From patchwork Thu Apr 23 16:04:03 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Vivien Kraus X-Patchwork-Id: 133834 Return-Path: X-Original-To: patchwork@sourceware.org Delivered-To: patchwork@sourceware.org Received: from vm01.sourceware.org (localhost [127.0.0.1]) by sourceware.org (Postfix) with ESMTP id 541174BBCD89 for ; Thu, 23 Apr 2026 16:07:35 +0000 (GMT) DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 541174BBCD89 Authentication-Results: sourceware.org; dkim=pass (2048-bit key, secure) header.d=planete-kraus.eu header.i=@planete-kraus.eu header.a=rsa-sha1 header.s=albinoniA header.b=ViL1o/pJ X-Original-To: libc-alpha@sourceware.org Delivered-To: libc-alpha@sourceware.org Received: from planete-kraus.eu (planete-kraus.eu [IPv6:2a00:5881:4008:2810::309]) by sourceware.org (Postfix) with ESMTPS id 47DEE4BBC0E9 for ; Thu, 23 Apr 2026 16:05:51 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 47DEE4BBC0E9 Authentication-Results: sourceware.org; dmarc=pass (p=reject dis=none) header.from=planete-kraus.eu Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=planete-kraus.eu ARC-Filter: OpenARC Filter v1.0.0 sourceware.org 47DEE4BBC0E9 Authentication-Results: server2.sourceware.org; arc=none smtp.remote-ip=2a00:5881:4008:2810::309 ARC-Seal: i=1; a=rsa-sha256; d=sourceware.org; s=key; t=1776960351; cv=none; b=P+w2J/maB3TUk2cVKSbpsd7NANqZ3UFu1Eb9jmkrFgZ8HUrA386udEwC1gUPbAFVTgaReTEgUqO9J1SOA+duFRMbO5FjMoJu1eWnCFDa3ywlX2yaRAk4l/V38CmYuQOiCsMLxqeqtnYBuS6WkLpE34ZVjCXinuTh4807OOnp/jM= ARC-Message-Signature: i=1; a=rsa-sha256; d=sourceware.org; s=key; t=1776960351; c=relaxed/simple; bh=t32QflExz4/Co/8s+Z2fcpALgYqaCVwm0JHnfvCWjTQ=; h=DKIM-Signature:From:To:Subject:Date:Message-ID:MIME-Version; b=AdPomwRP+ixYQgu9lDfHlbGuO242gfDAmtETopFHnV2lz44bpFujso0Sf0mX/IpDskE/FcfAVjo90WyJ3vi0mRwcaV1nWpdjDzNGzQNxVFwhvOvOjgtrbyOLB9re287hN9tS5Il6QWg05pJAaToQC3aLm7fyf0P5hqb59BEAjwM= ARC-Authentication-Results: i=1; server2.sourceware.org DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org 47DEE4BBC0E9 Received: from planete-kraus.eu (localhost [127.0.0.1]) by planete-kraus.eu (OpenSMTPD) with ESMTP id 3d1a8f6a; Thu, 23 Apr 2026 16:05:42 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=planete-kraus.eu; h=from :to:cc:subject:date:message-id:in-reply-to:references :mime-version:content-transfer-encoding; s=albinoniA; bh=Nn0ct0d PAhW1FfEqoLRQOR7FT74=; b=ViL1o/pJjtAgzbz56cwhYLmNu7ODUJbtBLcyDVm Io/mUV9zn2cJL9Eaa5COj0zK5EIPrma+LzfCX1t2Uco6+WBeWqX/Sp5y3Yc6fcMO hR06z2uPUy8qZHmKzo8OU8sdfNrQwmJ8hJH8YsZ50lQbk1QMO3dyLCCmEauQIbTL zFZmL34dPPCOpxWMTiiptaLI8+nd+l5bo0BdjXX+MAnZsJAJdLPGIo5jWcvpeqhZ YVId1st+2h2Wi9iQuj/TSOgvKTN8wq6XxfwQksrL1fF0uBgPRFTEWn+SgrtQSRcn Vky/xIabdQfZIKz7vWpFfXuGuvcqnzBD3Ho8OmBN9hF6yeg== Received: by planete-kraus.eu (OpenSMTPD) with ESMTPSA id 1e25998a (TLSv1.3:TLS_CHACHA20_POLY1305_SHA256:256:NO); Thu, 23 Apr 2026 16:05:40 +0000 (UTC) From: Vivien Kraus To: adhemerval.zanella@linaro.org, libc-alpha@sourceware.org Cc: Vivien Kraus Subject: [PATCH v22 5/9] posix: do not allow option name translations for secure programs Date: Thu, 23 Apr 2026 18:04:03 +0200 Message-ID: <0f4a0180b879bfd9a05c841af1e425a52296f1c0.1776957778.git.vivien@planete-kraus.eu> X-Mailer: git-send-email 2.52.0 In-Reply-To: References: MIME-Version: 1.0 X-Spam-Status: No, score=-12.4 required=5.0 tests=BAYES_00, DKIM_SIGNED, DKIM_VALID, DKIM_VALID_AU, DKIM_VALID_EF, GIT_PATCH_0, JMQ_SPF_NEUTRAL, SPF_HELO_PASS, SPF_PASS, TXREP autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on sourceware.org X-BeenThere: libc-alpha@sourceware.org X-Mailman-Version: 2.1.30 Precedence: list List-Id: Libc-alpha mailing list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: libc-alpha-bounces~patchwork=sourceware.org@sourceware.org SETUID / SETGID / AT_SECURE programs should not accept translated names, so that the programmer knows exactly how the program can be invoked. --- posix/getopt.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/posix/getopt.c b/posix/getopt.c index ae823eec29..399abeea74 100644 --- a/posix/getopt.c +++ b/posix/getopt.c @@ -199,7 +199,7 @@ match_translated_option_name (char *(*translate) (const char *, const char *, const char *translated = opt_name; char *translation_buffer = NULL; bool matches = false; - if (translate != NULL) + if (translate != NULL && !__libc_enable_secure) translated = translate (opt_textdomain, translation_context, opt_name, &translation_buffer);