Re^5: opening files: link checking and race conditions


There's more than one way to do things
	PerlMonks

Re^5: opening files: link checking and race conditions

by Eimi Metamorphoumai (Deacon)

on Aug 03, 2005 at 17:57 UTC ( [id://480584]=note: print w/replies, xml )

Need Help??

in reply to Re^4: opening files: link checking and race conditions
in thread opening files: link checking and race conditions

# we have checked for both existence and "type == symlink" on the same
+ stat call,
# so either it's a link, or it's non-existent, or it's safe to write o
+utput
[download]

Or you opened the symlink, someone replaced it with a regular file, and you statted that. Again, you can make it pretty hard to exploit, but you can't get rid of it entirely without either doing it atomically at the time of the open (O_NOFOLLOW) or can check on the filehandle you actually have open (and not what that name points to now).

What might work (but I'm not at all certain) would be to stat the filehandle you have open, stat the file you thought you opened, and confirm that they have the same inode and that it isn't a symlink.

Comment on Re^5: opening files: link checking and race conditions Select or Download Code

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://480584]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others sharing their wisdom with the Monastery: (2)

As of 2024-04-26 03:37 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found