This is the mail archive of the gcc-patches@gcc.gnu.org mailing list for the GCC project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]

Re: gccbug security patch




  In message <Pine.LNX.4.30.0012211800380.18264-100000@kern.srcf.societies.cam.
ac.uk>you write:
  > This patch addresses other/1492 (gccbug /tmp security).  The reason
  > for using a configure test is that it's important for secure systems
  > to be able to fail closed - i.e., if for any reason mktemp doesn't
  > succeed, gccbug shouldn't (on systems which should have mktemp) fall
  > back to less secure methods.
  > 
  > (mktemp(1) originates from OpenBSD; and is now available on GNU/Linux
  > distributions and other operating systems.)
  > 
  > other/1492 was submitted using the patched gccbug.  OK to commit?
  > 
  > 2000-12-21  Joseph S. Myers  <jsm28@cam.ac.uk>
  > 
  > 	* configure.in: Check for the mktemp command.
  > 	* configure: Regenerate.
  > 	* gccbug.in: Use a separate temporary file $TEMP0 for one use of
  > 	$TEMP.  Create temporary files with mktemp, if available at
  > 	configure time; otherwise use set -C.  Remove temporary files
  > 	before exit.
This is fine.  Please install this patch.

Thanks,
jeff


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]