lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date:	Wed, 22 Apr 2009 22:27:11 -0400
From:	Theodore Tso <tytso@....edu>
To:	Peng Tao <bergwolf@...il.com>
Cc:	linux-ext4@...r.kernel.org
Subject: Re: [PATCH]mke2fs: don't check mount flags for regular files

On Tue, Mar 24, 2009 at 04:31:33PM +0800, Peng Tao wrote:
> mke2fs scans /proc/mounts for mount flags of a device. But for regular files,
> this is unnecessary and may cause troubles.
> 
> This can be triggered by:
> $dd if=/dev/null of=rootfs bs=1024 seek=100000 count=0
> $mke2fs -t ext3 -F rootfs
> mke2fs 1.41.4 (27-Jan-2009)
> rootfs is mounted; will not make a filesystem here!

Actually, this is quite necessary; regular files can be mounted using
the loop device, and we want to catch this case.  So simply patching
out the check for regular files is the wrong thing to do, and hides
the real problem.

The correct patch to solve the problem you've reported is attached,
and has been checked into e2fsprogs source repository.

						- Ted

commit f9110f4480eade2d849c4cc08efa49bf0f7f5148
Author: Theodore Ts'o <tytso@....edu>
Date:   Wed Apr 22 22:20:22 2009 -0400

    libext2fs: Skip relative pathnames in /etc/mtab in ismounted.c
    
    The functions which test to see if a device is mounted can get
    confused by entries in /etc/mtab for virtual filesystems:
    
    rootfs / rootfs rw 0 0
    none /sys sysfs rw,nosuid,nodev,noexec,relatime 0 0
    
    If the device name doesn't start with a slash, ignore the /etc/mtab
    entry, so that relative pathnames passed into functions such as
    ext2fs_check_mount_point() or ext2fs_check_if_mounted() don't return
    false positives.
    
    Signed-off-by: "Theodore Ts'o" <tytso@....edu>

diff --git a/lib/ext2fs/ismounted.c b/lib/ext2fs/ismounted.c
index 4a7c8c6..4c5500f 100644
--- a/lib/ext2fs/ismounted.c
+++ b/lib/ext2fs/ismounted.c
@@ -65,6 +65,8 @@ static errcode_t check_mntent_file(const char *mtab_file, const char *file,
 		}
 	}
 	while ((mnt = getmntent (f)) != NULL) {
+		if (mnt->mnt_fsname[0] != '/')
+			continue;
 		if (strcmp(file, mnt->mnt_fsname) == 0)
 			break;
 		if (stat(mnt->mnt_fsname, &st_buf) == 0) {
--
To unsubscribe from this list: send the line "unsubscribe linux-ext4" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ