ChangeLogTag:Thu Jul 12 15:10:52 2001 Ossama Othman <ossama@uci.edu>

2 files changed, 14 insertions, 1 deletions

diff --git a/TAO/ChangeLogs/ChangeLog-02a b/TAO/ChangeLogs/ChangeLog-02a
index 09228ac0d79..41976a5cd06 100644
--- a/TAO/ChangeLogs/ChangeLog-02a
+++ b/TAO/ChangeLogs/ChangeLog-02a
@@ -1,3 +1,10 @@
+Thu Jul 12 15:10:52 2001  Ossama Othman  <ossama@uci.edu>
+
+	* TAO_IDL/driver/drv_preproc.cpp (DRV_pre_proc):
+
+	  Open the temporary file with the O_EXCL flag to close a symbolic
+	  link attack vulnerability.
+
 Thu Jul 12 13:31:25 2001  Ossama Othman  <ossama@uci.edu>
 
 	* orbsvcs/orbsvcs/Security/EstablishTrustPolicy.h:
diff --git a/TAO/TAO_IDL/driver/drv_preproc.cpp b/TAO/TAO_IDL/driver/drv_preproc.cpp
index 50df446333a..506d948bccf 100644
--- a/TAO/TAO_IDL/driver/drv_preproc.cpp
+++ b/TAO/TAO_IDL/driver/drv_preproc.cpp
@@ -483,8 +483,14 @@ DRV_pre_proc (const char *myfile)
 
   cpp_options.command_line (arglist);
 
+  /// Remove any existing output file.
+  (void) ACE_OS::unlink (tmp_file);
+
+  // If the following open() fails, then we're either being hit with a
+  // symbolic link attack, or another process opened the file before
+  // us.
   ACE_HANDLE fd = ACE_OS::open (tmp_file,
-                                O_WRONLY | O_CREAT | O_TRUNC,
+                                O_WRONLY | O_CREAT | O_EXCL,
                                 ACE_DEFAULT_FILE_PERMS);
 
   if (fd == ACE_INVALID_HANDLE)