From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail From: Jim Porter Newsgroups: gmane.emacs.bugs Subject: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand Date: Thu, 9 Dec 2021 11:45:13 -0800 Message-ID: References: <53706fa9-1458-fb5c-bd31-15ab555b59e9@gmail.com> <834k7kze0z.fsf@gnu.org> <212e4974-785a-65e0-70cc-fed7ea3ddacf@cs.ucla.edu> <3107b151-c56b-7c8d-7277-cbc39273a401@gmail.com> <835yryx5yf.fsf@gnu.org> <83r1amutcf.fsf@gnu.org> <6cee9e68-242b-3e96-dcd6-b1e834310fad@cs.ucla.edu> <83ilvxtyox.fsf@gnu.org> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="26557"; mail-complaints-to="usenet@ciao.gmane.io" Cc: ulm@gentoo.org, 51327@debbugs.gnu.org, stefan@marxist.se To: Eli Zaretskii , Paul Eggert Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Thu Dec 09 20:46:13 2021 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1mvPMq-0006hd-KK for geb-bug-gnu-emacs@m.gmane-mx.org; Thu, 09 Dec 2021 20:46:12 +0100 Original-Received: from localhost ([::1]:51626 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1mvPMp-0004sa-FC for geb-bug-gnu-emacs@m.gmane-mx.org; Thu, 09 Dec 2021 14:46:11 -0500 Original-Received: from eggs.gnu.org ([209.51.188.92]:59862) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1mvPMh-0004pJ-Hq for bug-gnu-emacs@gnu.org; Thu, 09 Dec 2021 14:46:03 -0500 Original-Received: from debbugs.gnu.org ([209.51.188.43]:33275) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1mvPMg-0008Ei-Ag for bug-gnu-emacs@gnu.org; Thu, 09 Dec 2021 14:46:03 -0500 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1mvPMf-0000Hr-TE for bug-gnu-emacs@gnu.org; Thu, 09 Dec 2021 14:46:01 -0500 X-Loop: help-debbugs@gnu.org Resent-From: Jim Porter Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Thu, 09 Dec 2021 19:46:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 51327 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: security patch Original-Received: via spool by 51327-submit@debbugs.gnu.org id=B51327.16390791221052 (code B ref 51327); Thu, 09 Dec 2021 19:46:01 +0000 Original-Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 19:45:22 +0000 Original-Received: from localhost ([127.0.0.1]:44821 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1mvPM2-0000Gt-GM for submit@debbugs.gnu.org; Thu, 09 Dec 2021 14:45:22 -0500 Original-Received: from mail-pj1-f52.google.com ([209.85.216.52]:46700) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1mvPM0-0000Gi-Tb for 51327@debbugs.gnu.org; Thu, 09 Dec 2021 14:45:21 -0500 Original-Received: by mail-pj1-f52.google.com with SMTP id np6-20020a17090b4c4600b001a90b011e06so5680657pjb.5 for <51327@debbugs.gnu.org>; Thu, 09 Dec 2021 11:45:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:to:cc:references:from:message-id:date:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=gwhYJWpMw0vAWK6iwG0mcAgNY3QD92goKjsKCCg/j/w=; b=cjYPR5UBXB2ZKyzZd/aYpYAnx7DMJvZLu9qIm2q0ph/6IfEOUlnG0ZoM+yy+vOr9PE lalILALnGS0iw//A9k+tG/2RDA0lpVuIjfAVBOHPziWoPaNwCHR9+TqGQMKhzM5kPEKp icnma2YRIpdqZsIpdsvXlTFXIZaX9HRMFwKMxx64AgvpEaIGry6SVSpgPihL1veMxLl+ 4h1C3gbJ8Bgmq1Qcjmjc60gWt28OIisvPf3W4oGPQnu+gqU2DZrkwjc0RRBnmm3Mjm7J IDfbgoG3kG+fgN7UU+GLozo460kDrmU/WmFNObJBUT9DjlM5ITfLG+aY8c7aTkFI4dpi e0JQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=gwhYJWpMw0vAWK6iwG0mcAgNY3QD92goKjsKCCg/j/w=; b=8MHzV+rUR6Qa7vGuIVF0P0vjOjwC3fZqK0n8o9S9Kxgm2G8o33Vu9kkA7nPIFTHT6s 3d+/dNLs9zmbGYeSeCvNgm5tYClzfiOd/Gf3twMcWx4C6mUhWdBfUVmtq4EAb6TtCBzD E8mkm+SLamojObwGfYWCki9DpFfXPtwFWNNu+R/vNwabrg/isyeowmAkiEBT6TY6hbXt mp2br3pQIupyAj2mA5ZS2huMYDapwWcaaXsWLSry4zeJA2as/SauTz6InRxpqRd/9Hfr +3fgFJY6lqDzJxmaSZUAAksgoseXpDCZ0jHDNyEB5XQaWN0z38/oQ0MyKPVWV1Nnb8gX Py8Q== X-Gm-Message-State: AOAM531kpxTtF8vPTY1lCeRKtRP9ig36Dh1+J4otWQy0nBPN0tJGGid+ SXV7Ve3KAjVWKw/rpVTAiEQ= X-Google-Smtp-Source: ABdhPJx4OkUTLoKvn+8TLrUh4dzeycMGxU/SwnDV6dQJJa/8DuBLILz38JDyOs0JK4G2llrXv2O7Ug== X-Received: by 2002:a17:90b:4f85:: with SMTP id qe5mr18032805pjb.167.1639079114927; Thu, 09 Dec 2021 11:45:14 -0800 (PST) Original-Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id r21sm460016pfh.128.2021.12.09.11.45.13 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 09 Dec 2021 11:45:14 -0800 (PST) In-Reply-To: <83ilvxtyox.fsf@gnu.org> Content-Language: en-US X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.io gmane.emacs.bugs:222011 Archived-At: On 12/9/2021 10:34 AM, Eli Zaretskii wrote: >> Date: Thu, 9 Dec 2021 09:12:47 -0800 >> Cc: stefan@marxist.se, jporterbugs@gmail.com, 51327@debbugs.gnu.org, >> Eli Zaretskii >> From: Paul Eggert >> >> On 12/8/21 23:44, Ulrich Mueller wrote: >>> See my earlier message from 00:19 UTC today? >>> https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#78 >> >> Yes, and since the latest proposal[1] does not add any environment >> variables or command-line options, and so is even simpler and >> less-intrusive than what Eli already OKed[2], I assume he'll be fine >> with it once he finds the time to read it. > > I've read it when you posted it, I'm just waiting for all the > participants to agree to that fix. I looked over the patch and tried it out briefly, and I'm ok with it too. As mentioned previously, I'm no expert on the security implications, but this does resolve my (perhaps slightly paranoid) concern about symlink attacks. Hopefully we can come up with a longer term solution that makes it easier for Gentoo users to get things set up correctly, but I'm not sure off-hand what the best strategy there would be...