Skip to content

fix(exec): match bare * wildcard in allowlist entries#25250

Merged
steipete merged 2 commits intoopenclaw:mainfrom
widingmarcus-cyber:fix/exec-allowlist-bare-wildcard-25082
Feb 24, 2026
Merged

fix(exec): match bare * wildcard in allowlist entries#25250
steipete merged 2 commits intoopenclaw:mainfrom
widingmarcus-cyber:fix/exec-allowlist-bare-wildcard-25082

Conversation

@widingmarcus-cyber
Copy link
Copy Markdown
Contributor

@widingmarcus-cyber widingmarcus-cyber commented Feb 24, 2026
edited by greptile-apps bot
Loading

Summary

Fixes #25082.

The matchAllowlist() function in exec-command-resolution.ts skips any allowlist pattern that does not contain a path separator (/, \, or ~). When a user adds a bare * wildcard via openclaw approvals allowlist add --gateway "*", the pattern is stored correctly in exec-approvals.json but is silently skipped at runtime, causing every command to fail with "exec denied: allowlist miss".

Even if the pattern reached the glob matcher, a single * maps to the regex [^/]* (matches only within one path segment), so it would still fail against absolute resolved paths like /usr/bin/python3.

Root Cause

// Before (line ~235 of exec-command-resolution.ts)
const hasPath = pattern.includes("/") || pattern.includes("\\") || pattern.includes("~");
if (!hasPath) {
  continue;  // bare "*" is skipped here
}

Fix

Handle bare * as a special case that matches any resolved executable path, short-circuiting before the path-presence check and glob expansion:

if (pattern === "*") {
  return entry;  // match everything
}

Tests Added

  1. matchAllowlist unit tests — bare * matches against /opt/homebrew/bin/rg and /usr/bin/python3
  2. evaluateShellAllowlist integration test — bare * satisfies the full shell allowlist pipeline with a real temp binary on PATH

All 38 existing allowlist tests continue to pass.

Greptile Summary

Added special-case handling for bare * wildcard in matchAllowlist() to match any executable path, fixing the issue where openclaw approvals allowlist add --gateway "*" stored the pattern but silently skipped it at runtime.

  • Bare * now short-circuits before the path-separator check and glob expansion
  • Without this fix, * would be skipped by hasPath check or fail in glob matcher (converts to [^/]* which doesn't match absolute paths)
  • Added 2 unit tests for matchAllowlist() with different resolved paths
  • Added 1 integration test for evaluateShellAllowlist() with a real temp binary

Confidence Score: 5/5

  • This PR is safe to merge - it fixes a specific bug with a minimal, well-tested change
  • Score reflects: (1) targeted fix with clear rationale, (2) excellent test coverage including unit and integration tests, (3) proper placement before the hasPath check, (4) all existing tests pass, (5) no security concerns - the feature is intentional and requires explicit user action
  • No files require special attention

Last reviewed commit: 8717ea4

@widingmarcus-cyber widingmarcus-cyber force-pushed the fix/exec-allowlist-bare-wildcard-25082 branch from 8717ea4 to b99d229 Compare February 24, 2026 09:48
This was referenced Feb 24, 2026
Closed
Closed
Closed
Closed
widingmarcus-cyber and others added 2 commits February 24, 2026 14:18
@widingmarcus-cyber @steipete
fix(exec): match bare * wildcard in allowlist entries (openclaw#25082)
08f4c08 
The matchAllowlist() function skipped patterns without path separators
(/, \, ~), causing a bare "*" wildcard entry to never reach the glob
matcher. Since glob's single * maps to [^/]*, it would also fail against
absolute paths. Handle bare "*" as a special case that matches any
resolved executable path.

Closes openclaw#25082
@steipete
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
15ecd26 
…widingmarcus-cyber)
@steipete steipete force-pushed the fix/exec-allowlist-bare-wildcard-25082 branch from b99d229 to 15ecd26 Compare February 24, 2026 14:20
@steipete steipete merged commit 07f653f into openclaw:main Feb 24, 2026
@steipete
Copy link
Copy Markdown
Contributor

steipete commented Feb 24, 2026

Landed via temp rebase onto main.

  • Gate: pnpm check
  • Targeted tests: pnpm test src/infra/exec-approvals.test.ts
  • Land commit: 15ecd26
  • Merge commit: 07f653f

Thanks @widingmarcus-cyber!

@github-actions github-actions bot mentioned this pull request Feb 24, 2026
Open
obviyus pushed a commit to Glucksberg/OpenClaw that referenced this pull request Feb 24, 2026
@steipete @obviyus
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
4dfcb0e 
…widingmarcus-cyber)
margulans pushed a commit to margulans/Neiron-AI-assistant that referenced this pull request Feb 25, 2026
@steipete @margulans
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
f774d07 
…widingmarcus-cyber)
Jackson3195 pushed a commit to Jackson3195/openclaw-with-a-personal-touch that referenced this pull request Feb 25, 2026
@steipete @Jackson3195
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
83017ec 
…widingmarcus-cyber)
kevinWangSheng pushed a commit to kevinWangSheng/openclaw that referenced this pull request Feb 26, 2026
@steipete
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
48cdaa9 
…widingmarcus-cyber)
kevinWangSheng pushed a commit to kevinWangSheng/openclaw that referenced this pull request Feb 26, 2026
@steipete
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
28703eb 
…widingmarcus-cyber)
brianleach pushed a commit to brianleach/openclaw that referenced this pull request Feb 26, 2026
@steipete @brianleach
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
7841a49 
…widingmarcus-cyber)
@arjunaskykok arjunaskykok mentioned this pull request Feb 26, 2026
Closed
2 tasks
execute008 pushed a commit to execute008/openclaw that referenced this pull request Feb 27, 2026
@steipete @execute008
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
74b1ac7 
…widingmarcus-cyber)
r4jiv007 pushed a commit to r4jiv007/openclaw that referenced this pull request Feb 28, 2026
@steipete @r4jiv007
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
ac08437 
…widingmarcus-cyber)
@github-actions github-actions bot mentioned this pull request Mar 1, 2026
Closed
6 tasks
hughdidit pushed a commit to hughdidit/DAISy-Agency that referenced this pull request Mar 1, 2026
@steipete @github-actions
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
265dbdf 
…widingmarcus-cyber)

(cherry picked from commit 07f653f)

# Conflicts:
#	CHANGELOG.md
#	src/infra/exec-command-resolution.ts
hughdidit pushed a commit to hughdidit/DAISy-Agency that referenced this pull request Mar 3, 2026
@steipete @github-actions
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
1d42c74 
…widingmarcus-cyber)

(cherry picked from commit 07f653f)

# Conflicts:
#	CHANGELOG.md
#	src/infra/exec-command-resolution.ts
joelnishanth pushed a commit to joelnishanth/openclaw that referenced this pull request Mar 3, 2026
@steipete @joelnishanth
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
502cbac 
…widingmarcus-cyber)
zooqueen pushed a commit to hanzoai/bot that referenced this pull request Mar 6, 2026
@steipete
fix: polish bare wildcard allowlist handling (openclaw#25250) (thanks @…
767b093 
…widingmarcus-cyber)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

size: XS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[Bug]: exec allowlist wildcard * pattern stored correctly but never matches at runtime (2026.2.22)

2 participants

@widingmarcus-cyber @steipete