Re: [PATCH v2 01/23] iotests: Introduce $SOCK

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 01/23] iotests: Introduce $SOCK_DIR

From:	Eric Blake
Subject:	Re: [PATCH v2 01/23] iotests: Introduce $SOCK_DIR
Date:	Fri, 18 Oct 2019 08:30:16 -0500
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.1.0

On 10/18/19 4:03 AM, Max Reitz wrote:

   -if [ ! -e "$TEST_DIR" ]; then
-        mkdir "$TEST_DIR"
+tmp_sock_dir=false
+if [ -z "$SOCK_DIR" ]; then
+    SOCK_DIR=$(mktemp -d)
+    tmp_sock_dir=true
   fi
+mkdir -p "$SOCK_DIR" || _init_error 'Failed to create SOCK_DIR'


Thinking about this again: if the user passed in a name, we probably
want to use it no matter whether the directory already exists (mkdir -p
makes sense: either the directory did not exist, or the user is in
charge of passing us a directory that they already secured).  But if we
generate our own name in a world-writable location in /tmp, using mkdir
-p means someone else can race us to the creation of the directory, and
potentially populate it in a way to cause us a security hole while we
execute our tests.


I don’t quite see how this is a security hole.  mktemp -d creates the
directory, so noone can race us.

Aha - I confused 'mktemp -u' (necessary for creating a socket name) and'mktemp -d' (for directories). With that confusion cleared up, yes, thedirectory is safely created (or else the burden is on the caller), so:


Reviewed-by: Eric Blake <address@hidden>

--
Eric Blake, Principal Software Engineer
Red Hat, Inc.           +1-919-301-3226
Virtualization:  qemu.org | libvirt.org

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH v2 00/23] iotests: Add and use $SOCK_DIR, Max Reitz, 2019/10/17
- [PATCH v2 01/23] iotests: Introduce $SOCK_DIR, Max Reitz, 2019/10/17
  - Re: [PATCH v2 01/23] iotests: Introduce $SOCK_DIR, Eric Blake, 2019/10/17
    - Re: [PATCH v2 01/23] iotests: Introduce $SOCK_DIR, Max Reitz, 2019/10/18
    - Re: [PATCH v2 01/23] iotests: Introduce $SOCK_DIR, Eric Blake <=
- [PATCH v2 02/23] iotests.py: Store socket files in $SOCK_DIR, Max Reitz, 2019/10/17
- [PATCH v2 03/23] iotests.py: Add @base_dir to FilePaths etc., Max Reitz, 2019/10/17
- [PATCH v2 04/23] iotests: Filter $SOCK_DIR, Max Reitz, 2019/10/17
  - Re: [PATCH v2 04/23] iotests: Filter $SOCK_DIR, Thomas Huth, 2019/10/17
- [PATCH v2 06/23] iotests/083: Create socket in $SOCK_DIR, Max Reitz, 2019/10/17
- [PATCH v2 05/23] iotests: Let common.nbd create socket in $SOCK_DIR, Max Reitz, 2019/10/17
  - Re: [PATCH v2 05/23] iotests: Let common.nbd create socket in $SOCK_DIR, Thomas Huth, 2019/10/17
- [PATCH v2 07/23] iotests/140: Create socket in $SOCK_DIR, Max Reitz, 2019/10/17
- [PATCH v2 08/23] iotests/143: Create socket in $SOCK_DIR, Max Reitz, 2019/10/17
- [PATCH v2 10/23] iotests/181: Create socket in $SOCK_DIR, Max Reitz, 2019/10/17

Prev by Date: Re: [PATCH v5 4/5] tests/qapi-schema: Cover feature documentation comments
Next by Date: [PATCH 0/4] mc146818rtc: Allow call object_initialize(MC146818_RTC) instead of rtc_init()
Previous by thread: Re: [PATCH v2 01/23] iotests: Introduce $SOCK_DIR
Next by thread: [PATCH v2 02/23] iotests.py: Store socket files in $SOCK_DIR
Index(es):
- Date
- Thread