Christos Zoulas
2014-07-23 10:38:44 UTC
I am asking because I intend to change it to abort() with an error message
and remove it's two uses.
- There are only 2 uses of it in the tree
- It suffers from TOCTOU
- It does not do what it claims (it checks the file not the full path)
- It can be easily circumvented
- It is not standard
While it would be useful to have such a function, that takes a path and
returns a file descriptor if the path and the file are "trusted" (what
that means needs to be defined), this function is not it...
christos
and remove it's two uses.
- There are only 2 uses of it in the tree
- It suffers from TOCTOU
- It does not do what it claims (it checks the file not the full path)
- It can be easily circumvented
- It is not standard
While it would be useful to have such a function, that takes a path and
returns a file descriptor if the path and the file are "trusted" (what
that means needs to be defined), this function is not it...
christos