Make use of safe file writing in auth handler (fixes #6576)

author sfan5 <sfan5@live.de>

Tue, 7 Nov 2017 10:47:28 +0000 (11:47 +0100)

committer sfan5 <sfan5@live.de>

Wed, 8 Nov 2017 15:14:05 +0000 (16:14 +0100)
author sfan5 <sfan5@live.de>
Tue, 7 Nov 2017 10:47:28 +0000 (11:47 +0100)
committer sfan5 <sfan5@live.de>
Wed, 8 Nov 2017 15:14:05 +0000 (16:14 +0100)
diff --git a/builtin/game/auth.lua b/builtin/game/auth.lua

index bf5bd19a8b7cb9d497df32ed6f83ed5cbb8a208b..3a478111c9b469cf45d1dc4703944d87ae2c7199 100644 (file)
--- a/builtin/game/auth.lua
+++ b/builtin/game/auth.lua
@@ -42,16 +42,15 @@ local function save_auth_file()
                 assert(type(stuff.privileges) == "table")
                 assert(stuff.last_login == nil or type(stuff.last_login) == "number")
         end
-       local file, errmsg = io.open(core.auth_file_path, 'w+b')
-       if not file then
-               error(core.auth_file_path.." could not be opened for writing: "..errmsg)
-       end
+       local content = ""
         for name, stuff in pairs(core.auth_table) do
                 local priv_string = core.privs_to_string(stuff.privileges)
                 local parts = {name, stuff.password, priv_string, stuff.last_login or ""}
-               file:write(table.concat(parts, ":").."\n")
+               content = content .. table.concat(parts, ":") .. "\n"
+       end
+       if not core.safe_file_write(core.auth_file_path, content) then
+               error(core.auth_file_path.." could not be written to")
         end
-       io.close(file)
  end
  
  read_auth_file()
author	sfan5 <sfan5@live.de>
	Tue, 7 Nov 2017 10:47:28 +0000 (11:47 +0100)
committer	sfan5 <sfan5@live.de>
	Wed, 8 Nov 2017 15:14:05 +0000 (16:14 +0100)