This is the mail archive of the
gcc-patches@gcc.gnu.org
mailing list for the GCC project.
Re: gccbug security patch
- To: "Joseph S. Myers" <jsm28 at cam dot ac dot uk>
- Subject: Re: gccbug security patch
- From: Jeffrey A Law <law at redhat dot com>
- Date: Tue, 02 Jan 2001 22:42:06 -0700
- cc: gcc-patches at gcc dot gnu dot org
- Reply-To: law at redhat dot com
In message <Pine.LNX.4.30.0012211800380.18264-100000@kern.srcf.societies.cam.
ac.uk>you write:
> This patch addresses other/1492 (gccbug /tmp security). The reason
> for using a configure test is that it's important for secure systems
> to be able to fail closed - i.e., if for any reason mktemp doesn't
> succeed, gccbug shouldn't (on systems which should have mktemp) fall
> back to less secure methods.
>
> (mktemp(1) originates from OpenBSD; and is now available on GNU/Linux
> distributions and other operating systems.)
>
> other/1492 was submitted using the patched gccbug. OK to commit?
>
> 2000-12-21 Joseph S. Myers <jsm28@cam.ac.uk>
>
> * configure.in: Check for the mktemp command.
> * configure: Regenerate.
> * gccbug.in: Use a separate temporary file $TEMP0 for one use of
> $TEMP. Create temporary files with mktemp, if available at
> configure time; otherwise use set -C. Remove temporary files
> before exit.
This is fine. Please install this patch.
Thanks,
jeff