gocryptfs/internal/fusefrontend_reverse, branch v1.4.3 Mirror of gocryptfs source code on Github http://nuetzlich.net/cgit/gocryptfs/atom?h=v1.4.3 2018-01-17T20:36:38+00:00 fusefrontend_reverse: use OpenNofollow in virtualFile.GetAttr 2018-01-17T20:36:38+00:00 Jakob Unterwurzacher 2018-01-17T20:36:38+00:00 urn:sha1:a2677bce2a632d80850fabb1e397558d8a07742b Makes it robust against symlink races. Final piece, closes https://github.com/rfjakob/gocryptfs/issues/165 fusefrontend_reverse: use OpenNofollow in findLongnameParent 2018-01-17T19:54:05+00:00 Jakob Unterwurzacher 2018-01-17T19:52:52+00:00 urn:sha1:959e1fc1e2f531480ad1353179fc94f56ff76dce Protects findLongnameParent against symlink races. Also add comments to several functions along the way. Reported at https://github.com/rfjakob/gocryptfs/issues/165 Run go fmt 2018-01-16T22:18:53+00:00 Jakob Unterwurzacher 2018-01-16T22:16:54+00:00 urn:sha1:36ffd813cd04c6c43a7572ba5d71db4da8c2b060 fusefrontend_reverse: Use O_DIRECTORY in OpenDir implementation 2017-12-11T20:18:20+00:00 Sebastian Lackner 2017-12-08T05:16:16+00:00 urn:sha1:631974f9e04fc0ceb1fe859c3e68432b76197c3b Also get rid of the defer - it is not really necessary here. fusefrontend_reverse: Reject access to device nodes in newFile function 2017-12-11T08:55:16+00:00 Sebastian Lackner 2017-12-11T02:56:31+00:00 urn:sha1:96dc2ca70906c831b60be1c6ed3a27dbf7628e72 Steps to reproduce: * Create a regular reverse mount point * Create a file "test" in the original directory * Access the corresponding encrypted directory in the mount point (ls <encrypted dir>) * Quickly delete the file in the original data - instead create a device node * Access the file again, it will access the device node and attempt to read from it Fixes https://github.com/rfjakob/gocryptfs/issues/187 fusefrontend_reverse: Use openBackingDir in GetAttr 2017-12-07T22:36:11+00:00 Sebastian Lackner 2017-12-07T17:44:44+00:00 urn:sha1:3af51736f3f19659d723f60aa480578fae2cddbc Also fixes 48bd59f38843e5ebd4e4c9f666f1aea1c9990803 - the directory FD should also be closed in case of an error. fusefrontend_reverse: Use openBackingDir in Readlink 2017-12-07T22:36:11+00:00 Sebastian Lackner 2017-12-07T17:36:52+00:00 urn:sha1:ad0f1101917ab011128ae07df79deee81a2626c7 fusefrontend_reverse: fix fd leak in GetAttr 2017-12-07T08:01:12+00:00 Jakob Unterwurzacher 2017-12-07T08:01:12+00:00 urn:sha1:48bd59f38843e5ebd4e4c9f666f1aea1c9990803 Fixes https://github.com/rfjakob/gocryptfs/issues/184 fusefrontend_reverse: secure Access against symlink races (somewhat) 2017-12-06T23:11:35+00:00 Jakob Unterwurzacher 2017-12-06T23:08:10+00:00 urn:sha1:87736eb833dfcf3f110dbd8846752c86aae7b481 Unfortunately, faccessat in Linux ignores AT_SYMLINK_NOFOLLOW, so this is not completely atomic. Given that the information you get from access is not very interesting, it seems good enough. https://github.com/rfjakob/gocryptfs/issues/165 fusefrontend_reverse: secure Readlink against symlink races 2017-12-06T20:13:08+00:00 Jakob Unterwurzacher 2017-12-06T20:10:49+00:00 urn:sha1:e042eb38fa1990b2539e6e690fd9713487337be1 ...by using Readlinkat. Tracking ticket: https://github.com/rfjakob/gocryptfs/issues/165