From 0f010ef2130e887347212d4a3f81abafc78985a0 Mon Sep 17 00:00:00 2001 From: Zbigniew Jędrzejewski-Szmek Date: Tue, 28 Jan 2014 18:25:31 -0500 Subject: Base mkostemp_safe on mkostemp It is nice to wrap umask handling and return convention, but glibc's mkostemp is async-signal-safe already. --- src/shared/util.c | 35 ++++++----------------------------- 1 file changed, 6 insertions(+), 29 deletions(-) (limited to 'src/shared/util.c') diff --git a/src/shared/util.c b/src/shared/util.c index 30512d1646..4c5b048286 100644 --- a/src/shared/util.c +++ b/src/shared/util.c @@ -6093,43 +6093,20 @@ int getpeersec(int fd, char **ret) { return 0; } +/* This is much like like mkostemp() but is subject to umask(). */ int mkostemp_safe(char *pattern, int flags) { - unsigned long tries = TMP_MAX; - char *s; - int r; _cleanup_umask_ mode_t u; + int fd; assert(pattern); u = umask(077); - /* This is much like like mkostemp() but avoids using any - * static variables, thus is async signal safe. Also, it's not - * subject to umask(). */ - - s = endswith(pattern, "XXXXXX"); - if (!s) - return -EINVAL; - - while (tries--) { - unsigned i; - int fd; - - r = dev_urandom(s, 6); - if (r < 0) - return r; - - for (i = 0; i < 6; i++) - s[i] = ALPHANUMERICAL[(unsigned) s[i] % (sizeof(ALPHANUMERICAL)-1)]; - - fd = open(pattern, flags|O_EXCL|O_CREAT|O_NOCTTY|O_NOFOLLOW, S_IRUSR|S_IWUSR); - if (fd >= 0) - return fd; - if (!IN_SET(errno, EEXIST, EINTR)) - return -errno; - } + fd = mkostemp(pattern, flags); + if (fd < 0) + return -errno; - return -EEXIST; + return fd; } int open_tmpfile(const char *path, int flags) { -- cgit v1.2.3-54-g00ecf