64270 – daemon.sh doesn't pass the default umask to JSVC

Bug 64270 - daemon.sh doesn't pass the default umask to JSVC

Summary: daemon.sh doesn't pass the default umask to JSVC

Status:	RESOLVED FIXED

Alias:	None

Product:	Tomcat 8
Classification:	Unclassified
Component:	Packaging (show other bugs)
Version:	8.5.53
Hardware:	PC Mac OS X 10.1

Importance:	P2 normal (vote)
Target Milestone:	----
Assignee:	Tomcat Developers Mailing List

URL:
Keywords:

Depends on:
Blocks:

Reported:	2020-03-26 15:40 UTC by John Kang
Modified:	2020-03-30 14:51 UTC (History)
CC List:	0 users

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description John Kang 2020-03-26 15:40:35 UTC

hi there,

when I refered to the tomcat document It says that "Tomcat runs with a default umask of 0027 to maintain these permissions for files created while Tomcat is running (e.g. log files, expanded WARs, etc.)"

- https://tomcat.apache.org/tomcat-8.5-doc/security-howto.html
- 29) Security Considerations -> Non Tomcat settings

I can also confirm that there is a default umask value in bin/catalina.sh, but daemon.sh does not pass the default umask to JSVC.

I raised this issue as following and they said this should be fixed by Tomcat.
- https://issues.apache.org/jira/browse/DAEMON-417.

I'm not sure if I can make a issue here.

Thanks,
John

Comment 1 Mark Thomas 2020-03-30 14:51:51 UTC

Fixed in:
- master for 10.0.0-M4 onwards
- 9.0.x for 9.0.34 onwards
- 8.5.x for 8.5.54 onwards
- 7.0.x for 7.0.104 onwards