From unknown Fri Aug 15 15:56:15 2025 X-Loop: help-debbugs@gnu.org Subject: bug#32772: TOCTOU bug in chmod Resent-From: Jeff Epler Original-Sender: "Debbugs-submit" Resent-CC: bug-coreutils@gnu.org Resent-Date: Wed, 19 Sep 2018 15:05:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: report 32772 X-GNU-PR-Package: coreutils X-GNU-PR-Keywords: To: 32772@debbugs.gnu.org X-Debbugs-Original-To: bug-coreutils@gnu.org Received: via spool by submit@debbugs.gnu.org id=B.153736947015053 (code B ref -1); Wed, 19 Sep 2018 15:05:02 +0000 Received: (at submit) by debbugs.gnu.org; 19 Sep 2018 15:04:30 +0000 Received: from localhost ([127.0.0.1]:45864 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1g2e1k-0003uf-As for submit@debbugs.gnu.org; Wed, 19 Sep 2018 11:04:30 -0400 Received: from eggs.gnu.org ([208.118.235.92]:35827) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1g2bvM-00088j-Ju for submit@debbugs.gnu.org; Wed, 19 Sep 2018 08:49:44 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1g2bvF-0002Jx-Pd for submit@debbugs.gnu.org; Wed, 19 Sep 2018 08:49:38 -0400 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_50,FREEMAIL_FROM, HTML_MESSAGE,T_DKIM_INVALID autolearn=disabled version=3.3.2 Received: from lists.gnu.org ([2001:4830:134:3::11]:55680) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1g2bvF-0002Jp-M4 for submit@debbugs.gnu.org; Wed, 19 Sep 2018 08:49:37 -0400 Received: from eggs.gnu.org ([2001:4830:134:3::10]:56787) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1g2bvC-0002jd-PL for bug-coreutils@gnu.org; Wed, 19 Sep 2018 08:49:37 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1g2bvB-0002GF-Gx for bug-coreutils@gnu.org; Wed, 19 Sep 2018 08:49:34 -0400 Received: from mail-oi0-x22d.google.com ([2607:f8b0:4003:c06::22d]:39390) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1g2bvB-0002Ea-8A for bug-coreutils@gnu.org; Wed, 19 Sep 2018 08:49:33 -0400 Received: by mail-oi0-x22d.google.com with SMTP id c190-v6so4940770oig.6 for ; Wed, 19 Sep 2018 05:49:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=dnzxmbHMec3Dyrr6dyOyPIvzRmfPEHmDKVA3CRJG9bo=; b=daYLwshfoQqy9iABlnQj+1uavSeqv6qnKkXSM+jI9U17s809u35/TFVNYdhgN4phzX PNOsFmhaemBi+BwwVBfNZ+g1TVi8oYEjms5u43/EcO/wuRv8gHV3ywo+ljvReD7dFcMb 07VULJwBSHSUQ7QaWzpkKwNEIaTAePUosBxmt3f+jSN4/ovnnaa1hlKDB2Fu4z3D9QkL 1nU67uT7SDtOAvU1aIqiEE3IvCoOfekBpnLbP1xab7wbu3mMZMQNayQyFgSZDNM1Z+ui 1H0xYHtTqCOsWG/Rzz+LRVpXcodS9wfbLtWZK6vCTl+bI/gNZGU/+xYGz57Z+W872VXN Y45w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=dnzxmbHMec3Dyrr6dyOyPIvzRmfPEHmDKVA3CRJG9bo=; b=iVpPb1kNiDaVNxIYvkkBzzKGUc3NZ19MobkK7zl/mhyRO/xCFwC1iFzgb4GXtw6/xl qEMi52IU3HXEICWLaGxbbbwcReSJ52P4emoV1yQNziiD+9pUyfxWctArAGx1iiBC65cl hXmrQbadsjDsNo8HUau3iFe4D4fXrJE6ICQa7j+Gfds09rXdmDp4LfiwbkOKcXa+H2hb 1KhZ6o5DSLwUphIpeYXEMiGK09aH23gzmyfs62MvSue8JmwqVObH+mV7e11si+s2C40s vC4x/0hys69xSV+Qr7P4CCTSVHHmGjIqiKVQxuFrYlw1DgzDQhQrD0e8e+vHELe7Fae1 1IZQ== X-Gm-Message-State: APzg51AqUK9/8gD1XRpo5sjj1Wo944AKIVrVBMPiXUV3qBGAb3GHg3T9 Ah7kkISjukLbuORF7IwP1RSemRgOV1yb7sDxIR19aZgj X-Google-Smtp-Source: ANB0VdZafAGYgr+sY9gBxtWuJywl11/9HkIvX1K4aIKyi+1xGeygV6pNXxWMrG3oLzJ9hx6pDkxH8+IZVELPvlhGrmA= X-Received: by 2002:aca:3985:: with SMTP id g127-v6mr1455918oia.267.1537361371009; Wed, 19 Sep 2018 05:49:31 -0700 (PDT) MIME-Version: 1.0 From: Jeff Epler Date: Wed, 19 Sep 2018 07:49:19 -0500 Message-ID: Content-Type: multipart/alternative; boundary="000000000000691605057638d62d" X-detected-operating-system: by eggs.gnu.org: Genre and OS details not recognized. X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x X-Received-From: 2001:4830:134:3::11 X-Spam-Score: -4.0 (----) X-Mailman-Approved-At: Wed, 19 Sep 2018 11:04:27 -0400 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.0 (-----) --000000000000691605057638d62d Content-Type: text/plain; charset="UTF-8" When a directory is replaced with a symlink at a critical moment, `chmod` will perform the unintended action of changing the mode of the linked-to file or directory. I tested in coreutils 8.26 on debian stretch, but believe that the current version 8.30 and the development version are vulnerable. Basically, when chmodat is used here http://git.savannah.gnu.org/cgit/coreutils.git/tree/src/chmod.c?id=694d10b71e418ef4ea68847185b73544fe03eae2#n273 it will dereference the symlink. Changing to lchmodat should resolve the problem, except that on GNU/Linux, it appears this works by passing AT_SYMLINK_NOFOLLOW to fchmodat, but that flag is noted as "not currently implemented" in the local man page ("release 4.10 of the Linux man-pages project"). Consequently, I'm not even sure there is a correct fix available on this common platform. Here are my steps to reproduce, which involve using gdb to pause the execution of chmod while the substitution is made, so that the window of opportunity is made as large as possible. I have followed the steps manually several times, so I hope they are correct and don't have any transcription errors. ### Note the ironic unsafe use of /tmp $ umask 077 $ mkdir -p /tmp/a/b/c; touch /tmp/a/b/c/d; touch /tmp/donttouchthis ### /tmp/donttouchthis is mode 0600 here $ ls -l /tmp/donttouchthis $ gdb --args chmod -R u=u /tmp/a (gdb) b fchmodat (gdb) run Breakpoint 1, fchmodat (fd=-100, file=0x5555557640f0 "/tmp/a", mode=493, (gdb) condition 1 !strcmp(file, "c") (gdb) continue Breakpoint 1, fchmodat (fd=5, file=0x55555576d6f8 "c", mode=493, flag=0) (gdb) shell cd /tmp/a/b && mv c noc && ln -s /tmp/donttouchthis c (gdb) continue /bin/chmod: cannot read directory '/tmp/a/b/c': Not a directory [Inferior 1 (process 13718) exited with code 01] (gdb) shell ls -l /tmp/donttouchthis ### donttouchthis is mode 0700 here, the old mode of /tmp/a/b/c! Note how the mode of /tmp/donttouchthis has been changed from 0600 to 0700, because it got the mode of the directory '/tmp/a/b/c'. --000000000000691605057638d62d Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Wh= en a directory is replaced with a symlink at a critical moment, `chmod` wil= l perform the unintended action of changing the mode of the linked-to file = or directory.=C2=A0 I tested in coreutils 8.26 on debian stretch, but belie= ve that the current version 8.30 and the development version are vulnerable= .

Basically, when chmodat is used here http://git.savannah.gnu.org/cgit/c= oreutils.git/tree/src/chmod.c?id=3D694d10b71e418ef4ea68847185b73544fe03eae2= #n273 it will dereference the symlink.=C2=A0 Changing to lchmodat shoul= d resolve the problem, except that on GNU/Linux, it appears this works by p= assing AT_SYMLINK_NOFOLLOW to fchmodat, but that flag is noted as "not= currently implemented" in the local man page ("release 4.10 of t= he Linux man-pages project").=C2=A0 Consequently, I'm not even sur= e there is a correct fix available on this common platform.
<= br>
Here are my steps to reproduce, which involve using gdb to pa= use the execution of chmod while the substitution is made, so that the wind= ow of opportunity is made as large as possible.=C2=A0 I have followed the s= teps manually several times, so I hope they are correct and don't have = any transcription errors.

### Note the ironic unsa= fe use of /tmp
$ umask 077
$ mkdir -p /tmp/a/b/c; touch /tmp/a/b/c/d;= touch /tmp/donttouchthis
### /tmp/donttouchthis is mode 0600 her= e
$ ls -l /tmp/donttouchthis
$ gdb --args chmod -R u=3Du /tmp/= a
(gdb) b fchmodat
(gdb) run
Breakpoint 1, fchmodat (fd=3D-100, f= ile=3D0x5555557640f0 "/tmp/a", mode=3D493,
(gdb) condition 1 != strcmp(file, "c")
(gdb) continue
Breakpoint 1, fchmodat (fd= =3D5, file=3D0x55555576d6f8 "c", mode=3D493, flag=3D0)
(gdb) s= hell cd /tmp/a/b && mv c noc && ln -s /tmp/donttouchthis c<= br>(gdb) continue
/bin/chmod: cannot read directory '/tmp/a/b/c'= : Not a directory
[Inferior 1 (process 13718) exited with code 01]
(g= db) shell ls -l /tmp/donttouchthis
### donttouchthis is mode = 0700 here, the old mode of /tmp/a/b/c!

Note how th= e mode of /tmp/donttouchthis has been changed from 0600 to 0700,
because= it got the mode of the directory '/tmp/a/b/c'.

=
--000000000000691605057638d62d-- From unknown Fri Aug 15 15:56:15 2025 X-Loop: help-debbugs@gnu.org Subject: bug#32772: TOCTOU bug in chmod Resent-From: Paul Eggert Original-Sender: "Debbugs-submit" Resent-CC: bug-coreutils@gnu.org Resent-Date: Wed, 19 Sep 2018 19:58:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 32772 X-GNU-PR-Package: coreutils X-GNU-PR-Keywords: To: Jeff Epler , 32772@debbugs.gnu.org Received: via spool by 32772-submit@debbugs.gnu.org id=B32772.153738702723414 (code B ref 32772); Wed, 19 Sep 2018 19:58:01 +0000 Received: (at 32772) by debbugs.gnu.org; 19 Sep 2018 19:57:07 +0000 Received: from localhost ([127.0.0.1]:46035 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1g2iax-00065a-Hv for submit@debbugs.gnu.org; Wed, 19 Sep 2018 15:57:07 -0400 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:45500) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1g2iaw-000654-5a for 32772@debbugs.gnu.org; Wed, 19 Sep 2018 15:57:06 -0400 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 96D90160806; Wed, 19 Sep 2018 12:57:00 -0700 (PDT) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id 6F6oP14HzHLk; Wed, 19 Sep 2018 12:56:59 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id D89F916169D; Wed, 19 Sep 2018 12:56:59 -0700 (PDT) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 8xq1COl56qZX; Wed, 19 Sep 2018 12:56:59 -0700 (PDT) Received: from [192.168.1.9] (cpe-23-242-74-103.socal.res.rr.com [23.242.74.103]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id B6840160806; Wed, 19 Sep 2018 12:56:59 -0700 (PDT) References: From: Paul Eggert Organization: UCLA Computer Science Department Message-ID: <5daa18d6-3640-1325-1da5-78bd9c90976a@cs.ucla.edu> Date: Wed, 19 Sep 2018 12:56:59 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: -2.3 (--) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -3.3 (---) Jeff Epler wrote: > Changing to lchmodat should resolve the problem No, that would just introduce the opposite bug: chmod is supposed to follow a symlink, and using lchmod would let an attacker provoke a race that would cause chmod to not follow a symlink that it should. A better way to fix this problem on GNU/Linux is to use O_PATH, not lchmod. I don't know of any way to fix it on other platforms that lack O_PATH. From unknown Fri Aug 15 15:56:15 2025 X-Loop: help-debbugs@gnu.org Subject: bug#32772: TOCTOU bug in chmod Resent-From: Jeff Epler Original-Sender: "Debbugs-submit" Resent-CC: bug-coreutils@gnu.org Resent-Date: Thu, 20 Sep 2018 00:49:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 32772 X-GNU-PR-Package: coreutils X-GNU-PR-Keywords: To: eggert@cs.ucla.edu Cc: 32772@debbugs.gnu.org Received: via spool by 32772-submit@debbugs.gnu.org id=B32772.153740449729141 (code B ref 32772); Thu, 20 Sep 2018 00:49:01 +0000 Received: (at 32772) by debbugs.gnu.org; 20 Sep 2018 00:48:17 +0000 Received: from localhost ([127.0.0.1]:46187 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1g2n8j-0007Zv-5D for submit@debbugs.gnu.org; Wed, 19 Sep 2018 20:48:17 -0400 Received: from mail-oi0-f44.google.com ([209.85.218.44]:35279) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1g2n8h-0007Zf-8a for 32772@debbugs.gnu.org; Wed, 19 Sep 2018 20:48:15 -0400 Received: by mail-oi0-f44.google.com with SMTP id m11-v6so6818934oic.2 for <32772@debbugs.gnu.org>; Wed, 19 Sep 2018 17:48:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=thdIyxB1QcMCQ0DXYLXDVTFa6KD1778BQT0izxVtV7s=; b=X6I3x9KLgMR38RoMXO8XFkgb2vLuixIjVBp693+HI3UJ2/l+rnUwUWyb0c1a36OYx9 kF+JVgB6MxSpM//Xk92yJydwuAV/M6elvsk6NCp9/GCvHji0W8qWF61O0aevYqaSYF5J I/bOOUblqeLMlc4Anu202dG4idcGse8Hw5ihanOHMzoGBF4fF7LoQhJnZ7IhYFAUfuSF Vq0XV2YIOYuWidGWkMqEyYY+KUFkgQaTOyE0h7JpDPVbcYa0TuNuq4hC4qm/9XQ3Xl4i s+kUAf6ORVFk1A6LBwFmsVxEJ/tonJBR/FP/czUG7QnZ3RWBv1P2vpzQ2r0LZS1+0GPz PVlg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=thdIyxB1QcMCQ0DXYLXDVTFa6KD1778BQT0izxVtV7s=; b=PVwZ7qiRSQAoL/lu5dsRolppBaW0ifFvossOU3STMfcpqdI97Ugeo1wOVd+EfxNOLk R/3M9Lyf3s/BoSQoBIunBVW2V0YR/zYNantVQmxcyKDHnllYD5OhPA4m9k5m5Dtk/Vmu HSbRw07V9h8YTj3rWQfjDX8q2MNo/8pLTNquZCCsi/iYSZwaz1GpAeXM6ypKXtu9WAkz M6WZIciC61DjwdhrqxdDlak0AZ+Uv4RAMG/ygVYV0GW1ACIGJoMkC/IJKt4RvmrtYraY IXITdPNze5WRaoyLdCNbq9Zx7NoAoI1arsFQ0NgeFy0Mc1tfSXvQEWntRv7J1fEr1bij 6ZlA== X-Gm-Message-State: APzg51CyG7y5SIP5Rh7fjDVROcSbfKiuul9/Ws7pmojWm7Sjb6iZjHDz DC4e0jjXS6QcYWd91leOaufqUVfiZscTjGeZzJ0= X-Google-Smtp-Source: ANB0VdbGmU34GSZm/ylCZsJfTjpoDcEHz5yZFpe1tQVM3kPSBXjJJk2f7IU8vJfZMzMMeGiZpksslfhLJkHOYKidUoY= X-Received: by 2002:aca:50cf:: with SMTP id e198-v6mr122441oib.332.1537404489357; Wed, 19 Sep 2018 17:48:09 -0700 (PDT) MIME-Version: 1.0 References: <5daa18d6-3640-1325-1da5-78bd9c90976a@cs.ucla.edu> In-Reply-To: <5daa18d6-3640-1325-1da5-78bd9c90976a@cs.ucla.edu> From: Jeff Epler Date: Wed, 19 Sep 2018 19:47:57 -0500 Message-ID: Content-Type: multipart/alternative; boundary="00000000000076de55057642e08f" X-Spam-Score: 0.0 (/) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) --00000000000076de55057642e08f Content-Type: text/plain; charset="UTF-8" Thanks for the correction, I should have not suggested a fix off the top of my head. On Wed, Sep 19, 2018 at 2:57 PM Paul Eggert wrote: > Jeff Epler wrote: > > Changing to lchmodat should resolve the problem > > No, that would just introduce the opposite bug: chmod is supposed to > follow a > symlink, and using lchmod would let an attacker provoke a race that would > cause > chmod to not follow a symlink that it should. > > A better way to fix this problem on GNU/Linux is to use O_PATH, not > lchmod. I > don't know of any way to fix it on other platforms that lack O_PATH. > --00000000000076de55057642e08f Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Thanks for the correction, I should have not suggested a f= ix off the top of my head.

On Wed, Sep 19, 2018 at 2:57 PM Paul Eggert <eggert@cs.ucla.edu> wrote:
Jeff Epler wrote:
> Changing to lchmodat should resolve the problem

No, that would just introduce the opposite bug: chmod is supposed to follow= a
symlink, and using lchmod would let an attacker provoke a race that would c= ause
chmod to not follow a symlink that it should.

A better way to fix this problem on GNU/Linux is to use O_PATH, not lchmod.= I
don't know of any way to fix it on other platforms that lack O_PATH.
--00000000000076de55057642e08f-- From debbugs-submit-bounces@debbugs.gnu.org Mon Oct 29 23:56:49 2018 Received: (at control) by debbugs.gnu.org; 30 Oct 2018 03:56:49 +0000 Received: from localhost ([127.0.0.1]:52893 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gHL97-0001je-D1 for submit@debbugs.gnu.org; Mon, 29 Oct 2018 23:56:49 -0400 Received: from mail-pg1-f181.google.com ([209.85.215.181]:43488) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gHL96-0001jS-4x for control@debbugs.gnu.org; Mon, 29 Oct 2018 23:56:48 -0400 Received: by mail-pg1-f181.google.com with SMTP id n10-v6so4924036pgv.10 for ; Mon, 29 Oct 2018 20:56:48 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=to:from:message-id:date:user-agent:mime-version:content-language :content-transfer-encoding; bh=mUz0nixtoLNAlJHD58KsgKHNNxTclIpF4aXJt37NAGM=; b=Wd/u58NEYMG+nGmwEPotyzFV1eWn6ZF1yXt10gs5ufyjOz5R/WxVe5XYQsnvEIO/0J g4ptVZSUQ0I/khrgmV0jor8NCdWn3ryLkRF13JItRi1VFc+jV4rlMl0PC5OlWjU9PHZ6 3hvH03UeMGXnCHizGwLN978Oyb5qWJFNCaGaxnBRIUSoy9TmizeBTTeR9cGl+RgtFHTQ UUkcL8xDn594Gb+CGecwc4ChVDYYE8+Nec4o1OH9KmoxiocdFLRoFxiEfUnpC+u2jF2p zpvCnK3y53Y7poT7+EDlCW7aT5pwV7cZbIqZ8zNN1qwCZDYkZOqxgnD46+Yv9k6+s1x7 SZKw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:from:message-id:date:user-agent:mime-version :content-language:content-transfer-encoding; bh=mUz0nixtoLNAlJHD58KsgKHNNxTclIpF4aXJt37NAGM=; b=C3C9oIY3N/bmD0FMtaJO8xc2qfWgsFVghAooCl/tqqc5hC0y5taScjdHGWsB9770Wj 7tgqGMp7PXleEdGtBPaUBTgXsewfQbaBy6o4q5DHhXJRN2FYQQnE5lR0WjMCBLEISuIP rFNRMvbVKTZERDVZjsy7BvAwU5KtHB6Yql6iWyk/FEYob0SUQXSVhRC5Xvy8KjrJm6wO N0b7/7OHp4xcjuXfPs/Yi4Hf3tIktdd+vRndjJ5isdKQ8SDyZtD1kwIMQMTVnSe44p6j FzVsTqBhHapz0kv5H941yWTLIoGqoZZnMPaxv441dSG9auoaUIcALSmUCep+49lHzS9s 0XWw== X-Gm-Message-State: AGRZ1gKkwT5xIOn8LU27Ll9G1+M9fwjLjEzHzk4DgGbZYZQ7TplR/qpG 0hvao/mDFwN9UZKBEerbu+NAec8USIA= X-Google-Smtp-Source: AJdET5crwtcylJ2YGWhXo/ASXWIleEeM/3aCtNa4tMHv5IFR74iWFAs+Wjy0AMO5T7JaZ2IW890z+Q== X-Received: by 2002:a62:6ac4:: with SMTP id f187-v6mr1243857pfc.103.1540871801965; Mon, 29 Oct 2018 20:56:41 -0700 (PDT) Received: from tomato.housegordon.com (moose.housegordon.com. [184.68.105.38]) by smtp.googlemail.com with ESMTPSA id f5-v6sm21314560pfb.123.2018.10.29.20.56.40 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 29 Oct 2018 20:56:40 -0700 (PDT) To: control@debbugs.gnu.org From: Assaf Gordon Message-ID: Date: Mon, 29 Oct 2018 21:56:39 -0600 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.2.1 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: 2.0 (++) X-Spam-Report: Spam detection software, running on the system "debbugs.gnu.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: severity 32772 wishlist retitle 32772 chmod: use O_PATH to avoid TOCTOU bug [...] Content analysis details: (2.0 points, 10.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no trust [209.85.215.181 listed in list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (assafgordon[at]gmail.com) 1.8 MISSING_SUBJECT Missing Subject: header 0.2 NO_SUBJECT Extra score for no subject X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) severity 32772 wishlist retitle 32772 chmod: use O_PATH to avoid TOCTOU bug From debbugs-submit-bounces@debbugs.gnu.org Tue Oct 30 00:23:21 2018 Received: (at control) by debbugs.gnu.org; 30 Oct 2018 04:23:21 +0000 Received: from localhost ([127.0.0.1]:52984 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gHLYk-0006dx-SN for submit@debbugs.gnu.org; Tue, 30 Oct 2018 00:23:21 -0400 Received: from mail-pl1-f177.google.com ([209.85.214.177]:39495) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gHLYj-0006di-Qb for control@debbugs.gnu.org; Tue, 30 Oct 2018 00:23:18 -0400 Received: by mail-pl1-f177.google.com with SMTP id b5-v6so4249101pla.6 for ; Mon, 29 Oct 2018 21:23:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=to:from:message-id:date:user-agent:mime-version:content-language :content-transfer-encoding; bh=4hXRYKoS6AgE+X4xY0E7DE1tpIqms0jYc8T879PJgXk=; b=AtbaE02cfs0w5/lF9eTDrYSTQgHji9Jm9j2cNLQ3PqA2t4ig/meRjdHDADh9q8wgM8 6UqFX06UE3C/lWJOS/+RzDFRm7f++XPxAfpVK1uBEHajM3gPLYzr91R+xoISlF7c+2qe sm5V6FueNirbBdyVFownknkDO1Q2LHZjyWgzcHmm/lQO8K3iLAj9yrCYcD05d5TC4Ka6 oIap+KGwJShOCVurhbaPc/xzcE1FJdAia7L9HswHMiv81vC1fght4wXyrolLmKc0SdSk fFLM6zpUD3HruI5CqcDXrqy6cCof5407U5h1Zffj5+eRqOsKew5gDZuU7wJfXgNe6IH5 GSag== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:from:message-id:date:user-agent:mime-version :content-language:content-transfer-encoding; bh=4hXRYKoS6AgE+X4xY0E7DE1tpIqms0jYc8T879PJgXk=; b=H9opzwkhMBQb9B9sAJmfKSAPJlCNZZVxp6A0VSlxpZKYTzCzh9pc32PgmjWkUhzbCA UN1v7rnXFcwWcgLeD2fOn37MN34F5HP8oKJKwnBEUsps1JXr1AkE8ip+/xydNKsYDOOk ufektl+iJbj5dFgX8Sj/YlmloAilwzpJaX07St9dxr/w6mFKSE6r4u7cnwHuKGeqnHyr NU45mTYPoBVMbU40UtyYan//cduYUnFDAWv5XJd65lPZLXDBkyFhlmGmvBWavwJOUOgz SapfimTJ2ok1cF7nUVDCpmOnPOP34Gmy24/h6jA+CntPUeXyX8NGLJf5yx7Lei/fgZoP s1aw== X-Gm-Message-State: AGRZ1gLee5BaYO08WS6lTyOZsupbQaqaw2IURPCinOLdecvCFvm7ZoqY yoJvqdTKAo07wiIa16veemvG6/QIQSw= X-Google-Smtp-Source: AJdET5eCzTGxHwZlJsnGbmUrho/FaPVEBfJ5PM6gLRcP39nB3uXGbaJ3rRFI3t7b93n3Qe6ix/mVmg== X-Received: by 2002:a17:902:166:: with SMTP id 93-v6mr1825846plb.68.1540873391466; Mon, 29 Oct 2018 21:23:11 -0700 (PDT) Received: from tomato.housegordon.com (moose.housegordon.com. [184.68.105.38]) by smtp.googlemail.com with ESMTPSA id j187-v6sm31048344pfc.39.2018.10.29.21.23.09 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 29 Oct 2018 21:23:10 -0700 (PDT) To: control@debbugs.gnu.org From: Assaf Gordon Message-ID: <09801c4a-1a7b-954b-07cb-8364d64d49e8@gmail.com> Date: Mon, 29 Oct 2018 22:23:09 -0600 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.2.1 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: 2.0 (++) X-Spam-Report: Spam detection software, running on the system "debbugs.gnu.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see the administrator of that system for details. Content preview: severity 11108 wishlist retitle 11108 chmod: fix symlink race condition forcemerge 11108 32772 [...] Content analysis details: (2.0 points, 10.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no trust [209.85.214.177 listed in list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (assafgordon[at]gmail.com) 1.8 MISSING_SUBJECT Missing Subject: header 0.2 NO_SUBJECT Extra score for no subject X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) severity 11108 wishlist retitle 11108 chmod: fix symlink race condition forcemerge 11108 32772