GNU bug report logs - #15926
RFE: unlink command already uses 'unlink' call; make 'rm' use 'remove' call

Previous Next

Package: coreutils;

Reported by: Linda Walsh <coreutils <at> tlinx.org>

Date: Tue, 19 Nov 2013 11:58:02 UTC

Severity: normal

Tags: notabug, patch

Merged with 15943

Done: Assaf Gordon <assafgordon <at> gmail.com>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: Eric Blake <eblake <at> redhat.com>
To: Pádraig Brady <P <at> draigBrady.com>, Bob Proulx <bob <at> proulx.com>
Cc: 15926 <15926 <at> debbugs.gnu.org>
Subject: bug#15926: RFE: unlink command already uses 'unlink' call; make 'rm' use 'remove' call
Date: Sat, 30 Nov 2013 10:57:00 -0700

[Message part 1 (text/plain, inline)]
On 11/29/2013 06:48 PM, Pádraig Brady wrote:

> To summarize, it,
> only runs with: make EXPENSIVE=yes check,
> only runs as non root,
> ensures file & dir removal bypass work in a safe context first
> 
> Do you still think it's too dangerous?

I think we've done a great job at writing a very robust test that exits
early if not all preconditions of safety can be met (the most important
of which is that using rm under LD_PRELOAD on a safe file leaves the
file untouched, proving that we correctly avoided the right system call)
- I see no issue with including the test by default, nor any reason to
scare users into only running the test in a chroot jail.  I actually
think the timeout to limit to 2 seconds is a bit of overkill, but it's
fine to be over-conservative and leave it in.

-- 
Eric Blake   eblake redhat com    +1-919-301-3266
Libvirt virtualization library http://libvirt.org


[signature.asc (application/pgp-signature, attachment)]
This bug report was last modified 6 years and 225 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.