From a6799d986fc3ac5b7eda9ae34c0a89364d9b9838 Mon Sep 17 00:00:00 2001
From: zawz <zawz@hotmail.fr>
Date: Fri, 8 Apr 2022 14:47:26 +0200
Subject: [PATCH] security: restrict permissions of temporary dir

---
 src/archive.sh | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/archive.sh b/src/archive.sh
index 7c09c03..e51ad4e 100644
--- a/src/archive.sh
+++ b/src/archive.sh
@@ -45,6 +45,8 @@ archive_exec()
   # tmp files
   archive_tmpdir="$TMPDIR/zpass_$(randalnum 20)"
   keyfile="$archive_tmpdir/$(randalnum 20).key"
+  mkdir -p "$archive_tmpdir" || exit $?
+  chmod 700 "$archive_tmpdir" || exit $?
   # operation
   (
     # unpack