git.kaiwu.me - nginx.git/commit

author	Andrey Belov <defan@nginx.com>
	Mon, 13 Feb 2012 16:29:04 +0000 (16:29 +0000)
committer	Andrey Belov <defan@nginx.com>
	Mon, 13 Feb 2012 16:29:04 +0000 (16:29 +0000)
commit	bd1e719bf9c4bc58076e7b52e87be645c9b803f5
tree	f1c94ff9e91e2d2594ba9d1ae7f92120cca36722	tree \| snapshot
parent	32c8df44d5f53026d92ec24bcf4c864359395e55	commit \| diff

Added disable_symlinks directive.

To completely disable symlinks (disable_symlinks on)
we use openat(O_NOFOLLOW) for each path component
to avoid races.

To allow symlinks with the same owner (disable_symlinks if_not_owner),
use openat() (followed by fstat()) and fstatat(AT_SYMLINK_NOFOLLOW),
and then compare uids between fstat() and fstatat().

As there is a race between openat() and fstatat() we don't
know if openat() in fact opened symlink or not. Therefore,
we have to compare uids even if fstatat() reports the opened
component isn't a symlink (as we don't know whether it was
symlink during openat() or not).

Default value is off, i.e. symlinks are allowed.

src/core/ngx_core.h		diff \| blob \| history
src/core/ngx_open_file_cache.c		diff \| blob \| history
src/core/ngx_open_file_cache.h		diff \| blob \| history
src/http/ngx_http_core_module.c		diff \| blob \| history
src/http/ngx_http_core_module.h		diff \| blob \| history