Skip to content

mkdir: do not error out with -EEXIST for racing MkdirAlls#35

Merged
cyphar merged 3 commits intomainfrom
racing-mkdir-eexist
Dec 6, 2024
Merged

mkdir: do not error out with -EEXIST for racing MkdirAlls#35
cyphar merged 3 commits intomainfrom
racing-mkdir-eexist

Conversation

@cyphar
Copy link
Copy Markdown
Owner

@cyphar cyphar commented Dec 6, 2024

If two programs are doing MkdirAll, the previous logic would return an
error if a directory already existed once we got into the "mkdir"
portion of the creation.

Since we already have to accept that an attacker can swap the inode with
a different directory, returning -EEXIST from mkdirat(2) just causes
spurrious errors. All we care about is that we open a directory.

Ref: opencontainers/runc#4543
Ref: moby/buildkit#5566
Signed-off-by: Aleksa Sarai cyphar@cyphar.com

@cyphar
gha: bump go test timeout to 30m
f5bd631 
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com>
@cyphar cyphar force-pushed the racing-mkdir-eexist branch 2 times, most recently from a89da1f to 5d700de Compare December 6, 2024 05:16
@cyphar cyphar changed the title mkdir: do not error out with -EEXIST for rancing MkdirAlls mkdir: do not error out with -EEXIST for racing MkdirAlls Dec 6, 2024
@cyphar
mkdir: do not error out with -EEXIST for racing MkdirAlls
72283a0 
If two programs are doing MkdirAll, the previous logic would return an
error if a directory already existed once we got into the "mkdir"
portion of the creation.

Since we already have to accept that an attacker can swap the inode with
a different directory, returning -EEXIST from mkdirat(2) just causes
spurious errors. All we care about is that we open a directory.

Signed-off-by: Aleksa Sarai <cyphar@cyphar.com>
@cyphar cyphar force-pushed the racing-mkdir-eexist branch from 5d700de to ef8c3b4 Compare December 6, 2024 06:40
@cyphar
mkdir: add racing MkdirAll test
31cb517 
Signed-off-by: Aleksa Sarai <cyphar@cyphar.com>
@cyphar cyphar force-pushed the racing-mkdir-eexist branch from ef8c3b4 to 31cb517 Compare December 6, 2024 07:00
This was referenced Dec 6, 2024
Closed
Closed
@cyphar cyphar merged commit d9a53cf into main Dec 6, 2024
@cyphar cyphar deleted the racing-mkdir-eexist branch December 6, 2024 08:18
@kolyshkin kolyshkin mentioned this pull request Dec 6, 2024
Merged
kolyshkin
kolyshkin reviewed Dec 6, 2024
View reviewed changes
Copy link
Copy Markdown
Contributor

@kolyshkin kolyshkin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Post-merge LGTM(nb)

@cyphar
Copy link
Copy Markdown
Owner Author

cyphar commented Dec 7, 2024

Sorry, probably should've waited for a review before merging + releasing. 😅

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@kolyshkin kolyshkin kolyshkin left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cyphar @kolyshkin