Re: Finalizing 'inhibit-automatic-native-compilation'

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Finalizing 'inhibit-automatic-native-compilation'

From:	Lynn Winebarger
Subject:	Re: Finalizing 'inhibit-automatic-native-compilation'
Date:	Mon, 20 Feb 2023 15:50:25 -0500

On Mon, Feb 20, 2023 at 11:02 AM Stefan Monnier
<monnier@iro.umontreal.ca> wrote:
> > So I guess one could remove the file after the first creation and make
> > it a link pointing to some other file waiting for libgccjit to do
> > its write.
>
> "One" as in "an attacker"?  In `/tmp` an attacker should not be able to
> do that because it's supposed to be using the sticky bit so that only
> the owner of a file can remove it.

Just to be clear, this condition should be checked before emacs is
willing to use the temporary directory in question.  No unprivileged
user should be able to overwrite a directory entry the uid of the
emacs process creates at any point in the path to the temporary file.

Lynn

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Finalizing 'inhibit-automatic-native-compilation', (continued)

Prev by Date: Re: Finalizing 'inhibit-automatic-native-compilation'
Next by Date: Re: emacs-29 b44a7ff85dc: Allow 'icon-title-format' to have the value t
Previous by thread: Re: Finalizing 'inhibit-automatic-native-compilation'
Next by thread: Re: Finalizing 'inhibit-automatic-native-compilation'
Index(es):
- Date
- Thread