Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Mon, 15 Dec 2014 18:33:12 +0000
From: Fiedler Roman <Roman.Fiedler@....ac.at>
To: "oss-security@...ts.openwall.com" <oss-security@...ts.openwall.com>
Subject: AW: Re: AW: O_CREAT|O_DIRECTORY on nonexisting file
 expected behaviour?

> Von: Andy Lutomirski [mailto:luto@...capital.net]
>
> On 11/26/2014 11:32 AM, Fiedler Roman wrote:
> >> Von: Matthew Daley [mailto:mattd-
> Lyx97FHGs0pBDgjK7y7TUQ@...lic.gmane.org]
> >>
> >> On Thu, Nov 27, 2014 at 4:28 AM, Fiedler Roman <Roman.Fiedler-
> c/U4JCCwIJZeoWH0uzbU5w@...lic.gmane.org>
> >> wrote:
> >>> (...)
> >>> My test program was:
> >>>
> >>> #include <fcntl.h>
> >>> #include <stdio.h>
> >>> #include <sys/stat.h>
> >>>
> >>> int main(int argc, char **argv) {
> >>>   int fd;
> >>>   struct stat statBuf;
> >>>   int result;
> >>>
> >>>   fd=open("xxx", O_RDWR|O_CREAT|O_DIRECTORY, 0600);
> >>>   result=fstat(fd, &statBuf);
> >>>   if(result) {
> >>>     fprintf(stderr, "Stat failed\n");
> >>>     return(1);
> >>>   }
> >>>   fprintf(stderr, "New element type is %d\n", S_ISDIR(fd));
> >>
> >> FWIW, this should probably be S_ISDIR(statBuf.st_mode).
> >
> > You are completely right, how stupid to miss that. I did not challenge the
> > result, since it was the same as with "ls -al".
> >
> > Also with S_ISDIR(statBuf.st_mode), result is the same, at least on my
> > side.
> >
> >
> >
> > #include <fcntl.h>
> > #include <stdio.h>
> > #include <sys/stat.h>
> >
> > int main(int argc, char **argv) {
> >   int fd;
> >   struct stat statBuf;
> >   int result;
> >
> >   fd=open("xxx", O_RDWR|O_CREAT|O_DIRECTORY, 0600);
> >   result=fstat(fd, &statBuf);
> >   if(result) {
> >     fprintf(stderr, "Stat failed\n");
> >     return(1);
> >   }
> >   fprintf(stderr, "New element type is %d\n", S_ISDIR(statBuf.st_mode));
> >   return(0);
> > }
> >
> >
> > $ ./test
> > New element type is 0
> >
>
> Report it to linux-fsdevel@...r.kernel.org?

As not regarded as security problem, I just reported it as normal bug to devs,
see http://marc.info/?l=linux-fsdevel&m=141866588432265&w=2



Download attachment "smime.p7s" of type "application/pkcs7-signature" (6344 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.