Re: "Switch !O_CREAT case to use of do_last()" causes segfault inglibc

From: Al Viro
Date: Sat Mar 06 2010 - 13:33:10 EST

Next message: Samir Bellabes: "Re: [RFC v2 00/10] snet: Security for NETwork syscalls"
Previous message: Al Viro: "Re: "Switch !O_CREAT case to use of do_last()" causes segfault inglibc"
In reply to: Al Viro: "Re: "Switch !O_CREAT case to use of do_last()" causes segfault inglibc"
Next in thread: Al Viro: "Re: "Switch !O_CREAT case to use of do_last()" causes segfault inglibc"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Mar 06, 2010 at 10:20:41AM -0800, walt wrote:
> On 03/06/2010 10:03 AM, Al Viro wrote:
>
> >_Really_ interesting; it doesn't look like an oops - smells like an attempt
> >to do opendir() that fails for some reason, goes unnoticed and resulting
> >FILE * (i.e. NULL) is fed to readdir()?
> >
> >What does it attempt to open?
>
> Ah, this may help:
>
> open("/usr/share/zoneinfo/", O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC) = 47
> open("/usr/share/zoneinfo/MST7MDT", O_RDONLY|O_NONBLOCK|O_DIRECTORY|O_CLOEXEC) = 48

Now that is interesting. Looks like it has managed to lose O_DIRECTORY check
in the open without trailing slash and (properly) barfed with / added.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Samir Bellabes: "Re: [RFC v2 00/10] snet: Security for NETwork syscalls"
Previous message: Al Viro: "Re: "Switch !O_CREAT case to use of do_last()" causes segfault inglibc"
In reply to: Al Viro: "Re: "Switch !O_CREAT case to use of do_last()" causes segfault inglibc"
Next in thread: Al Viro: "Re: "Switch !O_CREAT case to use of do_last()" causes segfault inglibc"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]