spire icon indicating copy to clipboard operation
spire copied to clipboard

Published 20 hours ago verified publisher icon spiffe

Unix path selector can be relative to either the host or a container image

Open evan2645 opened this issue 4 years ago • 3 comments

The path selector in the unix workload attestor is generated by reading the link from /proc/PID/exe. The value of this link does not consider namespacing, and appears as being relative to the namespace in which the binary is executing.

We should choose one or the other, or deprecate the path selector altogether.

Please see https://github.com/spiffe/spire/issues/1403 for more information.

evan2645 avatar Mar 05 '20 23:03 evan2645

This issue is stale because it has been open for 365 days with no activity.

github-actions[bot] avatar Jun 09 '23 22:06 github-actions[bot]

This issue was closed because it has been inactive for 30 days since being marked as stale.

github-actions[bot] avatar Jul 10 '23 22:07 github-actions[bot]

Still relevant.

azdagron avatar Feb 22 '24 19:02 azdagron