|
 |
f09526 |
diff -up lockdev-scm-2011-10-07/src/lockdev.c.access lockdev-scm-2011-10-07/src/lockdev.c
|
|
|
f09526 |
--- lockdev-scm-2011-10-07/src/lockdev.c.access 2011-07-22 09:37:10.000000000 +0200
|
|
|
f09526 |
+++ lockdev-scm-2011-10-07/src/lockdev.c 2013-06-03 12:34:16.870750845 +0200
|
|
|
f09526 |
@@ -616,7 +616,10 @@ dev_lock (const char *devname)
|
|
|
f09526 |
if ( stat( device, &statbuf) == -1 ) {
|
|
|
f09526 |
close_n_return(-errno);
|
|
|
f09526 |
}
|
|
|
f09526 |
- if ( access( device, W_OK ) == -1 ) {
|
|
|
f09526 |
+ /* check that the caller has write permission to the device
|
|
|
f09526 |
+ * to prevent denial-of-service attack by unauthorized users
|
|
|
f09526 |
+ */
|
|
|
f09526 |
+ if ( euidaccess( device, W_OK ) == -1 ) {
|
|
|
f09526 |
close_n_return(-errno);
|
|
|
f09526 |
}
|
|
|
f09526 |
|
|
|
f09526 |
@@ -780,7 +783,10 @@ dev_relock (const char *devname,
|
|
|
f09526 |
if ( stat( device, &statbuf) == -1 ) {
|
|
|
f09526 |
close_n_return(-errno);
|
|
|
f09526 |
}
|
|
|
f09526 |
- if ( access( device, W_OK ) == -1 ) {
|
|
|
f09526 |
+ /* check that the caller has write permission to the device
|
|
|
f09526 |
+ * to prevent denial-of-service attack by unauthorized users
|
|
|
f09526 |
+ */
|
|
|
f09526 |
+ if ( euidaccess( device, W_OK ) == -1 ) {
|
|
|
f09526 |
close_n_return(-errno);
|
|
|
f09526 |
}
|
|
|
f09526 |
|
|
|
f09526 |
@@ -870,7 +876,10 @@ dev_unlock (const char *devname,
|
|
|
f09526 |
if ( stat( device, &statbuf) == -1 ) {
|
|
|
f09526 |
close_n_return(-errno);
|
|
|
f09526 |
}
|
|
|
f09526 |
- if ( access( device, W_OK ) == -1 ) {
|
|
|
f09526 |
+ /* check that the caller has write permission to the device
|
|
|
f09526 |
+ * to prevent denial-of-service attack by unauthorized users
|
|
|
f09526 |
+ */
|
|
|
f09526 |
+ if ( euidaccess( device, W_OK ) == -1 ) {
|
|
|
f09526 |
close_n_return(-errno);
|
|
|
f09526 |
}
|
|
|
f09526 |
|