On Fri, 26 Jun 2020 11:40:31 +0200 "Johannes Beisswenger" <johannes.beisswen...@cetitec.com> wrote:
> The file mode was accidentally overwritten with only the permission > bits, causing the server to falsely assume that the database was > corrupted (because the msg_header.mode did not contain S_IFDIR > anymore) even though it was the client doing the corruption. > In practice that had the effect of leaking the UID of the user, into > the pseudo environment. Good catch, but we should still be masking in the permissions bits, we just shouldn't be overwriting the non-permissions bits, I think? -s
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#140015): https://lists.openembedded.org/g/openembedded-core/message/140015 Mute This Topic: https://lists.openembedded.org/mt/75120999/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
