Subject: Re: code to store the path of the executable in struct proc...
To: Christos Zoulas <christos@zoulas.com>
From: Jason Thorpe <thorpej@shagadelic.org>
List: tech-kern
Date: 09/27/2007 08:31:54
On Sep 27, 2007, at 7:07 AM, Christos Zoulas wrote:

> OS/X has completely broken the directory security model by directly
> exposing the inodes of each mount as a filesystem.

If you're talking about /.vol/... (a.k.a. "volfs")...

Some aspects of the security issues surrounding volfs were addressed  
some time ago.  However, in Leopard, volfs as a file system is  
completely gone, and volfs-style lookups (i.e. "/.vol/volume-id/file- 
id") now work by obtaining the vnode using VFS_VGET(), getting the  
path / a path for the file (using the same mechanism that the  
F_GETPATH fcntl uses), and then doing a normal forward lookup on the  
file, thus completely addressing any issues with the directory  
security model.

-- thorpej