test if TMPDIR is accessible before using

Private temporary directories as created by e.g. libpam-tmpdir are nice, but they are also very effective in preventing our priviledge dropping to work as TMPDIR will be set to a directory only root has access to, so working with it as _apt will fail. We circumvent this by extending our check for a usable TMPDIR setting by checking access rights. Closes: 765951
author: David Kalnischkies <david@kalnischkies.de> 2014-10-20 12:00:46 +0200
committer: David Kalnischkies <david@kalnischkies.de> 2014-10-20 14:42:47 +0200
commit: 0d303f1764645284b33924c9be8bf29f0a32ca5c (patch)
tree: a8765da8d91f77762e62bdca1b11fc5c70bbb1d6 /apt-pkg/contrib/fileutl.cc
parent: 4fa34122cbe347d21b3a162ff2fa75dd2e73c3a8 (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/apt-pkg/contrib/fileutl.cc b/apt-pkg/contrib/fileutl.cc
index c51eee737..47033eadf 100644
--- a/apt-pkg/contrib/fileutl.cc
+++ b/apt-pkg/contrib/fileutl.cc
@@ -2066,9 +2066,11 @@ std::string GetTempDir()						/*{{{*/
       tmpdir = P_tmpdir;
 #endif
 
-   // check that tmpdir is set and exists
    struct stat st;
-   if (!tmpdir || strlen(tmpdir) == 0 || stat(tmpdir, &st) != 0)
+   if (!tmpdir || strlen(tmpdir) == 0 || // tmpdir is set
+	 stat(tmpdir, &st) != 0 || (st.st_mode & S_IFDIR) == 0 || // exists and is directory
+	 access(tmpdir, R_OK | W_OK | X_OK) != 0 // current user has rwx access to directory
+      )
       tmpdir = "/tmp";
 
    return string(tmpdir);
author	David Kalnischkies <david@kalnischkies.de>	2014-10-20 12:00:46 +0200
committer	David Kalnischkies <david@kalnischkies.de>	2014-10-20 14:42:47 +0200
commit	0d303f1764645284b33924c9be8bf29f0a32ca5c (patch)
tree	a8765da8d91f77762e62bdca1b11fc5c70bbb1d6 /apt-pkg/contrib/fileutl.cc
parent	4fa34122cbe347d21b3a162ff2fa75dd2e73c3a8 (diff)