory operations	15	Tim Rentsch
23 May 25	Re: encapsulating directory operations	5	Richard Heathfield
24 May 25	Re: encapsulating directory operations	4	Tim Rentsch
24 May 25	Re: encapsulating directory operations	3	Richard Heathfield
28 May 25	Re: encapsulating directory operations	2	Tim Rentsch
28 May 25	Re: encapsulating directory operations	1	Richard Heathfield
26 May 25	Re: encapsulating directory operations	9	Peter 'Shaggy' Haywood
27 May 25	Re: encapsulating directory operations	7	David Brown
27 May 25	Re: encapsulating directory operations	6	Michael S
27 May 25	Re: encapsulating directory operations	1	David Brown
28 May 25	Re: encapsulating directory operations	4	Tim Rentsch
28 May 25	Re: encapsulating directory operations	3	Michael S
28 May 25	Re: encapsulating directory operations	2	Kaz Kylheku
29 May 25	Re: encapsulating directory operations	1	David Brown
28 May 25	Re: encapsulating directory operations	1	Tim Rentsch
20 May 25	Re: encapsulating directory operations	45	Paul Edwards
20 May 25	Re: encapsulating directory operations	41	David Brown
20 May 25	Re: encapsulating directory operations	40	Paul Edwards
20 May 25	Re: encapsulating directory operations	10	Richard Heathfield
20 May 25	Re: encapsulating directory operations	9	Paul Edwards
20 May 25	Re: encapsulating directory operations	8	Richard Heathfield
20 May 25	Re: encapsulating directory operations	2	Paul Edwards
20 May 25	Re: encapsulating directory operations	1	Kaz Kylheku
21 May 25	Re: encapsulating directory operations	1	Lawrence D'Oliveiro
21 May 25	Re: encapsulating directory operations	4	James Kuyper
21 May 25	Re: encapsulating directory operations	3	Richard Heathfield
21 May 25	Re: encapsulating directory operations	2	David Brown
21 May 25	Re: encapsulating directory operations	1	Richard Heathfield
20 May 25	Re: encapsulating directory operations	29	David Brown
20 May 25	Re: encapsulating directory operations	6	Richard Heathfield
20 May 25	Re: encapsulating directory operations	4	Kaz Kylheku
20 May 25	Re: encapsulating directory operations	3	Richard Heathfield
20 May 25	Re: encapsulating directory operations	1	Richard Heathfield
20 May 25	Re: encapsulating directory operations	1	Kaz Kylheku
21 May 25	Re: encapsulating directory operations	1	David Brown
20 May 25	Re: encapsulating directory operations	1	Kaz Kylheku
20 May 25	Re: encapsulating directory operations	2	Richard Heathfield
20 May 25	Re: encapsulating directory operations	1	Richard Heathfield
20 May 25	Re: encapsulating directory operations	6	Paul Edwards
20 May 25	Re: encapsulating directory operations	1	Keith Thompson
21 May 25	Re: encapsulating directory operations	4	Lawrence D'Oliveiro
21 May 25	Re: encapsulating directory operations	3	Paul Edwards
29 May 25	Re: encapsulating directory operations	2	Lawrence D'Oliveiro
30 May09:41	Re: encapsulating directory operations	1	Paul Edwards
20 May 25	Re: encapsulating directory operations	9	Paul Edwards
21 May 25	Re: encapsulating directory operations	8	Richard Heathfield
21 May 25	Re: encapsulating directory operations	7	Paul Edwards
21 May 25	Re: encapsulating directory operations	1	Richard Heathfield
21 May 25	Re: encapsulating directory operations	5	David Brown
21 May 25	Re: encapsulating directory operations	4	Richard Heathfield
21 May 25	Re: encapsulating directory operations	1	Michael S
22 May 25	Re: encapsulating directory operations	2	James Kuyper
22 May 25	Re: encapsulating directory operations	1	Kaz Kylheku
20 May 25	Re: encapsulating directory operations	1	Paul Edwards
21 May 25	Re: encapsulating directory operations	3	David Brown
21 May 25	Re: encapsulating directory operations	2	Paul Edwards
21 May 25	Re: encapsulating directory operations	1	David Brown
21 May 25	Re: encapsulating directory operations	3	Lawrence D'Oliveiro
21 May 25	Re: encapsulating directory operations	2	Paul Edwards
20 May 25	Re: encapsulating directory operations	119	Kaz Kylheku
21 May 25	Re: encapsulating directory operations	3	Janis Papanagnou
22 May 25	Re: encapsulating directory operations	1	Bonita Montero
25 May 25	Re: encapsulating directory operations	1	Tim Rentsch