sssd.git/src/tests/check_and_open-tests.c, branch simo Unnamed repository; edit this file to name it for gitweb. Securely set umask when using mkstemp 2011-12-19T16:38:35+00:00 Stephen Gallagher sgallagh@redhat.com 2011-12-16T16:13:55+00:00 69420a154fc9fb8b04f437125a6a0604b26b1292 Coverity 12394, 12395, 12396, 12397 and 12398 
Coverity 12394, 12395, 12396, 12397 and 12398
Add option to follow symlinks to check_file() 2011-10-13T17:18:14+00:00 Jakub Hrozek jhrozek@redhat.com 2011-10-05T15:52:06+00:00 fe9cea3352b919f81ead0de5487ed593325b2ef0 






Print correct return code
2010-06-14T20:54:31+00:00

Jakub Hrozek
jhrozek@redhat.com

2010-06-10T09:27:47+00:00

095a719ae079ce5f8c28440e358df963eeec0618

Fixes: #535





Fixes: #535







Protect against check-and-open race conditions
2010-04-06T18:33:43+00:00

Stephen Gallagher
sgallagh@redhat.com

2010-04-01T20:12:29+00:00

55a0f220ba8b35d7ea8e47ad19babdb05dd2bbe9

There is a small window between running lstat() on a filename and
opening it where it's possible for the file to have been modified.
We were protecting against this by saving the stat data from the
original file and verifying that it was the same file (by device
and inode) when we opened it again, but this is an imperfect
solution, as it is still possible for an attacker to modify the
permissions during this window.

It is much better to simply open the file and test on the active
file descriptor.

Resolves https://fedorahosted.org/sssd/ticket/425 incidentally, as
without the initial lstat, we are implicitly accepting symlinks
and only verifying the target file.





There is a small window between running lstat() on a filename and
opening it where it's possible for the file to have been modified.
We were protecting against this by saving the stat data from the
original file and verifying that it was the same file (by device
and inode) when we opened it again, but this is an imperfect
solution, as it is still possible for an attacker to modify the
permissions during this window.

It is much better to simply open the file and test on the active
file descriptor.

Resolves https://fedorahosted.org/sssd/ticket/425 incidentally, as
without the initial lstat, we are implicitly accepting symlinks
and only verifying the target file.







Add --with-test-dir option to configure
2010-03-04T17:41:30+00:00

Stephen Gallagher
sgallagh@redhat.com

2010-02-26T14:04:11+00:00

9fb59763bce293c2490e0b9f8e97bb1f74ba0910

All 'make check' tests will chdir() into this directory before
running the suite. This provides the option of having temporary
files generated in a tmpfs or ramdisk





All 'make check' tests will chdir() into this directory before
running the suite. This provides the option of having temporary
files generated in a tmpfs or ramdisk







Check and set permissions on SBUS sockets
2010-02-23T21:16:23+00:00

Sumit Bose
sbose@redhat.com

2010-02-16T14:53:56+00:00

978bea5902ece9b9f01d1d6525dbe0889a410ffc












Rename server/ directory to src/
2010-02-18T18:48:45+00:00

Stephen Gallagher
sgallagh@redhat.com

2010-02-18T12:49:04+00:00

1c48b5a62f73234ed26bb20f0ab345ab61cda0ab

Also update BUILD.txt





Also update BUILD.txt