bug#33366: emacsclient to not follow symlinks to sockets

bug-gnu-emacs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#33366: emacsclient to not follow symlinks to sockets

From:	Paul Eggert
Subject:	bug#33366: emacsclient to not follow symlinks to sockets
Date:	Mon, 3 Dec 2018 00:09:15 -0800
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.2.1

After looking into this, I don't see any good solution on older systems whereEmacs sockets are put under /tmp, particularly on ancient systems where /tmp isnot sticky. There are too many ways to fool Emacs with symlinks, and none of theworkarounds avoid all races. I did install the attached patch to fix a race thatis reasonably easy to fix, by checking the socket's UID after connecting to itas well as before connecting to it.

On more-modern desktops where Emacs sockets live under XDG_RUNTIME_DIR (seeBug#33367, now fixed), the security issues of symlinks-to-sockets should go awayunless the user explicitly specifies a socket. This may be the best we can do.

0001-emacsclient-fix-symlink-socket-race.patch
Description: Text Data

[Prev in Thread]

Current Thread

[Next in Thread]

bug#33366: emacsclient to not follow symlinks to sockets, Paul Eggert <=

Prev by Date: bug#33532: 26.1; set-window-configuration does not restore display start
Next by Date: bug#33567: Syntactic fontification of diff hunks
Previous by thread: bug#33595: 26; Have `try-completion' or `completion--done' run abnormal hook if sole completion
Next by thread: bug#33601: 26; Add macro `with-hook-added'
Index(es):
- Date
- Thread