Re: [Bug-tar] opening files with O_NONBLOCK causes problems

bug-tar

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-tar] opening files with O_NONBLOCK causes problems

From:	Eric Blake
Subject:	Re: [Bug-tar] opening files with O_NONBLOCK causes problems
Date:	Fri, 06 Jan 2012 06:14:41 -0700
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:9.0) Gecko/20111222 Thunderbird/9.0

On 01/06/2012 02:47 AM, Joerg Schilling wrote:
> Paul Eggert <address@hidden> wrote:
> 
>> On 01/05/12 14:59, Kamil Dudka wrote:
>>> Is there a known attack on tar that the use of O_NONBLOCK can prevent?  
>>
>> Yes, of course.  For example, the attacker can create a
>> hard link to a fifo while tar is running, which means that
>> root doing a backup will hang indefinitely.
> 
> star does not open FIFO files.....

Yes, it probably does.  From your description, it sounds like star is
using a stat() before open() to avoid FIFOs; but this is a classic
TOCTTOU race where an attacker can replace a regular file with a FIFO,
meaning that star will open FIFO files.

> 
> Why should gtar open FIFO files?

The question is not why an archiver opens a FIFO file, but what it does
after opening a file O_NONBLOCK (the TOCTTOU race is eliminated by
switching stat()/open() to open()/fstat() filtering, and once we have
ascertained that an open fd is not a FIFO, if we can then use fcntl() to
remove the O_NONBLOCK, hopefully that will resolve the situation with DMF).

-- 
Eric Blake   address@hidden    +1-919-301-3266
Libvirt virtualization library http://libvirt.org

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug-tar] opening files with O_NONBLOCK causes problems, Vitezslav Cizek, 2012/01/05
- Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Paul Eggert, 2012/01/05
  - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Kamil Dudka, 2012/01/05
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Paul Eggert, 2012/01/05
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Joerg Schilling, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Eric Blake <=
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Joerg Schilling, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Eric Blake, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Joerg Schilling, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Ron Kerry, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Eric Blake, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Kevin Fox, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Ron Kerry, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Joerg Schilling, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Eric Blake, 2012/01/06
    - Re: [Bug-tar] opening files with O_NONBLOCK causes problems, Paul Eggert, 2012/01/06

Prev by Date: Re: [Bug-tar] opening files with O_NONBLOCK causes problems
Next by Date: Re: [Bug-tar] opening files with O_NONBLOCK causes problems
Previous by thread: Re: [Bug-tar] opening files with O_NONBLOCK causes problems
Next by thread: Re: [Bug-tar] opening files with O_NONBLOCK causes problems
Index(es):
- Date
- Thread