fsdev-proxy-helper: avoid TOC/TOU race

There is a minor time of check/time of use race between statfs and chroot. It can be fixed easily by stat-ing the root after it has been changed. Signed-off-by: N Paolo Bonzini <pbonzini@redhat.com> Reviewed-by: N Greg Kurz <gkurz@linux.vnet.ibm.com> Signed-off-by: N Greg Kurz <gkurz@linux.vnet.ibm.com>

fsdev-proxy-helper: avoid TOC/TOU race
There is a minor time of check/time of use race between statfs and chroot. It can be fixed easily by stat-ing the root after it has been changed. Signed-off-by: N Paolo Bonzini <pbonzini@redhat.com> Reviewed-by: N Greg Kurz <gkurz@linux.vnet.ibm.com> Signed-off-by: N Greg Kurz <gkurz@linux.vnet.ibm.com>
49f817ca · Paolo Bonzini · Greg Kurz · 71448751 · 49f817ca
隐藏空白更改
内联并排

Showing with 10 addition and 10 deletion

fsdev/virtfs-proxy-helper.c fsdev/virtfs-proxy-helper.c +10 -10

未找到文件。
--- a/fsdev/virtfs-proxy-helper.c
+++ b/fsdev/virtfs-proxy-helper.c
@@ -1128,10 +1128,19 @@ int main(int argc, char **argv)
        }
    }

+    if (chdir("/") < 0) {
+        do_perror("chdir");
+        goto error;
+    }
+    if (chroot(rpath) < 0) {
+        do_perror("chroot");
+        goto error;
+    }
+
    get_version = false;
 #ifdef FS_IOC_GETVERSION
    /* check whether underlying FS support IOC_GETVERSION */
-    retval = statfs(rpath, &st_fs);
+    retval = statfs("/", &st_fs);
    if (!retval) {
        switch (st_fs.f_type) {
        case EXT2_SUPER_MAGIC:
@@ -1144,16 +1153,7 @@ int main(int argc, char **argv)
    }
 #endif

-    if (chdir("/") < 0) {
-        do_perror("chdir");
-        goto error;
-    }
-    if (chroot(rpath) < 0) {
-        do_perror("chroot");
-        goto error;
-    }
    umask(0);
-
    if (init_capabilities() < 0) {
        goto error;
    }