linux中的文件漏洞实际上是如何工作的
我对linux上文件洞的工作原理有点困惑:linux中的文件漏洞实际上是如何工作的,linux,io,operating-system,filesystems,Linux,Io,Operating System,Filesystems,我对linux上文件洞的工作原理有点困惑: int fd = open("/tmp/file1", O_RDWR | O_TRUNC); write(fd, "bbbb", 4); lseek(fd, SEEK_SET, 10000); write(fd, "aaaa", 4); lseek(fd, SEEK_SET, 50); write(fd, "cccc", 4); close(fd); 为什么cat/tmp/file1会产生 bbbbaaaacccc ??
int fd = open("/tmp/file1", O_RDWR | O_TRUNC);
write(fd, "bbbb", 4);
lseek(fd, SEEK_SET, 10000);
write(fd, "aaaa", 4);
lseek(fd, SEEK_SET, 50);
write(fd, "cccc", 4);
close(fd);
bbbbaaaacccc
int res = lseek(fd, 10000, SEEK_SET);
if (res == -1) {
perror("lseek has failed");
return 1;
}
lseek(fd, SEEK_SET, 10000); /* WRONG order for second and third parametes ! */
lseek(fd, 10000, SEEK_SET);
off_t lseek(int fd, off_t offset, int whence);
The lseek() function repositions the file offset of the open file
description associated with the file descriptor fd to the argument
offset according to the directive whence as follows:
SEEK_SET
The file offset is set to offset bytes.
SEEK_CUR
The file offset is set to its current location plus offset bytes.
SEEK_END
The file offset is set to the size of the file plus offset
bytes.
int res = lseek(fd, 10000, SEEK_SET);
if (res == -1) {
perror("lseek has failed");
return 1;
}
lseek(fd, SEEK_SET, 10000); /* WRONG order for second and third parametes ! */
lseek(fd, 10000, SEEK_SET);
off_t lseek(int fd, off_t offset, int whence);
The lseek() function repositions the file offset of the open file
description associated with the file descriptor fd to the argument
offset according to the directive whence as follows:
SEEK_SET
The file offset is set to offset bytes.
SEEK_CUR
The file offset is set to its current location plus offset bytes.
SEEK_END
The file offset is set to the size of the file plus offset
bytes.
您确定
lseeklseeklseeklseek