From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gcc-prs-return-18762-listarch-gcc-prs=gcc.gnu.org@gcc.gnu.org>
Received: (qmail 29077 invoked by alias); 18 May 2002 12:26:04 -0000
Mailing-List: contact gcc-prs-help@gcc.gnu.org; run by ezmlm
Precedence: bulk
List-Archive: <http://gcc.gnu.org/ml/gcc-prs/>
List-Post: <mailto:gcc-prs@gcc.gnu.org>
List-Help: <mailto:gcc-prs-help@gcc.gnu.org>
Sender: gcc-prs-owner@gcc.gnu.org
Received: (qmail 29044 invoked by uid 71); 18 May 2002 12:26:02 -0000
Resent-Date: 18 May 2002 12:26:02 -0000
Resent-Message-ID: <20020518122602.29040.qmail@sources.redhat.com>
Resent-From: gcc-gnats@gcc.gnu.org (GNATS Filer)
Resent-To: nobody@gcc.gnu.org
Resent-Cc: gcc-prs@gcc.gnu.org, gcc-bugs@gcc.gnu.org
Resent-Reply-To: gcc-gnats@gcc.gnu.org, fw@deneb.enyo.de
Received:(qmail 28514 invoked by uid 61); 18 May 2002 12:21:42 -0000
Message-Id:<20020518122142.28513.qmail@sources.redhat.com>
Date: Sat, 18 May 2002 05:26:00 -0000
From: fw@deneb.enyo.de
Reply-To: fw@deneb.enyo.de
To: gcc-gnats@gcc.gnu.org
X-Send-Pr-Version:gnatsweb-2.9.3 (1.1.1.1.2.31)
Subject: ada/6717: Race condition in GNAT.Sockets.Create_Selector
X-SW-Source: 2002-05/txt/msg00544.txt.bz2
List-Id: <gcc-prs.sourceware.org>


>Number:         6717
>Category:       ada
>Synopsis:       Race condition in GNAT.Sockets.Create_Selector
>Confidential:   no
>Severity:       critical
>Priority:       medium
>Responsible:    unassigned
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sat May 18 05:26:02 PDT 2002
>Closed-Date:
>Last-Modified:
>Originator:     fw@deneb.enyo.de
>Release:        GCC 3.1, mainline
>Organization:
>Environment:
Any platform that supports GNAT.Sockets.
>Description:
Create_Selector creates a signalling socket in an unsafe way. A malicious local user (or, if the host implements a sufficiently weak end system model, someone on the local network) can connect to the newly created socket before the application itself, thereby disrupting normal operation.
>How-To-Repeat:

>Fix:
Switch back to using pipes instead sockets for signalling, as in GNAT 3.14p.

On platforms which do not have pipes, use UDP for signalling, and add some kind of check that the triggering 
UDP packet really originated from the program itself.
>Release-Note:
>Audit-Trail:
>Unformatted: