mirror/nginx
1
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2025-01-19 01:42:58 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
The official NGINX Open Source repository.
3,940 Commits 21 Branches 568 Tags 92 MiB
C 97.6%
Vim Script 1.8%
XS 0.4%
Perl 0.1%
bd1e719bf9
Go to file
Andrey Belov bd1e719bf9 Added disable_symlinks directive. 
To completely disable symlinks (disable_symlinks on)
we use openat(O_NOFOLLOW) for each path component
to avoid races.

To allow symlinks with the same owner (disable_symlinks if_not_owner),
use openat() (followed by fstat()) and fstatat(AT_SYMLINK_NOFOLLOW),
and then compare uids between fstat() and fstatat().

As there is a race between openat() and fstatat() we don't
know if openat() in fact opened symlink or not.  Therefore,
we have to compare uids even if fstatat() reports the opened
component isn't a symlink (as we don't know whether it was
symlink during openat() or not).

Default value is off, i.e. symlinks are allowed.
2012-02-13 16:29:04 +00:00
auto Added openat()/fstatat(). 2012-02-13 16:13:21 +00:00
conf Added the HTTPS fastcgi_param to fastcgi.conf. 2011-12-25 19:15:56 +00:00
contrib nginx-0.3.55-RELEASE import 2006-07-28 15:16:17 +00:00
docs nginx-1.1.14-RELEASE 2012-01-30 13:52:10 +00:00
misc Update OpenSSL and PCRE used for win32 builds. 2012-01-30 13:47:03 +00:00
src Added disable_symlinks directive. 2012-02-13 16:29:04 +00:00
.hgtags release-1.1.14 tag 2012-01-30 13:52:35 +00:00