Bug 2089247
Summary: | glibc: tempnam() regression in glibc [rhel-8.7.0] | |||
---|---|---|---|---|
Product: | Red Hat Enterprise Linux 8 | Reporter: | pbhosale | |
Component: | glibc | Assignee: | Florian Weimer <fweimer> | |
Status: | CLOSED ERRATA | QA Contact: | Martin Coufal <mcoufal> | |
Severity: | medium | Docs Contact: | Dominik <dklon> | |
Priority: | urgent | |||
Version: | 8.4 | CC: | ashankar, codonell, dj, dklon, fweimer, kwalker, mcoufal, mnewsome, mpoole, pfrankli, sipoyare, skolosov, vpakolu | |
Target Milestone: | rc | Keywords: | Bugfix, Patch, Regression, Triaged, ZStream | |
Target Release: | --- | |||
Hardware: | x86_64 | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | glibc-2.28-204.el8 | Doc Type: | Bug Fix | |
Doc Text: |
.The `tempnam` function now uses `getrandom` to increase the randomness of generated file names
Previously, the `tempnam` function in Red Hat Enterprise Linux 8.4 and later used time-derived randomness for choosing paths. As a result, the `tempnam` function was not producing the full set of possible file names when invoked repeatedly in quick succession. This bug has been fixed by a new implementation that uses the `getrandom` function to increase the randomness of the generated file names. As a result, the `tempnam` function now generates more distinct file names.
|
Story Points: | --- | |
Clone Of: | ||||
: | 2093457 (view as bug list) | Environment: | ||
Last Closed: | 2022-11-08 10:43:12 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 2093457 |
Description
pbhosale
2022-05-23 09:45:14 UTC
We are likely missing this upstream fix: commit e1df30fbc2e2167a982c0e77a7ebee28f4dd0800 Author: Adhemerval Zanella <adhemerval.zanella> Date: Thu Jul 25 11:22:17 2019 -0300 Get new entropy on each attempt __gen_tempname (BZ #15813) This is missing bit for fully fix BZ#15813 (the other two were fixed by 359653aaacad463). Checked on x86_64-linux-gnu. [BZ #15813] sysdeps/posix/tempname.c (__gen_tempname): get entrypy on each attempt. I will produce a test build. The commit is insufficient. I still see very few different values. We need these patches in addition: commit 8eaf34eda256ba3647ed6e7ed5c7c9aa19955d17 Author: Samuel Thibault <samuel.thibault> Date: Fri Dec 13 10:10:59 2019 +0100 hurd: Fix local PLT commit 4dddd7e9cbecad4aa03ee5a9b9edb596e3d4e909 Author: Adhemerval Zanella <adhemerval.zanella> Date: Tue Sep 29 08:56:07 2020 -0300 posix: Sync tempname with gnulib [BZ #26648] commit f430293d842031f2afc3013f156e1018065e480e Author: Adhemerval Zanella <adhemerval.zanella> Date: Tue Jan 12 09:17:09 2021 -0300 posix: consume less entropy on tempname Plus this commit to avoid patching the gnulib version further: commit 04986243d1af37ac0177ed2f9db0a066ebd2b212 Author: Adhemerval Zanella <adhemerval.zanella> Date: Wed Jul 15 19:35:58 2020 +0000 Remove internal usage of extensible stat functions I don't see a way to safely add time64 support to our downstream glibc, so we also need a patch to use the time32 functions on i686. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (glibc bug fix and enhancement update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2022:7684 |