1673771 - Sandboxing will need to support a subset of `statx`

Status: NEW

(Core :: Security: Process Sandboxing, defect, P5)

Description

[Jed Davis [:jld] ⟨⏰|UTC-8⟩ ⟦he/him⟧]

The relatively new system call statx seems to be the only way for 32-bit platforms to get 64-bit timestamps for files, either by path (stat/lstat) or file descriptor (fstat). Its interface is basically an extension of fstatat, complete with AT_EMPTY_PATH and its problems (see the last two paragraphs of bug 1673202 comment #2).

If I understand correctly, glibc will still fall back to fstatat (which we handle) if statx fails with ENOSYS (which it does, in our sandboxes); this obviously doesn't handle post-2038 dates, but if that's the only problem, this may not be urgent for us.

Comment 1

[Xi Ruoyao]

https://git.kernel.org/pub/scm/linux/kernel/git/vfs/vfs.git/commit/?h=vfs.misc&id=0ef625bba6fb2bc0c8ed2aab9524fdf423f67dd5 will help once it's mainlined (maybe in Linux 6.11).