[PATCH 1/2] um: Set secure access mode for temporary file

From: MickaÃl SalaÃn
Date: Sat Nov 28 2015 - 17:50:50 EST

Next message: MickaÃl SalaÃn: "Re: [PATCH 1/2] um: Set secure access mode for temporary file"
Previous message: kbuild test robot: "awk: scripts/ld-version.sh: line 4: regular expression compile failed (missing '(')"
In reply to: MickaÃl SalaÃn: "Re: [PATCH 2/2] um: Use race-free temporary file creation"
Next in thread: Richard Weinberger: "Re: [PATCH 1/2] um: Set secure access mode for temporary file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Replace the default insecure mode 0777 with 0700 for temporary file.

Prohibit other users to change the executable mapped code.

Signed-off-by: MickaÃl SalaÃn <mic@xxxxxxxxxxx>
---
arch/um/os-Linux/mem.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/arch/um/os-Linux/mem.c b/arch/um/os-Linux/mem.c
index 897e9ad..798aeb4 100644
--- a/arch/um/os-Linux/mem.c
+++ b/arch/um/os-Linux/mem.c
@@ -142,7 +142,7 @@ static int __init create_tmp_file(unsigned long long len)
if (fd < 0)
exit(1);

- err = fchmod(fd, 0777);
+ err = fchmod(fd, 0700);
if (err < 0) {
perror("fchmod");
exit(1);
--
2.6.2

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: MickaÃl SalaÃn: "Re: [PATCH 1/2] um: Set secure access mode for temporary file"
Previous message: kbuild test robot: "awk: scripts/ld-version.sh: line 4: regular expression compile failed (missing '(')"
In reply to: MickaÃl SalaÃn: "Re: [PATCH 2/2] um: Use race-free temporary file creation"
Next in thread: Richard Weinberger: "Re: [PATCH 1/2] um: Set secure access mode for temporary file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]