Create log files if they do not already exist, but do not follow

symlinks. ok markus@
author: canacar <canacar@openbsd.org> 2004-01-18 14:21:52 +0000
committer: canacar <canacar@openbsd.org> 2004-01-18 14:21:52 +0000
commit: 0776e37832ab9cfde981f15bc2c1e8dd1a2f9b07 (patch)
tree: e2e777ab97638b0c5b086c33e2ff49bb62ce30e9
parent: Silence match() unless DEBUG. (diff)
download: wireguard-openbsd-0776e37832ab9cfde981f15bc2c1e8dd1a2f9b07.tar.xz
wireguard-openbsd-0776e37832ab9cfde981f15bc2c1e8dd1a2f9b07.zip
1 files changed, 5 insertions, 4 deletions
diff --git a/sbin/pflogd/privsep.c b/sbin/pflogd/privsep.c
index 0eb244ba35a..158255d3272 100644
--- a/sbin/pflogd/privsep.c
+++ b/sbin/pflogd/privsep.c
@@ -1,4 +1,4 @@
-/*	$OpenBSD: privsep.c,v 1.5 2004/01/15 20:10:43 canacar Exp $	*/
+/*	$OpenBSD: privsep.c,v 1.6 2004/01/18 14:21:52 canacar Exp $	*/
 
 /*
  * Copyright (c) 2003 Can Erkin Acar
@@ -141,9 +141,10 @@ priv_init(void)
 		case PRIV_OPEN_LOG:
 			logmsg(LOG_DEBUG,
 			    "[priv]: msg PRIV_OPEN_LOG received");
-
-			/* XXX */
-			fd = open(filename, O_RDWR|O_APPEND|O_NONBLOCK, 0);
+			/* create or append logs but do not follow symlinks */
+			fd = open(filename,
+			    O_RDWR|O_CREAT|O_APPEND|O_NONBLOCK|O_NOFOLLOW,
+			    0600);
 			if (fd < 0)
 				logmsg(LOG_NOTICE,
 				    "[priv]: failed to open %s: %s",
author	canacar <canacar@openbsd.org>	2004-01-18 14:21:52 +0000
committer	canacar <canacar@openbsd.org>	2004-01-18 14:21:52 +0000
commit	0776e37832ab9cfde981f15bc2c1e8dd1a2f9b07 (patch)
tree	e2e777ab97638b0c5b086c33e2ff49bb62ce30e9
parent	Silence match() unless DEBUG. (diff)
download	wireguard-openbsd-0776e37832ab9cfde981f15bc2c1e8dd1a2f9b07.tar.xz wireguard-openbsd-0776e37832ab9cfde981f15bc2c1e8dd1a2f9b07.zip