aboutsummaryrefslogtreecommitdiffstats
path: root/main/apk-tools/0004-package-don-t-leak-signing-key-file-fd.patch
diff options
context:
space:
mode:
authorNatanael Copa <ncopa@alpinelinux.org>2010-05-26 15:12:15 +0000
committerNatanael Copa <ncopa@alpinelinux.org>2010-05-26 15:12:15 +0000
commitf12146d5ba7a85010295e4142ca35d9ea1588fb2 (patch)
tree3b296b5889a716a5c3904c8e044f8f3658d9f448 /main/apk-tools/0004-package-don-t-leak-signing-key-file-fd.patch
parent4dc9bf2acd6573e4599a07be2f3fa1da418642ff (diff)
downloadaports-f12146d5ba7a85010295e4142ca35d9ea1588fb2.tar.bz2
aports-f12146d5ba7a85010295e4142ca35d9ea1588fb2.tar.xz
main/apk-tools: backprt more patches from upstream
Diffstat (limited to 'main/apk-tools/0004-package-don-t-leak-signing-key-file-fd.patch')
-rw-r--r--main/apk-tools/0004-package-don-t-leak-signing-key-file-fd.patch27
1 files changed, 27 insertions, 0 deletions
diff --git a/main/apk-tools/0004-package-don-t-leak-signing-key-file-fd.patch b/main/apk-tools/0004-package-don-t-leak-signing-key-file-fd.patch
new file mode 100644
index 0000000000..818eeb1e79
--- /dev/null
+++ b/main/apk-tools/0004-package-don-t-leak-signing-key-file-fd.patch
@@ -0,0 +1,27 @@
+From fe55da70741621f7bac2cd943b64cc13e25f9427 Mon Sep 17 00:00:00 2001
+From: =?UTF-8?q?Timo=20Ter=C3=A4s?= <timo.teras@iki.fi>
+Date: Wed, 26 May 2010 14:30:08 +0300
+Subject: [PATCH 4/5] package: don't leak signing key file fd
+
+openssl BIO does not close the fd unless we explicitly tell it to
+do so.
+---
+ src/package.c | 2 +-
+ 1 files changed, 1 insertions(+), 1 deletions(-)
+
+diff --git a/src/package.c b/src/package.c
+index b265468..b97c412 100644
+--- a/src/package.c
++++ b/src/package.c
+@@ -441,7 +441,7 @@ int apk_sign_ctx_process_file(struct apk_sign_ctx *ctx,
+ if (fd < 0)
+ return 0;
+
+- bio = BIO_new_fp(fdopen(fd, "r"), 0);
++ bio = BIO_new_fp(fdopen(fd, "r"), BIO_CLOSE);
+ ctx->signature.pkey = PEM_read_bio_PUBKEY(bio, NULL, NULL, NULL);
+ if (ctx->signature.pkey != NULL) {
+ if (fi->name[6] == 'R')
+--
+1.7.1
+