The file-system API of contemporary systems makes programs vulnerable to TOCTTOU (time
of check to time of use) race conditions. Existing solutions either help users to detect these
problems (by pinpointing their locations in the code), or prevent the problem altogether (by
modifying the kernel or its API). The latter alternative is not prevalent, and the former is just
the first step: programmers must still address TOCTTOU flaws within the limits of the existing
API with which several important tasks can not be accomplished in a portable …

The file-system API of contemporary systems makes programs vulnerable to TOCTTOU (time
of check to time of use) race conditions. Existing solutions either help users to detect these
problems (by pinpointing their locations in the code), or prevent the problem altogether (by
modifying the kernel or its API). The latter alternative is not prevalent, and the former is just
the first step: programmers must still address TOCTTOU flaws within the limits of the existing
API with which several important tasks can not be accomplished in a portable …