Race-condition when reading file content can access device nodes in reverse mode #187
Comments
slackner
added a commit
to slackner/gocryptfs
that referenced
this issue
Dec 11, 2017
Steps to reproduce: * Create a regular reverse mount point * Create a file "test" in the original directory * Access the corresponding encrypted directory in the mount point (ls <encrypted dir>) * Quickly delete the file in the original data - instead create a device node * Access the file again, it will access the device node and attempt to read from it Fixes rfjakob#187
rfjakob
pushed a commit
that referenced
this issue
Dec 11, 2017
Steps to reproduce: * Create a regular reverse mount point * Create a file "test" in the original directory * Access the corresponding encrypted directory in the mount point (ls <encrypted dir>) * Quickly delete the file in the original data - instead create a device node * Access the file again, it will access the device node and attempt to read from it Fixes #187
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The general idea is similar to issue #165 that is already mostly fixed.
Steps to reproduce:
ls <encrypted dir>)In practice the impact of this possible attack is relatively small because step 4 already requires root permissions. Nevertheless, if I don't miss anything the problem can be easily avoided by checking the file type using the handle after the
OpenNofollowcall. Actually, there already is anFstatcall in the corresponding function.The text was updated successfully, but these errors were encountered: