tpm2-setup: add missing O_CLOEXEC at two places

author Lennart Poettering <lennart@poettering.net>

Wed, 26 Feb 2025 08:10:16 +0000 (09:10 +0100)

committer Lennart Poettering <lennart@poettering.net>

Wed, 26 Feb 2025 08:13:26 +0000 (09:13 +0100)
author Lennart Poettering <lennart@poettering.net>
Wed, 26 Feb 2025 08:10:16 +0000 (09:10 +0100)
committer Lennart Poettering <lennart@poettering.net>
Wed, 26 Feb 2025 08:13:26 +0000 (09:13 +0100)
diff --git a/src/tpm2-setup/tpm2-setup.c b/src/tpm2-setup/tpm2-setup.c

index ab5bd9bff9d6d5aa95741a5bff3d2e56d9e31a04..43771a28ca213e313efbb7ee3b5f8800aa5abd0f 100644 (file)
--- a/src/tpm2-setup/tpm2-setup.c
+++ b/src/tpm2-setup/tpm2-setup.c
@@ -338,7 +338,7 @@ static int run(int argc, char *argv[]) {
          /* Write out public key (note that we only do that as a help to the user, we don't make use of this ever */
          _cleanup_(unlink_and_freep) char *t = NULL;
          _cleanup_fclose_ FILE *f = NULL;
-        r = fopen_tmpfile_linkable(pem_path, O_WRONLY, &t, &f);
+        r = fopen_tmpfile_linkable(pem_path, O_WRONLY|O_CLOEXEC, &t, &f);
          if (r < 0)
                  return log_error_errno(r, "Failed to open SRK public key file '%s' for writing: %m", pem_path);
  
@@ -365,7 +365,7 @@ static int run(int argc, char *argv[]) {
          (void) mkdir_parents(tpm2b_public_path, 0755);
  
          /* Now also write this out in TPM2B_PUBLIC format */
-        r = fopen_tmpfile_linkable(tpm2b_public_path, O_WRONLY, &t, &f);
+        r = fopen_tmpfile_linkable(tpm2b_public_path, O_WRONLY|O_CLOEXEC, &t, &f);
          if (r < 0)
                  return log_error_errno(r, "Failed to open SRK public key file '%s' for writing: %m", tpm2b_public_path);
author	Lennart Poettering <lennart@poettering.net>
	Wed, 26 Feb 2025 08:10:16 +0000 (09:10 +0100)
committer	Lennart Poettering <lennart@poettering.net>
	Wed, 26 Feb 2025 08:13:26 +0000 (09:13 +0100)