Sylvestre Ledru 681030bca3 cp: create destination with restrictive 0o600 initial mode (#10011) ...

cp previously created the destination with mode 0o666 masked by umask
(typically 0o644), then later applied the final permissions via
set_permissions. In a shared directory like /tmp this opened an
observable window where another user could open the destination with
the intermediate broad mode before cp narrowed it, leaking file
contents that were intended to stay private.

Create dest with 0o600 initially in every non-symlink code path —
clone, sparse_copy, sparse_copy_without_hole, fs_copy, the stream
path, and the non-Linux fs::copy fallback. The existing
set_permissions call in copy_file applies the real final mode after
the content is written, so user-visible end state is unchanged; only
the intermediate mode is tightened. Matches GNU cp.

Extend `util/check-safe-traversal.sh` with a cp strace check that
asserts the destination openat carries mode 0600 so a future change
that reintroduces 0666 fails the smoke test.

2026-05-06 11:47:38 +02:00

..

by-util

cp: create destination with restrictive 0o600 initial mode (#10011)

2026-05-06 11:47:38 +02:00

fixtures

sort: fix inconsistent sort ordering under i18n-collator with equal sorting keys (#12013)

2026-04-30 10:33:48 +02:00

uudoc

fix: remove .br before empty lines to fix mandoc warnings

2026-03-19 16:26:49 +01:00

uutests

clippy: fix map_unwrap_or lint

2026-04-17 07:24:13 +02:00

test_localization_and_colors.rs

Remove mentions to hashsum

2026-01-31 14:37:33 +01:00

test_util_name.rs

coreutils: --help args is same with --help

2026-04-20 23:05:29 +02:00

test_uudoc.rs

chore: use consistent copyright header in .rs files (#11020)

2026-02-19 07:33:28 +01:00

tests.rs

tests: add WASI integration test support via wasmtime

2026-04-12 15:19:04 +02:00