2797
73%
master: 74%

Ran 13 Nov 2020 02:26PM UTC

Jobs 1

Files 56

Run time 9s

Badge

Embed ▾

pending completion

Build # 2797

Build Type

push

travis-ci-com

Committed by

stefanberger

Commit Message

swtpm: Use open() (not fopen()) when accessing statefile (CVE-2020-28407)

This patch addresses CVE-2020-28407.

Use the open() call rather than the fopen() call when accessing
the statefile and make sure we do not follow symlinks using O_NOFOLLOW.

The modification does not allow an attacker to create a symbolic link
with the name of the temporary file (TMP2-00.permall for TPM 2) and
have this point to a valueable file and swtpm ends up overwriting the
file. The success of the attack depends on the attacker having access
to the TPM's state directory (--tpmstate dir=...).

Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>

Run Details

3733 of 5079 relevant lines covered (73.5%)

22713.6 hits per line

Jobs

ID	Job ID	Ran	Files	Coverage
2	2797.2 (COVERITY_SCAN_TOKEN=[secure] PREFIX="/usr" CONFIG="--with-openssl --prefix=/usr --enable-test-coverage" SUDO="sudo" CHECK="check" SWTPM_TEST_IBMTSS2="1")	13 Nov 2020 02:26PM UTC	0	73.5	Travis Job 2797.2

Source Files on build 2797

Detailed source file information is not available for this build.

stefanberger / swtpm / 2797
73%
master: 74%

README BADGES
x

Markdown

Textile

RDoc

HTML

Rst

Jobs

Source Files on build 2797

stefanberger / swtpm / 2797 73% master: 74%

README BADGES x

Markdown

Textile

RDoc

HTML

Rst

Jobs

Source Files on build 2797

stefanberger / swtpm / 2797
73%
master: 74%

README BADGES
x