Y
Hacker News
new
|
ask
|
show
|
jobs
by
GoblinSlayer
1798 days ago
Why not treat open(path) as openat(AT_FDCWD,path)?
1 comments
wizzwizz4
1798 days ago
Because cap_enter() blocks that too.
link
remram
1798 days ago
Specifically, it blocks going higher than the handle, so using either absolute paths or paths with a ".." component.
Not sure if anything changes for symlinks.
link