CodeSonar : Irssi : File System Race Condition

Irssi : Irssi analysis 1 : File System Race Condition at misc.c:410

Categories:	POSIX.RACE.TOCTTOU CWE:367
Warning ID:	2094.2095
Procedure:	mkpath
Trace:	View
Modified:	Wed Sep 2 11:51:10 2009 show details hide details

Priority:	None
State:	None
Finding:	None
Owner:	None
	edit properties

Legend	[ X ]
Warning Location Contributes Parse Error Other Warning Two or More Loop Iterations On Execution Path Comment Macro Preprocessor Include Keyword Preprocessed Away

Legend
Warning Location	Contributes	Parse Error
Other Warning	Two or More Loop Iterations	On Execution Path
Comment	Macro	Preprocessor
Include	Keyword	Preprocessed Away

Source | Language: C

Hide Legend

Problem	Line	Source

			/u1/paul/SATE/2010/c/irssi/irssi-0.8.14/src/core/misc.c

			Enter mkpath

387

int mkpath(const char *path, int mode)

{

struct stat statbuf;

const char *p;

char *dir;

g_return_val_if_fail(path != NULL, -1);

394

395

p = g_path_skip_root((char *) path);

396

if (p == NULL) {

397

/* not a full path, maybe not what we wanted

398

but continue anyway.. */

p = path;

}

for (;;) {

if (*p != G_DIR_SEPARATOR && *p != '\0') {

p++;

continue;

}

dir = g_strndup(path, (int) (p-path));

true

408

if (stat(dir, &statbuf ) != 0) {

409

#ifndef WIN32

*dir is checked by path name

410

if (mkdir(dir, mode) == -1) /* File System Race Condition */

411

#else

412

if (_mkdir(dir) == -1)

#endif

{

g_free(dir);

return -1;

}

}

g_free(dir);

if (*p++ == '\0')

Preconditions

&$unknown_89954 >= $param_1
&$unknown_89957 >= 1
strlen($param_1) != 0
$unknown_89954 != 0
strlen(&$unknown_89954) = 1
((char*)&$unknown_89954)[1] = 0

Postconditions

_g_boolean_var_' = 1
$unknown_89957' is checked by path name
dir' = &$unknown_89957
errno' != 0
mode' = $param_2
p' = &$unknown_89954 + 1
path' = $param_1

Change Warning 2094.2095 : File System Race Condition

Priority:
State:
Finding:
Owner:
Note: