1berry/nodejs
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

repl: create history file with mode 0600

Browse Source 
Set the mode bits on the history file to 0o600 instead of leaving it
unspecified, which resulted in 0o755 on Unices.

Test code mostly written by Trott:
https://github.com/nodejs/node/issues/3392#issuecomment-148634126.

PR-URL: https://github.com/nodejs/node/pull/3394
Fixes: https://github.com/nodejs/node/issues/3392
Reviewed-By: Rich Trott <rtrott@gmail.com>
Reviewed-By: Roman Reiss <me@silverwind.io>
Reviewed-By: Jeremiah Senkpiel <fishrock123@rocketmail.com>
Reviewed-By: Santiago Gimeno <santiago.gimeno@gmail.com>
Reviewed-By: James M Snell <jasnell@gmail.com>
This commit is contained in:
Carl Lei 2015-10-16 16:29:34 +08:00 committed by silverwind
parent be480b1499
commit b72d048a74
No known key found for this signature in database
GPG Key ID: 2E62B41C93869443
2 changed files with 57 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
lib/internal/repl.js
View File

@ -93,7 +93,10 @@ function setupHistory(repl, historyPath, oldHistoryPath, ready) {
var writing = false; var writing = false;
var pending = false; var pending = false;
repl.pause(); repl.pause();
fs.open(historyPath, 'a+', oninit); // History files are conventionally not readable by others:
// https://github.com/nodejs/node/issues/3392
// https://github.com/nodejs/node/pull/3394
fs.open(historyPath, 'a+', 0o0600, oninit);
function oninit(err, hnd) { function oninit(err, hnd) {
if (err) { if (err) {

53
test/parallel/test-repl-history-perm.js Normal file
View File

@ -0,0 +1,53 @@
'use strict';
// Flags: --expose_internals
const common = require('../common');
if (common.isWindows) {
console.log('1..0 # Skipped: Win32 uses ACLs for file permissions, ' +
'modes are always 0666 and says nothing about group/other ' +
'read access.');
return;
}
const assert = require('assert');
const path = require('path');
const fs = require('fs');
const repl = require('internal/repl');
const Duplex = require('stream').Duplex;
// Invoking the REPL should create a repl history file at the specified path
// and mode 600.
var stream = new Duplex();
stream.pause = stream.resume = function() {};
// ends immediately
stream._read = function() {
this.push(null);
};
stream._write = function(c, e, cb) {
cb();
};
stream.readable = stream.writable = true;
common.refreshTmpDir();
const replHistoryPath = path.join(common.tmpDir, '.node_repl_history');
const checkResults = common.mustCall(function(err, r) {
if (err)
throw err;
r.input.end();
const stat = fs.statSync(replHistoryPath);
assert.strictEqual(
stat.mode & 0o777, 0o600,
'REPL history file should be mode 0600');
});
repl.createInternalRepl(
{NODE_REPL_HISTORY: replHistoryPath},
{
terminal: true,
input: stream,
output: stream
},
checkResults
);