github · lpcox · Feb 10, 2026 · Feb 10, 2026 · Feb 10, 2026 · Feb 10, 2026
diff --git a/containers/agent/one-shot-token/.gitignore b/containers/agent/one-shot-token/.gitignore
@@ -0,0 +1 @@
+*.so
diff --git a/containers/agent/one-shot-token/one-shot-token.c b/containers/agent/one-shot-token/one-shot-token.c
@@ -62,8 +62,12 @@ static int tokens_initialized = 0;
 /* Pointer to the real getenv function */
 static char *(*real_getenv)(const char *name) = NULL;
 
+/* Pointer to the real secure_getenv function */
+static char *(*real_secure_getenv)(const char *name) = NULL;
+
 /* pthread_once control for thread-safe initialization */
 static pthread_once_t getenv_init_once = PTHREAD_ONCE_INIT;
+static pthread_once_t secure_getenv_init_once = PTHREAD_ONCE_INIT;
 
 /* Initialize the real getenv pointer (called exactly once via pthread_once) */
 static void init_real_getenv_once(void) {
@@ -75,6 +79,15 @@ static void init_real_getenv_once(void) {
     }
 }
 
+/* Initialize the real secure_getenv pointer (called exactly once via pthread_once) */
+static void init_real_secure_getenv_once(void) {
+    real_secure_getenv = dlsym(RTLD_NEXT, "secure_getenv");
+    /* Note: secure_getenv may not be available on all systems, so we don't abort if NULL */
+    if (real_secure_getenv == NULL) {
+        fprintf(stderr, "[one-shot-token] WARNING: secure_getenv not available, falling back to getenv\n");
+    }
+}
+
 /**
  * Initialize the token list from AWF_ONE_SHOT_TOKENS environment variable
  * or use defaults if not set. This is called once at first getenv() call.
@@ -169,6 +182,11 @@ static void init_real_getenv(void) {
     pthread_once(&getenv_init_once, init_real_getenv_once);
 }
 
+/* Ensure real_secure_getenv is initialized (thread-safe) */
+static void init_real_secure_getenv(void) {
+    pthread_once(&secure_getenv_init_once, init_real_secure_getenv_once);
-static void init_real_secure_getenv(void) {
-    pthread_once(&secure_getenv_init_once, init_real_secure_getenv_once);
+static void init_real_secure_getenv(void) {
+    /* Initialize the real secure_getenv function pointer once */
+    pthread_once(&secure_getenv_init_once, init_real_secure_getenv_once);
+
+    /*
+     * Ensure the sensitive token list is initialized before any secure_getenv()
+     * logic relies on it. This covers the case where secure_getenv() is called
+     * before getenv(), which would otherwise leave num_tokens == 0 and cause
+     * get_token_index() to always return -1.
+     */
+    pthread_mutex_lock(&token_mutex);
+    if (!tokens_initialized) {
+        init_token_list();
+    }
+    pthread_mutex_unlock(&token_mutex);
-static void init_real_secure_getenv(void) {
-    pthread_once(&secure_getenv_init_once, init_real_secure_getenv_once);
+static void init_real_secure_getenv(void) {
+    /* Initialize the real secure_getenv function pointer once */
+    pthread_once(&secure_getenv_init_once, init_real_secure_getenv_once);
+
+    /*
+     * Ensure the sensitive token list is initialized before any secure_getenv()
+     * logic relies on it. This covers the case where secure_getenv() is called
+     * before getenv(), which would otherwise leave num_tokens == 0 and cause
+     * get_token_index() to always return -1.
+     */
+    pthread_mutex_lock(&token_mutex);
+    if (!tokens_initialized) {
+        init_token_list();
+    }
+    pthread_mutex_unlock(&token_mutex);
+}
+
 /* Check if a variable name is a sensitive token */
 static int get_token_index(const char *name) {
     if (name == NULL) return -1;