Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Load plugins strictly by absolute paths #14034

Merged
merged 1 commit into from
Nov 22, 2022
Merged

Load plugins strictly by absolute paths #14034

merged 1 commit into from
Nov 22, 2022

Conversation

vurusovs
Copy link
Contributor

@vurusovs vurusovs commented Nov 16, 2022
edited
Loading

Ignore LD_LIBRARY_PATH / PATH or other unsafe places for security purposes

Tickets:

  • #96201

@vurusovs vurusovs requested a review from a team as a code owner November 16, 2022 12:08
@vurusovs vurusovs removed the request for review from a team November 16, 2022 12:08
@ilyachur ilyachur added this to the 2022.3 milestone Nov 16, 2022
@ilyachur ilyachur self-assigned this Nov 16, 2022
@ilya-lavrenov ilya-lavrenov self-assigned this Nov 16, 2022
@vurusovs vurusovs force-pushed the vu/load_plugins_by_absolute_path branch 3 times, most recently from 2d13d1f to f730f8a Compare November 19, 2022 11:33
@ilyachur
Copy link
Contributor

In general LGTM, one question about shlwapi library linking.

@vurusovs
Load plugin libraries safely
4753557 
For security purposes load plugin libraries only by absolute path to prevent
search from environment variables, working directory etc.
@vurusovs vurusovs force-pushed the vu/load_plugins_by_absolute_path branch from f730f8a to 4753557 Compare November 21, 2022 08:10
@ilyachur ilyachur added the category: inference OpenVINO Runtime library - Inference label Nov 22, 2022
@ilyachur ilyachur merged commit 97878de into openvinotoolkit:master Nov 22, 2022
@vurusovs vurusovs deleted the vu/load_plugins_by_absolute_path branch November 22, 2022 10:03
@vurusovs vurusovs mentioned this pull request Nov 22, 2022
Closed
Lyamin-Roman pushed a commit to Lyamin-Roman/openvino that referenced this pull request Nov 22, 2022
@vurusovs @Lyamin-Roman
Load plugin libraries safely (openvinotoolkit#14034)
98a9b50 
For security purposes load plugin libraries only by absolute path to prevent
search from environment variables, working directory etc.
This was referenced Nov 23, 2022
Merged
Merged
vurusovs added a commit to vurusovs/openvino that referenced this pull request Nov 30, 2022
@vurusovs
Revert "Load plugin libraries safely (openvinotoolkit#14034)"
e3ccc9d 
This reverts commit 97878de.
ilya-lavrenov pushed a commit that referenced this pull request Nov 30, 2022
@vurusovs
Revert loading of plugins strictly by absolute paths (#14333)
0e9f2bb 
* Revert "Load plugin libraries safely (#14034)"

This reverts commit 97878de.

* Revert "Plugins absolute path loading leftovers (#14299)"

This reverts commit 9ba304d.

* Revert "Add `loadSOSafelyThrowIfRelativePath` test (#14311)"

This reverts commit 3e9f185.

* Revert "Filter out samples tests on GNA for Debian (#14195)"

This reverts commit 57e630b.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ilya-lavrenov ilya-lavrenov ilya-lavrenov left review comments

@ilyachur ilyachur ilyachur approved these changes

Assignees

@ilya-lavrenov ilya-lavrenov

@ilyachur ilyachur

Labels
category: inference OpenVINO Runtime library - Inference
Projects
None yet
Milestone
2022.3
Development

Successfully merging this pull request may close these issues.
3 participants
@vurusovs @ilyachur @ilya-lavrenov