create files with reduced permissions when possible

2010-11-24 Omair Majid <[email protected]> * netx/net/sourceforge/jnlp/util/FileUtils.java (createRestrictedDirectory): New method. Creates a directory with reduced permissions. (createRestrictedFile(File,boolean)): New method. Creates a file with reduced permissions. (createRestrictedFile(File,boolean,boolean): New method. Creates a file or a directory with reduced permissions. * netx/net/sourceforge/jnlp/Launcher.java (markNetxRunning): Do not grant unnecessary file permissions. * netx/net/sourceforge/jnlp/runtime/Boot.java: Remove umask from help message. * netx/net/sourceforge/jnlp/runtime/JNLPClassLoader.java (activateNative): Create file with proper permissions. (getNativeDir): Create directory with proper permissions. * netx/net/sourceforge/jnlp/runtime/JNLPRuntime.java (initializeStreams): Create files with proper permissions. * netx/net/sourceforge/jnlp/security/CertWarningPane.java (CheckBoxListener.actionPerformed): Likewise. * netx/net/sourceforge/jnlp/security/KeyStores.java (createKeyStoreFromFile): Likewise. * netx/net/sourceforge/jnlp/security/viewer/CertificatePane.java (ImportButtonListener.actionPerformed): Likewise. (RemoveButtonListener.actionPerformed): Likewise. * netx/net/sourceforge/jnlp/services/SingleInstanceLock.java (createWithPort): Likewise. (getLockFile): Likewise. * netx/net/sourceforge/jnlp/services/XExtendedService.java (openFile): Likewise. * netx/net/sourceforge/jnlp/services/XPersistenceService.java (create): Likewise. * netx/net/sourceforge/jnlp/util/XDesktopEntry.java (installDesktopLauncher): Likewise. * netx/net/sourceforge/jnlp/resources/Messages.properties: Add CantCreateFile, RCantCreateDir and RCantRename. Remove BNoBase and BOUmask.
author: Omair Majid <[email protected]> 2010-11-24 15:47:50 -0500
committer: Omair Majid <[email protected]> 2010-11-24 15:47:50 -0500
commit: 96560e4426643be5805fe106764da8f3d1f09613 (patch)
tree: b391c5912ef4254af4977c3a45eead7c0b376b4c /netx/net/sourceforge/jnlp/security/viewer
parent: 8a4ac3f07e3a60a8cf34fbe12b1b05219e865bf0 (diff)
1 files changed, 15 insertions, 4 deletions
diff --git a/netx/net/sourceforge/jnlp/security/viewer/CertificatePane.java b/netx/net/sourceforge/jnlp/security/viewer/CertificatePane.java
index f309b02..ce36154 100644
--- a/netx/net/sourceforge/jnlp/security/viewer/CertificatePane.java
+++ b/netx/net/sourceforge/jnlp/security/viewer/CertificatePane.java
@@ -45,6 +45,7 @@ import java.awt.FlowLayout;
 import java.awt.event.ActionEvent;
 import java.awt.event.ActionListener;
 import java.awt.event.KeyEvent;
+import java.io.File;
 import java.io.FileOutputStream;
 import java.io.OutputStream;
 import java.io.PrintStream;
@@ -76,6 +77,7 @@ import net.sourceforge.jnlp.security.KeyStores;
 import net.sourceforge.jnlp.security.SecurityUtil;
 import net.sourceforge.jnlp.security.SecurityWarningDialog;
 import net.sourceforge.jnlp.security.KeyStores.Level;
+import net.sourceforge.jnlp.util.FileUtils;
 
 public class CertificatePane extends JPanel {
 
@@ -361,8 +363,13 @@ public class CertificatePane extends JPanel {
                         try {
                                 KeyStore ks = keyStore;
                                 CertificateUtils.addToKeyStore(chooser.getSelectedFile(), ks);
-                                OutputStream os = new FileOutputStream(
-                                        KeyStores.getKeyStoreLocation(currentKeyStoreLevel, currentKeyStoreType));
+                                File keyStoreFile = new File(KeyStores
+                                        .getKeyStoreLocation(currentKeyStoreLevel, currentKeyStoreType));
+                                if (!keyStoreFile.isFile()) {
+                                    FileUtils.createRestrictedFile(keyStoreFile, true);
+                                }
+
+                                OutputStream os = new FileOutputStream(keyStoreFile);
                                 ks.store(os, KeyStores.getPassword());
                                 repopulateTables();
                         } catch (Exception ex) {
@@ -436,8 +443,12 @@ public class CertificatePane extends JPanel {
                                                         JOptionPane.YES_NO_OPTION);
                                         if (i == 0) {
                                                 keyStore.deleteEntry(alias);
-                                                FileOutputStream fos = new FileOutputStream(
-                                                        KeyStores.getKeyStoreLocation(currentKeyStoreLevel, currentKeyStoreType));
+                                                File keyStoreFile = new File(KeyStores
+                                                        .getKeyStoreLocation(currentKeyStoreLevel, currentKeyStoreType));
+                                                if (!keyStoreFile.isFile()) {
+                                                    FileUtils.createRestrictedFile(keyStoreFile, true);
+                                                }
+                                                FileOutputStream fos = new FileOutputStream(keyStoreFile);
                                                 keyStore.store(fos, KeyStores.getPassword());
                                                 fos.close();
                                         }
author	Omair Majid <[email protected]>	2010-11-24 15:47:50 -0500
committer	Omair Majid <[email protected]>	2010-11-24 15:47:50 -0500
commit	96560e4426643be5805fe106764da8f3d1f09613 (patch)
tree	b391c5912ef4254af4977c3a45eead7c0b376b4c /netx/net/sourceforge/jnlp/security/viewer
parent	8a4ac3f07e3a60a8cf34fbe12b1b05219e865bf0 (diff)