From 9ced226336e2ef5c88be3179519d19fcdf8b0aee Mon Sep 17 00:00:00 2001 From: Pale Moon Date: Tue, 10 Jul 2018 17:51:04 +0200 Subject: Make nsAtomicFileOutputStream::DoOpen() fail if the file is read-only. This means we don't leave behind prefs-.js files when prefs.js is read-only. --- netwerk/base/nsFileStreams.cpp | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/netwerk/base/nsFileStreams.cpp b/netwerk/base/nsFileStreams.cpp index 8b719df20..1946fc7f5 100644 --- a/netwerk/base/nsFileStreams.cpp +++ b/netwerk/base/nsFileStreams.cpp @@ -907,11 +907,18 @@ nsAtomicFileOutputStream::DoOpen() } if (NS_SUCCEEDED(rv) && mTargetFileExists) { + // Abort if |file| is not writable; it won't work as an output stream. + bool isWritable; + if (NS_SUCCEEDED(file->IsWritable(&isWritable)) && !isWritable) { + return NS_ERROR_FILE_ACCESS_DENIED; + } + uint32_t origPerm; if (NS_FAILED(file->GetPermissions(&origPerm))) { NS_ERROR("Can't get permissions of target file"); origPerm = mOpenParams.perm; } + // XXX What if |perm| is more restrictive then |origPerm|? // This leaves the user supplied permissions as they were. rv = tempResult->CreateUnique(nsIFile::NORMAL_FILE_TYPE, origPerm); -- cgit v1.2.3