* bug#10400: auto-save permissions race condition
@ 2011-12-29 20:55 Paul Eggert
2012-01-07 20:06 ` bug#10400: patch installed Paul Eggert
0 siblings, 1 reply; 2+ messages in thread
From: Paul Eggert @ 2011-12-29 20:55 UTC (permalink / raw)
To: 10400
Tags: patch
This closes a minor security hole.
=== modified file 'src/ChangeLog'
--- src/ChangeLog 2011-12-28 07:55:49 +0000
+++ src/ChangeLog 2011-12-29 20:44:31 +0000
@@ -1,3 +1,15 @@
+2011-12-29 Paul Eggert <eggert@cs.ucla.edu>
+
+ emacs: fix an auto-save permissions race condition
+ * fileio.c (auto_saving_dir_umask): New static var.
+ (Fmake_directory_internal): Use it.
+ (do_auto_save_make_dir): Set it, instead of invoking chmod after
+ creating the directory. The old code temporarily assigns
+ too-generous permissions to the directory.
+ (do_auto_save_eh): Clear it.
+ (Fdo_auto_save): Catch all errors, not just file errors, so
+ that the var is always cleared.
+
2011-12-28 Kenichi Handa <handa@m17n.org>
* coding.c (Fdefine_coding_system_internal): Make an utf-8 base
=== modified file 'src/fileio.c'
--- src/fileio.c 2011-12-17 17:00:49 +0000
+++ src/fileio.c 2011-12-29 20:44:31 +0000
@@ -90,6 +90,9 @@
/* Nonzero during writing of auto-save files */
static int auto_saving;
+/* Nonzero umask during creation of auto-save directories */
+static int auto_saving_dir_umask;
+
/* Set by auto_save_1 to mode of original file so Fwrite_region will create
a new file with the same mode as the original */
static int auto_save_mode_bits;
@@ -2062,7 +2065,7 @@
#ifdef WINDOWSNT
if (mkdir (dir) != 0)
#else
- if (mkdir (dir, 0777) != 0)
+ if (mkdir (dir, 0777 & ~auto_saving_dir_umask) != 0)
#endif
report_file_error ("Creating directory", list1 (directory));
@@ -5205,16 +5208,18 @@
static Lisp_Object
do_auto_save_make_dir (Lisp_Object dir)
{
- Lisp_Object mode;
+ Lisp_Object result;
- call2 (Qmake_directory, dir, Qt);
- XSETFASTINT (mode, 0700);
- return Fset_file_modes (dir, mode);
+ auto_saving_dir_umask = 077;
+ result = call2 (Qmake_directory, dir, Qt);
+ auto_saving_dir_umask = 0;
+ return result;
}
static Lisp_Object
do_auto_save_eh (Lisp_Object ignore)
{
+ auto_saving_dir_umask = 0;
return Qnil;
}
@@ -5282,7 +5287,7 @@
dir = Ffile_name_directory (listfile);
if (NILP (Ffile_directory_p (dir)))
internal_condition_case_1 (do_auto_save_make_dir,
- dir, Fcons (Fcons (Qfile_error, Qnil), Qnil),
+ dir, Qt,
do_auto_save_eh);
UNGCPRO;
}
^ permalink raw reply [flat|nested] 2+ messages in thread
* bug#10400: patch installed
2011-12-29 20:55 bug#10400: auto-save permissions race condition Paul Eggert
@ 2012-01-07 20:06 ` Paul Eggert
0 siblings, 0 replies; 2+ messages in thread
From: Paul Eggert @ 2012-01-07 20:06 UTC (permalink / raw)
To: 10400-done, 10401-done
I installed this patch into the Emacs trunk as part of
bzr 106821 and am marking the bug as done.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2012-01-07 20:06 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2011-12-29 20:55 bug#10400: auto-save permissions race condition Paul Eggert
2012-01-07 20:06 ` bug#10400: patch installed Paul Eggert
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/emacs.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).