aboutsummaryrefslogtreecommitdiff
path: root/crypto/openssh/openbsd-compat/mktemp.c
diff options
context:
space:
mode:
Diffstat (limited to 'crypto/openssh/openbsd-compat/mktemp.c')
-rw-r--r--crypto/openssh/openbsd-compat/mktemp.c23
1 files changed, 23 insertions, 0 deletions
diff --git a/crypto/openssh/openbsd-compat/mktemp.c b/crypto/openssh/openbsd-compat/mktemp.c
index ac922c1ecbe5..cca956a51f65 100644
--- a/crypto/openssh/openbsd-compat/mktemp.c
+++ b/crypto/openssh/openbsd-compat/mktemp.c
@@ -34,6 +34,29 @@
#include <ctype.h>
#include <unistd.h>
+#ifdef mkstemp
+#undef mkstemp
+#endif
+int mkstemp(char *);
+
+/*
+ * From glibc man page: 'In glibc versions 2.06 and earlier, the file is
+ * created with permissions 0666, that is, read and write for all users.'
+ * Provide a wrapper to make sure the mask is reasonable (POSIX requires
+ * mode 0600, so mask off any other bits).
+ */
+int
+_ssh_mkstemp(char *template)
+{
+ mode_t mask;
+ int ret;
+
+ mask = umask(0177);
+ ret = mkstemp(template);
+ (void)umask(mask);
+ return ret;
+}
+
#if !defined(HAVE_MKDTEMP)
#define MKTEMP_NAME 0
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-24 08:43:44 +0000