Home Explore Help
Register Sign In
OWEALs
/
uci
mirror of https://git.openwrt.org/project/uci.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

file: preserve original file mode after commit

Because mkstemp() create a file with mode 0600, only user doing
the commit (typically root) will be allowed to inspect the content
of the file after uci commit.

Signed-off-by: Alin Nastac <alin.nastac@gmail.com>
Alin Nastac 4 years ago
parent
e8d83732f9
commit
ec8d323394
1 changed files with 2 additions and 1 deletions
Split View Show Diff Stats
  1. 2 1
      file.c

+ 2 - 1
file.c
View File 

@@ -724,6 +724,7 @@ static void uci_file_commit(struct uci_context *ctx, struct uci_package **packag
 
 	char *volatile name = NULL;
 
 	char *volatile path = NULL;
 
 	char *filename = NULL;
 
+	struct stat statbuf;
 
 	volatile bool do_rename = false;
 
 	int fd;
 
 
@@ -801,7 +802,7 @@ done:
 
 	uci_close_stream(f1);
 
 	if (do_rename) {
 
 		path = realpath(p->path, NULL);
 
-		if (!path || rename(filename, path)) {
 
+		if (!path || stat(path, &statbuf) || chmod(filename, statbuf.st_mode) || rename(filename, path)) {
 
 			unlink(filename);
 
 			UCI_THROW(ctx, UCI_ERR_IO);
 
 		}