Re: [PATCH] netns: avoid directory traversal (was: ip netns: Make sure netns name is sane)

On Mon, 10 Jul 2017 14:08:31 +0200 Matteo Croce wrote: > Hi Phil, > > I noticed that your patch still leaves an uncovered scenario, the one where > the > namespace name is "." or "..". > Calling 'ip netns del ..' will remove /var/run which is a symlink to /run on > most

Re: [PATCH] netns: avoid directory traversal (was: ip netns: Make sure netns name is sane)

Hi Matteo, On Mon, Jul 10, 2017 at 02:08:31PM +0200, Matteo Croce wrote: > I noticed that your patch still leaves an uncovered scenario, the one where > the > namespace name is "." or "..". > Calling 'ip netns del ..' will remove /var/run which is a symlink to /run on > most systems causing some

[PATCH] netns: avoid directory traversal (was: ip netns: Make sure netns name is sane)

Hi Phil, I noticed that your patch still leaves an uncovered scenario, the one where the namespace name is "." or "..". Calling 'ip netns del ..' will remove /var/run which is a symlink to /run on most systems causing some daemons, eg. dbus, to fail. ip netns doesn't validate input, allowing