1
0
Fork 0
mirror of https://github.com/denoland/deno.git synced 2024-12-24 16:19:12 -05:00
denoland-deno/cli/tests/integration
Matt Mastracci 00970daea2
fix(cli): harden permission stdio check (#21778)
Harden the code that does permission checks to protect against
re-opening of stdin.

Code that runs FFI is vulnerable to an attack where fd 0 is closed
during a permission check and re-opened with a file that contains a
positive response (ie: `y` or `A`). While FFI code is dangerous in
general, we can make it more difficult for FFI-enabled code to bypass
additional permission checks.

- Checks to see if the underlying file for stdin has changed from the
start to the end of the permission check (detects races)
- Checks to see if the message is excessively long (lowering the window
for races)
- Checks to see if stdin and stderr are still terminals at the end of
the function (making races more difficult)
2024-01-04 00:31:39 +01:00
..
bench_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
bundle_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
cache_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
cert_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
check_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
compile_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
coverage_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
doc_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
eval_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
flags_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
fmt_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
info_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
init_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
inspector_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
install_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
js_unit_tests.rs chore: increase unit test timeout to 3m (#21760) 2024-01-02 16:56:52 +01:00
jsr_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
jupyter_tests.rs fix(jupyter): error message when install fails due to jupyter command not being on PATH (#21767) 2024-01-03 14:45:10 +00:00
lint_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
lsp_tests.rs chore: ignore hanging lsp jsx test (#21771) 2024-01-03 04:47:59 +00:00
mod.rs fix(jupyter): error message when install fails due to jupyter command not being on PATH (#21767) 2024-01-03 14:45:10 +00:00
node_compat_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
node_unit_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
npm_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
publish_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
repl_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
run_tests.rs fix(cli): harden permission stdio check (#21778) 2024-01-04 00:31:39 +01:00
shared_library_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
task_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
test_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
upgrade_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
vendor_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
watcher_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00
worker_tests.rs chore: update copyright to 2024 (#21753) 2024-01-01 19:58:21 +00:00