Introduced in e322f8960d4a04f7ad6c89551dc5a10f75420604; this is most evident when trying to do something like sudo pkill; pkill is a symbolic link to pgrep, but pgrep does care how it was invoked.
Easy fix is of course to revert the commit, but putting the canonicalization step before permission check had a purpose (and it was mostly to deal with directories being symlinks, not the actual commands).
We should probably also add a few regression tests for this situation.
Introduced in e322f8960d4a04f7ad6c89551dc5a10f75420604; this is most evident when trying to do something like
sudo pkill
; pkill is a symbolic link topgrep
, but pgrep does care how it was invoked.Easy fix is of course to revert the commit, but putting the canonicalization step before permission check had a purpose (and it was mostly to deal with directories being symlinks, not the actual commands).
We should probably also add a few regression tests for this situation.