nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-11-10 21:23:58 +01:00
Code Issues Packages Projects Releases Wiki Activity

Explicitly chmod AF_UNIX sockets to 0600 when *GroupWritable isn't specified

Browse Source
This commit is contained in:
Andrea Shepard 2015-01-13 00:27:04 +00:00
parent 4316bb601a
commit 066acaf6b9
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
src/or/connection.c
View File

@ -1244,6 +1244,16 @@ connection_listener_new(const struct sockaddr *listensockaddr,
log_warn(LD_FS,"Unable to make %s group-writable.", address);
goto err;
}
} else if ((type == CONN_TYPE_CONTROL_LISTENER &&
!(options->ControlSocketsGroupWritable)) ||
(type == CONN_TYPE_AP_LISTENER &&
!(options->SocksSocketsGroupWritable))) {
/* We need to use chmod; fchmod doesn't work on sockets on all
* platforms. */
if (chmod(address, 0600) < 0) {
log_warn(LD_FS,"Unable to make %s group-writable.", address);
goto err;
}
}
if (listen(s, SOMAXCONN) < 0) {