Skip to content

curl: add --create-file-mode [mode]#6244

Closed
bagder wants to merge 2 commits into
masterfrom
bagder/create-file-mode
Closed

curl: add --create-file-mode [mode]#6244
bagder wants to merge 2 commits into
masterfrom
bagder/create-file-mode

Conversation

@bagder

@bagder bagder commented Nov 24, 2020

Copy link
Copy Markdown
Member

This option sets the (octal) mode to use for the remote file when one is
created, using the SFTP, SCP or FILE protocols. When not set, the
default is 0644.

@bagder bagder added cmdline tool feature-window A merge of this requires an open feature window SCP/SFTP labels Nov 24, 2020
@tlhackque

tlhackque commented Nov 25, 2020

Copy link
Copy Markdown

When not set, the default is 0644.

This is a bad idea. The default should be whatever the remote provides, which may be based on directory permissions, ACLs, the server's configuration, the username/authentication credentials used...

Directory ACLs can provide a default permission for new files. Server configurations may provide a umask (or equivalent) for new files, as may the login file (e.g. .bashrc) for the account under which it (or the transfer) runs.

Forcing 0644 would enforce a policy choice that may not match the remote server's requirements. cURL should not be setting an arbitrary security policy. Defaults also vary by OS - while 0644 is common for Unix, it's not the default for others.

I support providing a means for the user to request specific permissions - this is a good idea. But the default should not be to override the remote's defaults. The default should be to do nothing - let the remote server do its job.

The same analysis applies to establishing file ownership -- absent a specific user request, cURL wouldn't send a --quote chown to set the remote file's owner or group to the same as the local owner/group. The remote system may not have the same account structure as the local system - and jsmith on the remote may refer to Jane, not John.

@cvengler

cvengler commented Nov 25, 2020

Copy link
Copy Markdown
Contributor

I agree with @tlhackque. I have not reviewed the code yet but as far as I understand the argument can be provided without any subarguments. I would suggest to enforce the input of a mode then?

cvengler
cvengler reviewed Nov 25, 2020
View reviewed changes
Comment thread docs/cmdline-opts/create-file-mode.d Outdated
@bagder

bagder commented Nov 25, 2020

Copy link
Copy Markdown
Member Author

When not set, the default is 0644.
This is a bad idea.

This is already what the code does, this PR doesn't introduce this.

The default should be whatever the remote provides

No can do. We need to set the exact mode for all these three protocols. Unless you know more than I do.

@bagder

bagder commented Nov 25, 2020

Copy link
Copy Markdown
Member Author

the argument can be provided without any subarguments. I would suggest to enforce the input of a mode then?

I don't understand what you're suggesting here. Can you rephrase or show with an example?

bagder added a commit that referenced this pull request Dec 15, 2020
@bagder
curl: add --create-file-mode [mode]
59bf824 
This option sets the (octal) mode to use for the remote file when one is
created, using the SFTP, SCP or FILE protocols. When not set, the
default is 0644.

Closes #6244
@bagder bagder force-pushed the bagder/create-file-mode branch from 86b0ee8 to 59bf824 Compare December 15, 2020 10:48
@bagder bagder removed the feature-window A merge of this requires an open feature window label Dec 15, 2020
bagder added a commit that referenced this pull request Dec 19, 2020
@bagder
curl: add --create-file-mode [mode]
a004d6f 
This option sets the (octal) mode to use for the remote file when one is
created, using the SFTP, SCP or FILE protocols. When not set, the
default is 0644.

Closes #6244
@bagder bagder force-pushed the bagder/create-file-mode branch from 59bf824 to a004d6f Compare December 19, 2020 22:21
@bagder
curl: add --create-file-mode [mode]
3a094ca 
This option sets the (octal) mode to use for the remote file when one is
created, using the SFTP, SCP or FILE protocols. When not set, the
default is 0644.

Closes #6244
@bagder
fixup to make tests pass
3377237
@bagder bagder force-pushed the bagder/create-file-mode branch from a004d6f to 3377237 Compare December 20, 2020 17:44
@bagder bagder closed this in a7696c7 Dec 21, 2020
@bagder bagder deleted the bagder/create-file-mode branch December 22, 2020 12:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@cvengler cvengler cvengler left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

cmdline tool SCP/SFTP

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@bagder @tlhackque @cvengler