u2fd: Fix file permissions for secret and counter
I failed at octal, and didn't noticed when testing
locally because u2fd was running as root (pending
the changes I've just sent out to set up daemon-store).
BUG=b:123161715
TEST=local test on soraka, check file permissions are correct
Change-Id: I37585af511dd4b475b877456b9401567bbdce850
Reviewed-on: https://chromium-review.googlesource.com/1535206
Commit-Ready: Louis Collard <louiscollard@chromium.org>
Tested-by: Louis Collard <louiscollard@chromium.org>
Reviewed-by: Mike Frysinger <vapier@chromium.org>
diff --git a/u2fd/user_state.cc b/u2fd/user_state.cc
index 93b2baf..19df9f6 100644
--- a/u2fd/user_state.cc
+++ b/u2fd/user_state.cc
@@ -142,7 +142,7 @@
return;
}
- if (!brillo::WriteBlobToFileAtomic(path, *user_secret_, 600)) {
+ if (!brillo::WriteBlobToFileAtomic(path, *user_secret_, 0600)) {
LOG(INFO) << "Failed to persist new user secret to disk.";
user_secret_.reset();
// TODO(louiscollard): Delete file if present? Validate when loading?
@@ -177,7 +177,7 @@
return brillo::WriteToFileAtomic(path,
reinterpret_cast<const char*>(counter_ptr),
- sizeof(*counter_ptr), 600);
+ sizeof(*counter_ptr), 0600);
}
} // namespace u2f