Lars Ingebrigtsen <larsi@HIDDEN>
to control <at> debbugs.gnu.org.
Full text available.Received: (at 51327) by debbugs.gnu.org; 10 Sep 2022 05:01:40 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Sat Sep 10 01:01:40 2022 Received: from localhost ([127.0.0.1]:36154 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1oWsce-0006S0-Ei for submit <at> debbugs.gnu.org; Sat, 10 Sep 2022 01:01:40 -0400 Received: from quimby.gnus.org ([95.216.78.240]:54014) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <larsi@HIDDEN>) id 1oWscc-0006Rl-Cq for 51327 <at> debbugs.gnu.org; Sat, 10 Sep 2022 01:01:39 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnus.org; s=20200322; h=Content-Type:MIME-Version:Message-ID:Date:References: In-Reply-To:Subject:Cc:To:From:Sender:Reply-To:Content-Transfer-Encoding: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=MEkB9egp5NdFoqYStAqyF/2HghvYqzhw7Xjxhz2dmAA=; b=jLeDAnYvSQj+zRfZT3B6g4MES1 jaWcSS7ovK6JRFv6kKTrX717cKCZ8EPcEY9SX9NyI8XN6fjB3MFqT5oOix4o3ZqY3MRgKz/T7lKSg 1YO3HpBnctR0NRUDz/Wywq6rpG0UyPNJe9NrCsztpid/P4y02mc2ntZblsJ/LkX1HeeA=; Received: from [84.212.220.105] (helo=joga) by quimby.gnus.org with esmtpsa (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <larsi@HIDDEN>) id 1oWscS-0006UC-HK; Sat, 10 Sep 2022 07:01:30 +0200 From: Lars Ingebrigtsen <larsi@HIDDEN> To: Paul Eggert <eggert@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand In-Reply-To: <dd5f6598-e99c-cfd4-50a0-e1bfa39ad6bd@HIDDEN> (Paul Eggert's message of "Thu, 9 Dec 2021 12:04:22 -0800") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <83r1amutcf.fsf@HIDDEN> <uv8zyjk8l@HIDDEN> <6cee9e68-242b-3e96-dcd6-b1e834310fad@HIDDEN> <83ilvxtyox.fsf@HIDDEN> <eea0f070-179a-ce2e-6608-66631c128886@HIDDEN> <83bl1ptuuh.fsf@HIDDEN> <dd5f6598-e99c-cfd4-50a0-e1bfa39ad6bd@HIDDEN> X-Now-Playing: Peter Gabriel's _Peter Gabriel 3_: "Not One Of Us" Date: Sat, 10 Sep 2022 07:01:26 +0200 Message-ID: <8735czrffd.fsf@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/29.0.50 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Report: Spam detection software, running on the system "quimby.gnus.org", has NOT identified this incoming email as spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see @@CONTACT_ADDRESS@@ for details. Content preview: Paul Eggert <eggert@HIDDEN> writes: > Not closing the bug report as the bug hasn't been fixed (that can wait > until Emacs 29). I'm not sure what the status is here now -- looking at the emacsclient.c code, it seems like there's been some changes in this area, but it looks like the problems discussed here may still be present? Content analysis details: (-2.9 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -1.0 ALL_TRUSTED Passed through trusted hosts only via SMTP -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000] X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, Eli Zaretskii <eliz@HIDDEN>, 51327 <at> debbugs.gnu.org, stefan@HIDDEN, ulm@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.3 (---) Paul Eggert <eggert@HIDDEN> writes: > Not closing the bug report as the bug hasn't been fixed (that can wait > until Emacs 29). I'm not sure what the status is here now -- looking at the emacsclient.c code, it seems like there's been some changes in this area, but it looks like the problems discussed here may still be present?
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 20:04:30 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Dec 09 15:04:30 2021 Received: from localhost ([127.0.0.1]:44834 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvPeY-0000kr-Mc for submit <at> debbugs.gnu.org; Thu, 09 Dec 2021 15:04:30 -0500 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:43794) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eggert@HIDDEN>) id 1mvPeX-0000kf-7F for 51327 <at> debbugs.gnu.org; Thu, 09 Dec 2021 15:04:29 -0500 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id A950816011F; Thu, 9 Dec 2021 12:04:23 -0800 (PST) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id z7wI_n2hzPZS; Thu, 9 Dec 2021 12:04:23 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id EC888160121; Thu, 9 Dec 2021 12:04:22 -0800 (PST) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id Mrk4s9W-pdH3; Thu, 9 Dec 2021 12:04:22 -0800 (PST) Received: from [192.168.1.9] (cpe-172-91-119-151.socal.res.rr.com [172.91.119.151]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id BAB0616011F; Thu, 9 Dec 2021 12:04:22 -0800 (PST) Message-ID: <dd5f6598-e99c-cfd4-50a0-e1bfa39ad6bd@HIDDEN> Date: Thu, 9 Dec 2021 12:04:22 -0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.3.1 Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand Content-Language: en-US To: Eli Zaretskii <eliz@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <83r1amutcf.fsf@HIDDEN> <uv8zyjk8l@HIDDEN> <6cee9e68-242b-3e96-dcd6-b1e834310fad@HIDDEN> <83ilvxtyox.fsf@HIDDEN> <eea0f070-179a-ce2e-6608-66631c128886@HIDDEN> <83bl1ptuuh.fsf@HIDDEN> From: Paul Eggert <eggert@HIDDEN> Organization: UCLA Computer Science Department In-Reply-To: <83bl1ptuuh.fsf@HIDDEN> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: -2.4 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, ulm@HIDDEN, 51327 <at> debbugs.gnu.org, stefan@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.4 (---) On 12/9/21 11:57, Eli Zaretskii wrote: > please go ahead and install on > the release branch. Done. Not closing the bug report as the bug hasn't been fixed (that can wait until Emacs 29).
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 19:57:34 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Dec 09 14:57:34 2021 Received: from localhost ([127.0.0.1]:44830 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvPXp-0000Zp-Tc for submit <at> debbugs.gnu.org; Thu, 09 Dec 2021 14:57:34 -0500 Received: from eggs.gnu.org ([209.51.188.92]:33216) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eliz@HIDDEN>) id 1mvPXo-0000Zd-TW for 51327 <at> debbugs.gnu.org; Thu, 09 Dec 2021 14:57:33 -0500 Received: from [2001:470:142:3::e] (port=56290 helo=fencepost.gnu.org) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mvPXi-0002kb-MT; Thu, 09 Dec 2021 14:57:26 -0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org; s=fencepost-gnu-org; h=References:Subject:In-Reply-To:To:From:Date: mime-version; bh=Ch7RHhHiIE4j+ol0hr5dBLrb4vewipghWoZMDfv2rg8=; b=kYJa8bRE+qBz hg6YtfKQvvPsfm9g8bPoncF6lgpNq0lqT7k3a9tB3RX+iePyCjOMmm7tt6bfPOrrhVZGPlZfvggMh 0wU284Rt7nfyCFkKmfIRxAZJcRI1Oko4cghTEPhC1MmIXnzJ0gU/tI3/e3fplPJd0SkvtuycWMSx9 EiE/bKLS9w6tQ2hZp4UlPN04xNHmk5BdDwxbWMBx4qlHyv5gcMEUssmkhKotX+RjyPQMdsWsQLrHN 7HFB+1JCBU2VBrAa7ne9+v0zxbNqJQtKaHRB7I4EJlFxgbFmNhZYkHw7MwuIFP0K/k+HvRQeit0Nz 3Q3yAxOjHO3EN2Sh+JjOqA==; Received: from [87.69.77.57] (port=4139 helo=home-c4e4a596f7) by fencepost.gnu.org with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mvPXi-0000Et-GN; Thu, 09 Dec 2021 14:57:26 -0500 Date: Thu, 09 Dec 2021 21:57:10 +0200 Message-Id: <83bl1ptuuh.fsf@HIDDEN> From: Eli Zaretskii <eliz@HIDDEN> To: Paul Eggert <eggert@HIDDEN> In-Reply-To: <eea0f070-179a-ce2e-6608-66631c128886@HIDDEN> (message from Paul Eggert on Thu, 9 Dec 2021 11:48:05 -0800) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <83r1amutcf.fsf@HIDDEN> <uv8zyjk8l@HIDDEN> <6cee9e68-242b-3e96-dcd6-b1e834310fad@HIDDEN> <83ilvxtyox.fsf@HIDDEN> <eea0f070-179a-ce2e-6608-66631c128886@HIDDEN> X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, ulm@HIDDEN, 51327 <at> debbugs.gnu.org, stefan@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.3 (---) > Date: Thu, 9 Dec 2021 11:48:05 -0800 > Cc: ulm@HIDDEN, stefan@HIDDEN, jporterbugs@HIDDEN, > 51327 <at> debbugs.gnu.org > From: Paul Eggert <eggert@HIDDEN> > > On 12/9/21 10:34, Eli Zaretskii wrote: > > I've read it when you posted it, I'm just waiting for all the > > participants to agree to that fix. > > Ulrich agreed to it in > <https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#78>. > > Jim said it was one of the "available options" in > <https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#72>. > > These are the two other major participants as far as I know - did I miss > somebody, or are we waiting for something more definitive from Jim? I did, and he just produced that. So please go ahead and install on the release branch. Thanks.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 19:48:14 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Dec 09 14:48:14 2021 Received: from localhost ([127.0.0.1]:44825 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvPOn-0000NK-W0 for submit <at> debbugs.gnu.org; Thu, 09 Dec 2021 14:48:14 -0500 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:40808) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eggert@HIDDEN>) id 1mvPOn-0000N6-51 for 51327 <at> debbugs.gnu.org; Thu, 09 Dec 2021 14:48:13 -0500 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id DDF731600AE; Thu, 9 Dec 2021 11:48:06 -0800 (PST) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id OOISDppLhC0j; Thu, 9 Dec 2021 11:48:06 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 0306116011F; Thu, 9 Dec 2021 11:48:06 -0800 (PST) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 69XOgleytSPt; Thu, 9 Dec 2021 11:48:05 -0800 (PST) Received: from [192.168.1.9] (cpe-172-91-119-151.socal.res.rr.com [172.91.119.151]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id C48D61600AE; Thu, 9 Dec 2021 11:48:05 -0800 (PST) Message-ID: <eea0f070-179a-ce2e-6608-66631c128886@HIDDEN> Date: Thu, 9 Dec 2021 11:48:05 -0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.3.1 Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand Content-Language: en-US To: Eli Zaretskii <eliz@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <83r1amutcf.fsf@HIDDEN> <uv8zyjk8l@HIDDEN> <6cee9e68-242b-3e96-dcd6-b1e834310fad@HIDDEN> <83ilvxtyox.fsf@HIDDEN> From: Paul Eggert <eggert@HIDDEN> Organization: UCLA Computer Science Department In-Reply-To: <83ilvxtyox.fsf@HIDDEN> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: -2.4 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, ulm@HIDDEN, 51327 <at> debbugs.gnu.org, stefan@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.4 (---) On 12/9/21 10:34, Eli Zaretskii wrote: > I've read it when you posted it, I'm just waiting for all the > participants to agree to that fix. Ulrich agreed to it in <https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#78>. Jim said it was one of the "available options" in <https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#72>. These are the two other major participants as far as I know - did I miss somebody, or are we waiting for something more definitive from Jim?
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 19:45:22 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Dec 09 14:45:22 2021 Received: from localhost ([127.0.0.1]:44821 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvPM2-0000Gt-GM for submit <at> debbugs.gnu.org; Thu, 09 Dec 2021 14:45:22 -0500 Received: from mail-pj1-f52.google.com ([209.85.216.52]:46700) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <jporterbugs@HIDDEN>) id 1mvPM0-0000Gi-Tb for 51327 <at> debbugs.gnu.org; Thu, 09 Dec 2021 14:45:21 -0500 Received: by mail-pj1-f52.google.com with SMTP id np6-20020a17090b4c4600b001a90b011e06so5680657pjb.5 for <51327 <at> debbugs.gnu.org>; Thu, 09 Dec 2021 11:45:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:to:cc:references:from:message-id:date:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=gwhYJWpMw0vAWK6iwG0mcAgNY3QD92goKjsKCCg/j/w=; b=cjYPR5UBXB2ZKyzZd/aYpYAnx7DMJvZLu9qIm2q0ph/6IfEOUlnG0ZoM+yy+vOr9PE lalILALnGS0iw//A9k+tG/2RDA0lpVuIjfAVBOHPziWoPaNwCHR9+TqGQMKhzM5kPEKp icnma2YRIpdqZsIpdsvXlTFXIZaX9HRMFwKMxx64AgvpEaIGry6SVSpgPihL1veMxLl+ 4h1C3gbJ8Bgmq1Qcjmjc60gWt28OIisvPf3W4oGPQnu+gqU2DZrkwjc0RRBnmm3Mjm7J IDfbgoG3kG+fgN7UU+GLozo460kDrmU/WmFNObJBUT9DjlM5ITfLG+aY8c7aTkFI4dpi e0JQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=gwhYJWpMw0vAWK6iwG0mcAgNY3QD92goKjsKCCg/j/w=; b=8MHzV+rUR6Qa7vGuIVF0P0vjOjwC3fZqK0n8o9S9Kxgm2G8o33Vu9kkA7nPIFTHT6s 3d+/dNLs9zmbGYeSeCvNgm5tYClzfiOd/Gf3twMcWx4C6mUhWdBfUVmtq4EAb6TtCBzD E8mkm+SLamojObwGfYWCki9DpFfXPtwFWNNu+R/vNwabrg/isyeowmAkiEBT6TY6hbXt mp2br3pQIupyAj2mA5ZS2huMYDapwWcaaXsWLSry4zeJA2as/SauTz6InRxpqRd/9Hfr +3fgFJY6lqDzJxmaSZUAAksgoseXpDCZ0jHDNyEB5XQaWN0z38/oQ0MyKPVWV1Nnb8gX Py8Q== X-Gm-Message-State: AOAM531kpxTtF8vPTY1lCeRKtRP9ig36Dh1+J4otWQy0nBPN0tJGGid+ SXV7Ve3KAjVWKw/rpVTAiEQ= X-Google-Smtp-Source: ABdhPJx4OkUTLoKvn+8TLrUh4dzeycMGxU/SwnDV6dQJJa/8DuBLILz38JDyOs0JK4G2llrXv2O7Ug== X-Received: by 2002:a17:90b:4f85:: with SMTP id qe5mr18032805pjb.167.1639079114927; Thu, 09 Dec 2021 11:45:14 -0800 (PST) Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id r21sm460016pfh.128.2021.12.09.11.45.13 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 09 Dec 2021 11:45:14 -0800 (PST) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand To: Eli Zaretskii <eliz@HIDDEN>, Paul Eggert <eggert@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <83r1amutcf.fsf@HIDDEN> <uv8zyjk8l@HIDDEN> <6cee9e68-242b-3e96-dcd6-b1e834310fad@HIDDEN> <83ilvxtyox.fsf@HIDDEN> From: Jim Porter <jporterbugs@HIDDEN> Message-ID: <c37f1ba2-91a3-5271-62aa-6bd0c32490b0@HIDDEN> Date: Thu, 9 Dec 2021 11:45:13 -0800 MIME-Version: 1.0 In-Reply-To: <83ilvxtyox.fsf@HIDDEN> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 51327 Cc: ulm@HIDDEN, 51327 <at> debbugs.gnu.org, stefan@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) On 12/9/2021 10:34 AM, Eli Zaretskii wrote: >> Date: Thu, 9 Dec 2021 09:12:47 -0800 >> Cc: stefan@HIDDEN, jporterbugs@HIDDEN, 51327 <at> debbugs.gnu.org, >> Eli Zaretskii <eliz@HIDDEN> >> From: Paul Eggert <eggert@HIDDEN> >> >> On 12/8/21 23:44, Ulrich Mueller wrote: >>> See my earlier message from 00:19 UTC today? >>> https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#78 >> >> Yes, and since the latest proposal[1] does not add any environment >> variables or command-line options, and so is even simpler and >> less-intrusive than what Eli already OKed[2], I assume he'll be fine >> with it once he finds the time to read it. > > I've read it when you posted it, I'm just waiting for all the > participants to agree to that fix. I looked over the patch and tried it out briefly, and I'm ok with it too. As mentioned previously, I'm no expert on the security implications, but this does resolve my (perhaps slightly paranoid) concern about symlink attacks. Hopefully we can come up with a longer term solution that makes it easier for Gentoo users to get things set up correctly, but I'm not sure off-hand what the best strategy there would be...
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 18:34:30 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Dec 09 13:34:30 2021 Received: from localhost ([127.0.0.1]:44788 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvOFS-00073R-38 for submit <at> debbugs.gnu.org; Thu, 09 Dec 2021 13:34:30 -0500 Received: from eggs.gnu.org ([209.51.188.92]:40554) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eliz@HIDDEN>) id 1mvOFP-00073D-NM for 51327 <at> debbugs.gnu.org; Thu, 09 Dec 2021 13:34:28 -0500 Received: from [2001:470:142:3::e] (port=53466 helo=fencepost.gnu.org) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mvOFJ-0000w8-Ql; Thu, 09 Dec 2021 13:34:21 -0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org; s=fencepost-gnu-org; h=References:Subject:In-Reply-To:To:From:Date: mime-version; bh=uwLbLWGikTPRS83syP4+vadEQ+/SWQlIPWtdtBSN6tk=; b=BrtZji1klbgR C1vcYDPB3BpOHwgwjQs/weUtE60aoahO3ibQiGHSPbCT017bk+sFxYE57E4M/WNiV+uYC1Mc9k5mE hqyZNf8ie/ib/2rTdb85fd1eDKi7pDoKEXgphBWK2E1fKRoUbzdn/6FJvS32eUnuAlnerDUTxs/Fo VdGPvqLXg+ia/OMBefXwoLK2te9NJZ1VvZYRD/RyrKkmSVseuyV+5/2/I99YowzTIjLn8u5EpIH2u 2kgDEdk710oEQuXcENlcXyX53hBNLv5UfZNrTXGq34NFj8Sh3PzjaaMZsK3zDzocipWRYWTVwPNhX 1rgz50Gxgmvw05sXCgrgyQ==; Received: from [87.69.77.57] (port=2999 helo=home-c4e4a596f7) by fencepost.gnu.org with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mvOFJ-0001bx-Jx; Thu, 09 Dec 2021 13:34:21 -0500 Date: Thu, 09 Dec 2021 20:34:06 +0200 Message-Id: <83ilvxtyox.fsf@HIDDEN> From: Eli Zaretskii <eliz@HIDDEN> To: Paul Eggert <eggert@HIDDEN> In-Reply-To: <6cee9e68-242b-3e96-dcd6-b1e834310fad@HIDDEN> (message from Paul Eggert on Thu, 9 Dec 2021 09:12:47 -0800) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <83r1amutcf.fsf@HIDDEN> <uv8zyjk8l@HIDDEN> <6cee9e68-242b-3e96-dcd6-b1e834310fad@HIDDEN> X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, ulm@HIDDEN, 51327 <at> debbugs.gnu.org, stefan@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.3 (---) > Date: Thu, 9 Dec 2021 09:12:47 -0800 > Cc: stefan@HIDDEN, jporterbugs@HIDDEN, 51327 <at> debbugs.gnu.org, > Eli Zaretskii <eliz@HIDDEN> > From: Paul Eggert <eggert@HIDDEN> > > On 12/8/21 23:44, Ulrich Mueller wrote: > > See my earlier message from 00:19 UTC today? > > https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#78 > > Yes, and since the latest proposal[1] does not add any environment > variables or command-line options, and so is even simpler and > less-intrusive than what Eli already OKed[2], I assume he'll be fine > with it once he finds the time to read it. I've read it when you posted it, I'm just waiting for all the participants to agree to that fix.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 17:12:56 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Dec 09 12:12:56 2021 Received: from localhost ([127.0.0.1]:44698 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvMyW-0002ok-Gi for submit <at> debbugs.gnu.org; Thu, 09 Dec 2021 12:12:56 -0500 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:38734) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eggert@HIDDEN>) id 1mvMyU-0002oV-MD for 51327 <at> debbugs.gnu.org; Thu, 09 Dec 2021 12:12:54 -0500 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 1AE9D160051; Thu, 9 Dec 2021 09:12:49 -0800 (PST) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id CSnBaKzBSfi2; Thu, 9 Dec 2021 09:12:48 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 3512B160102; Thu, 9 Dec 2021 09:12:48 -0800 (PST) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id ejA5AKGsF2iA; Thu, 9 Dec 2021 09:12:48 -0800 (PST) Received: from [192.168.1.9] (cpe-172-91-119-151.socal.res.rr.com [172.91.119.151]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id E5665160051; Thu, 9 Dec 2021 09:12:47 -0800 (PST) Message-ID: <6cee9e68-242b-3e96-dcd6-b1e834310fad@HIDDEN> Date: Thu, 9 Dec 2021 09:12:47 -0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.3.1 Content-Language: en-US To: Ulrich Mueller <ulm@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <83r1amutcf.fsf@HIDDEN> <uv8zyjk8l@HIDDEN> From: Paul Eggert <eggert@HIDDEN> Organization: UCLA Computer Science Department Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand In-Reply-To: <uv8zyjk8l@HIDDEN> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: -2.4 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, Eli Zaretskii <eliz@HIDDEN>, 51327 <at> debbugs.gnu.org, stefan@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.4 (---) On 12/8/21 23:44, Ulrich Mueller wrote: > See my earlier message from 00:19 UTC today? > https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#78 Yes, and since the latest proposal[1] does not add any environment variables or command-line options, and so is even simpler and less-intrusive than what Eli already OKed[2], I assume he'll be fine with it once he finds the time to read it. [1] https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#75 [2] https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#63
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 07:44:23 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Dec 09 02:44:23 2021 Received: from localhost ([127.0.0.1]:42309 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvE6J-0006FV-AE for submit <at> debbugs.gnu.org; Thu, 09 Dec 2021 02:44:23 -0500 Received: from woodpecker.gentoo.org ([140.211.166.183]:54728 helo=smtp.gentoo.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <ulm@HIDDEN>) id 1mvE6I-0006FI-0P for 51327 <at> debbugs.gnu.org; Thu, 09 Dec 2021 02:44:22 -0500 From: Ulrich Mueller <ulm@HIDDEN> To: Eli Zaretskii <eliz@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand In-Reply-To: <83r1amutcf.fsf@HIDDEN> (Eli Zaretskii's message of "Thu, 09 Dec 2021 09:32:00 +0200") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <83r1amutcf.fsf@HIDDEN> Date: Thu, 09 Dec 2021 08:44:10 +0100 Message-ID: <uv8zyjk8l@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, eggert@HIDDEN, stefan@HIDDEN, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -6.0 (------) >>>>> On Thu, 09 Dec 2021, Eli Zaretskii wrote: > If you guys can arrive at something that you-all can live with, we can > make some progress, maybe even for Emacs 28. But if everyone will > just keep saying that any solution except the one he/she suggested is > unacceptable, we have a stalemate, and that's not good for anyone. > So my suggestion to all the participants is to abandon the dogmas and > try to find a compromise which will be acceptable. Bonus points for > finding a compromise that is simple enough to fix this on the release > branch. See my earlier message from 00:19 UTC today? https://debbugs.gnu.org/cgi/bugreport.cgi?bug=51327#78
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 07:32:26 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Dec 09 02:32:26 2021 Received: from localhost ([127.0.0.1]:42296 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvDuk-0005xx-7m for submit <at> debbugs.gnu.org; Thu, 09 Dec 2021 02:32:26 -0500 Received: from eggs.gnu.org ([209.51.188.92]:39144) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eliz@HIDDEN>) id 1mvDui-0005xk-OA for 51327 <at> debbugs.gnu.org; Thu, 09 Dec 2021 02:32:25 -0500 Received: from [2001:470:142:3::e] (port=33132 helo=fencepost.gnu.org) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mvDub-0000nV-4F; Thu, 09 Dec 2021 02:32:17 -0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org; s=fencepost-gnu-org; h=References:Subject:In-Reply-To:To:From:Date: mime-version; bh=4E63fRMKsQNV9o4pb/08uzCA2ASKXRg3yCadJzXNXg0=; b=ko9FXdWepn9h lMi2cO2+GPGz3sacqX+fyoKraXOtkUbadT3w8YK+y/Ko6uIcaRXgaesmNVxXb3IvNXPch6vWqvIEF WtBkbqBz/ofDzES0Kw/8Dd3kRLTKRDlxLHIEOBIV5c+qr+lYyHcdM0ZzNCtQ5Olpwu+3f9eVDpdOf FkS0+aN2NIB74xNv0vIcsk76sidmzoLe/PXDRH1wRxtmcGhPIeSs4RX8DqFMiRYhDNBirJlewQIXT TCYlQ0jT3hmQJx4PxQZQIXZJB0AKstk5KMILnA8JiIHuYKdHHHR4nS36YdBaBko+7fBktsxqZm0bh weJ6VhVmm+1pPnFCrG2VAA==; Received: from [87.69.77.57] (port=1658 helo=home-c4e4a596f7) by fencepost.gnu.org with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mvDua-0006F8-PC; Thu, 09 Dec 2021 02:32:17 -0500 Date: Thu, 09 Dec 2021 09:32:00 +0200 Message-Id: <83r1amutcf.fsf@HIDDEN> From: Eli Zaretskii <eliz@HIDDEN> To: Ulrich Mueller <ulm@HIDDEN> In-Reply-To: <ubl1qlq0n@HIDDEN> (message from Ulrich Mueller on Wed, 08 Dec 2021 22:56:24 +0100) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, eggert@HIDDEN, stefan@HIDDEN, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.3 (---) > From: Ulrich Mueller <ulm@HIDDEN> > Cc: Eli Zaretskii <eliz@HIDDEN>, Paul Eggert <eggert@HIDDEN>, > jporterbugs@HIDDEN, 51327 <at> debbugs.gnu.org > Date: Wed, 08 Dec 2021 22:56:24 +0100 > > >> If it's a new command-line argument, and if the participants in this > >> discussion can live with it as the solution for this problem, I'm okay > >> with having it on emacs-28. > > That's not an acceptable solution, because it will break the existing > workflow of users. Furthermore, it will make users jump through hoops to > achieve functionality which was the default in previous versions. > > So, can we please think about a better solution, and not knee-jerk > something half-baked into Emacs 28, like checking for yet another > environment variable? > > Even reverting to the Emacs 27 behaviour would be better than what has > been suggested above: In Emacs 27, you can set EMACS_SOCKET_NAME to make > things work. There's no advantage in introducing yet another variable, > which would only complicate things. If you guys can arrive at something that you-all can live with, we can make some progress, maybe even for Emacs 28. But if everyone will just keep saying that any solution except the one he/she suggested is unacceptable, we have a stalemate, and that's not good for anyone. So my suggestion to all the participants is to abandon the dogmas and try to find a compromise which will be acceptable. Bonus points for finding a compromise that is simple enough to fix this on the release branch.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 04:11:06 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 23:11:06 2021 Received: from localhost ([127.0.0.1]:42088 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mvAlu-0006ye-6U for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 23:11:06 -0500 Received: from eggs.gnu.org ([209.51.188.92]:55394) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <rms@HIDDEN>) id 1mvAlp-0006xx-KZ for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 23:11:04 -0500 Received: from [2001:470:142:3::e] (port=57096 helo=fencepost.gnu.org) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <rms@HIDDEN>) id 1mvAlj-0000t9-5p; Wed, 08 Dec 2021 23:10:55 -0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org; s=fencepost-gnu-org; h=Date:References:Subject:In-Reply-To:To:From: mime-version; bh=Ns9gCXietfX+BFGJRVq4h98UqRT6D+y5Wba1XcdmkqA=; b=KY+08w0BPSzL KhUK5EGOgxH00/e+XK9fD+MQWLg/V0MWbQJJF9yHIh8TlCQ3eu9yLPhJ+buoaxPjXhFOe5QEWvvwM Meg3RzqS38S7yDIPk1Rc8IBictuy32b4DJx3/RMAG96Ayg6f3YG8ByaOomlPFUhfYASX0WOQYdvkN Jw6fOHlg2OnvJW5SZkjfkvECmL7Yrf7Esd49G5WkIBYWil4EAsfKoszvwuPH0Jnkp6wZPFzOoINfs 7jbZCeAxoFTFdm4jBW2ze15AUQrfxp3rGDNSrU3I/G/Fbu9FI5c4K6g5fXjN7PfvoWCIqCiIwELQc 6Jt0f7/dHhR/KbRzc6dCWQ==; Received: from rms by fencepost.gnu.org with local (Exim 4.90_1) (envelope-from <rms@HIDDEN>) id 1mvAlj-0003ap-7O; Wed, 08 Dec 2021 23:10:55 -0500 Content-Type: text/plain; charset=Utf-8 From: Richard Stallman <rms@HIDDEN> To: Paul Eggert <eggert@HIDDEN> In-Reply-To: <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> (message from Paul Eggert on Tue, 7 Dec 2021 11:03:35 -0800) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> Message-Id: <E1mvAlj-0003ap-7O@HIDDEN> Date: Wed, 08 Dec 2021 23:10:55 -0500 X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, eliz@HIDDEN, 51327 <at> debbugs.gnu.org, stefan@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Reply-To: rms@HIDDEN Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.3 (---) [[[ To any NSA and FBI agents reading my email: please consider ]]] [[[ whether defending the US Constitution against all enemies, ]]] [[[ foreign or domestic, requires you to follow Snowden's example. ]]] Can we find a true expert to consult about this problem? -- Dr Richard Stallman (https://stallman.org) Chief GNUisance of the GNU Project (https://gnu.org) Founder, Free Software Foundation (https://fsf.org) Internet Hall-of-Famer (https://internethalloffame.org)
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 9 Dec 2021 00:19:26 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 19:19:26 2021 Received: from localhost ([127.0.0.1]:41897 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mv79i-0007cH-K7 for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 19:19:26 -0500 Received: from woodpecker.gentoo.org ([140.211.166.183]:57054 helo=smtp.gentoo.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <ulm@HIDDEN>) id 1mv79f-0007c2-5N for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 19:19:25 -0500 From: Ulrich Mueller <ulm@HIDDEN> To: Paul Eggert <eggert@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand In-Reply-To: <21fa6f0f-bd1b-45da-c1d4-f5d44e3b2ffe@HIDDEN> (Paul Eggert's message of "Wed, 8 Dec 2021 15:44:39 -0800") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> <21fa6f0f-bd1b-45da-c1d4-f5d44e3b2ffe@HIDDEN> Date: Thu, 09 Dec 2021 01:19:11 +0100 Message-ID: <u7dceljeo@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, Eli Zaretskii <eliz@HIDDEN>, 51327 <at> debbugs.gnu.org, Stefan Kangas <stefan@HIDDEN> X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -6.0 (------) >>>>> On Thu, 09 Dec 2021, Paul Eggert wrote: >> * Otherwise, revert to the Emacs 27 behavior and come up with a >> better solution for Emacs 29. > That sounds better, if the EMACS_SOCKET_NAME approach is good enough. > Proposed patch attached. This patch attempts to be reasonably minimal > vs what's in emacs-28 now (as opposed to cleaning up this > somewhat-messy area). I could live with this solution for now.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 8 Dec 2021 23:44:51 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 18:44:51 2021 Received: from localhost ([127.0.0.1]:41880 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mv6cE-0006mw-Th for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 18:44:51 -0500 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:44764) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eggert@HIDDEN>) id 1mv6cB-0006mf-3I for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 18:44:49 -0500 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 61D711600AE; Wed, 8 Dec 2021 15:44:41 -0800 (PST) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id X3LzJjw8613v; Wed, 8 Dec 2021 15:44:40 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 7DE721600F6; Wed, 8 Dec 2021 15:44:40 -0800 (PST) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id Zf8AlnizFUZw; Wed, 8 Dec 2021 15:44:40 -0800 (PST) Received: from [192.168.1.9] (cpe-172-91-119-151.socal.res.rr.com [172.91.119.151]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id 4642D1600AE; Wed, 8 Dec 2021 15:44:40 -0800 (PST) Content-Type: multipart/mixed; boundary="------------KlEggcpcLqppEsVCcwh7309Q" Message-ID: <21fa6f0f-bd1b-45da-c1d4-f5d44e3b2ffe@HIDDEN> Date: Wed, 8 Dec 2021 15:44:39 -0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.3.1 Content-Language: en-US To: Ulrich Mueller <ulm@HIDDEN>, Stefan Kangas <stefan@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> From: Paul Eggert <eggert@HIDDEN> Organization: UCLA Computer Science Department Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand In-Reply-To: <ubl1qlq0n@HIDDEN> X-Spam-Score: -2.4 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, Eli Zaretskii <eliz@HIDDEN>, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.4 (---) This is a multi-part message in MIME format. --------------KlEggcpcLqppEsVCcwh7309Q Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit On 12/8/21 13:56, Ulrich Mueller wrote: > So, can we please think about a better solution, and not knee-jerk > something half-baked into Emacs 28, like checking for yet another > environment variable? Agreed, now is not the time for significant innovation. It could be that any significant improvement will have to wait for Emacs 29. > Even reverting to the Emacs 27 behaviour would be better than what has > been suggested above: In Emacs 27, you can set EMACS_SOCKET_NAME to make > things work. Setting EMACS_SOCKET_NAME to an absolute file name should work just as well in emacs-28 as it did in Emacs 27, because in that case the code doesn't consult either XDG_RUNTIME_DIR or TMPDIR. So if that's an adequate solution, we should be able to continue with that. > Given the goal to release Emacs 28.1 soon, I'm not sure there's time to come up with (and be confident in) a better solution for 28. In that case, I guess the available options are: > > * If the security issue is considered minor enough, keep the current Emacs 28 behavior and silence the warning. I'd rather not silence the warning as there is a real issue here (admittedly obscure...). > * Otherwise, revert to the Emacs 27 behavior and come up with a better solution for Emacs 29. That sounds better, if the EMACS_SOCKET_NAME approach is good enough. Proposed patch attached. This patch attempts to be reasonably minimal vs what's in emacs-28 now (as opposed to cleaning up this somewhat-messy area). --------------KlEggcpcLqppEsVCcwh7309Q Content-Type: text/x-patch; charset=UTF-8; name="0001-emacsclient-takes-more-care-about-XDG_RUNTIME_DIR.patch" Content-Disposition: attachment; filename*0="0001-emacsclient-takes-more-care-about-XDG_RUNTIME_DIR.patch" Content-Transfer-Encoding: base64 RnJvbSAyY2I2MDg3ZjJiNzk3ZDRlYzIxZDI3YmM1MzE5OThlMDc4NDg3OTdmIE1vbiBTZXAg MTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBQYXVsIEVnZ2VydCA8ZWdnZXJ0QGNzLnVjbGEuZWR1 PgpEYXRlOiBXZWQsIDggRGVjIDIwMjEgMTU6Mzc6MzkgLTA4MDAKU3ViamVjdDogW1BBVENI XSBlbWFjc2NsaWVudCB0YWtlcyBtb3JlIGNhcmUgYWJvdXQgWERHX1JVTlRJTUVfRElSCgoq IGxpYi1zcmMvZW1hY3NjbGllbnQuYyAoc2V0X2xvY2FsX3NvY2tldCk6IFJldmVydCB0byB0 aGUgRW1hY3MgMjcKYmVoYXZpb3Igb2Ygbm90IHRyeWluZyBUTVBESVIgaWYgWERHX1JVTlRJ TUVfRElSIGlzIHNldC4KVGhpcyBpcyBvbmUgb2YgdGhlIHN1Z2dlc3Rpb25zIG1hZGUgYnkg SmltIFBvcnRlciBhbmQKaW5kZXBlbmRlbnRseSBieSBVbHJpY2ggTXVlbGxlciBpbiBCdWcj NTEzMjcuCi0tLQogbGliLXNyYy9lbWFjc2NsaWVudC5jIHwgMyArLS0KIDEgZmlsZSBjaGFu Z2VkLCAxIGluc2VydGlvbigrKSwgMiBkZWxldGlvbnMoLSkKCmRpZmYgLS1naXQgYS9saWIt c3JjL2VtYWNzY2xpZW50LmMgYi9saWItc3JjL2VtYWNzY2xpZW50LmMKaW5kZXggY2ZmM2Nl YzJhNy4uZDExZmQ4OGM0NSAxMDA2NDQKLS0tIGEvbGliLXNyYy9lbWFjc2NsaWVudC5jCisr KyBiL2xpYi1zcmMvZW1hY3NjbGllbnQuYwpAQCAtMTQ1Niw3ICsxNDU2LDYgQEAgc2V0X2xv Y2FsX3NvY2tldCAoY2hhciBjb25zdCAqc2VydmVyX25hbWUpCiAgIGVsc2UKICAgICB7CiAg ICAgICAvKiBzb2NrZXRfbmFtZSBpcyBhIGZpbGUgbmFtZSBjb21wb25lbnQuICAqLwotICAg ICAgc29ja19zdGF0dXMgPSBFTk9FTlQ7CiAgICAgICBjaGFyIGNvbnN0ICp4ZGdfcnVudGlt ZV9kaXIgPSBlZ2V0ZW52ICgiWERHX1JVTlRJTUVfRElSIik7CiAgICAgICBpZiAoeGRnX3J1 bnRpbWVfZGlyKQogCXsKQEAgLTE0NjYsNyArMTQ2NSw3IEBAIHNldF9sb2NhbF9zb2NrZXQg KGNoYXIgY29uc3QgKnNlcnZlcl9uYW1lKQogCQkJID8gY29ubmVjdF9zb2NrZXQgKEFUX0ZE Q1dELCBzb2NrbmFtZSwgcywgMCkKIAkJCSA6IEVOQU1FVE9PTE9ORyk7CiAJfQotICAgICAg aWYgKHNvY2tfc3RhdHVzID09IEVOT0VOVCkKKyAgICAgIGVsc2UKIAl7CiAJICBjaGFyIGNv bnN0ICp0bXBkaXIgPSBlZ2V0ZW52ICgiVE1QRElSIik7CiAJICBpZiAodG1wZGlyKQotLSAK Mi4zMi4wCgo= --------------KlEggcpcLqppEsVCcwh7309Q--
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 8 Dec 2021 22:56:56 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 17:56:56 2021 Received: from localhost ([127.0.0.1]:41846 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mv5rs-0005cx-9n for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 17:56:56 -0500 Received: from mail-pl1-f181.google.com ([209.85.214.181]:40753) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <jporterbugs@HIDDEN>) id 1mv5rq-0005ck-LC for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 17:56:55 -0500 Received: by mail-pl1-f181.google.com with SMTP id v19so2543646plo.7 for <51327 <at> debbugs.gnu.org>; Wed, 08 Dec 2021 14:56:54 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:to:cc:references:from:message-id:date:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=yZjx3TiuO/7Et2IZ3MxHk1jY9ITwATTXF4BaaiDscns=; b=Fhx3rb1byTySpGGB1lZ2eSJIaQwe8dnGIy10kwpO1jqud5Xm1m7L8imoqrXIEGTkeC 8k/Jsg7sqqVYEqSvegkXAjysTTEphWKjxMfYkCSV5LeNeB6ME672edpJx1Kazdlq7LWM UYpX/7W+et5cbRiKwJOreMGY7OlfdKY89FT/Baagq57XcUa+IyuLOB/XQx9s67oDCtQv W91YLuoBHd5b/a+yWxPKx5iUo6pi1oAfa9iPu4zkUUC3sPtIwS3qyZD+7JVR+d02OJU4 sBTW400k37xizMh4SjF7tSRpcGr4w8gh1R1acq6esAk4CzO5q8N90IX3RBXypiQzBU9q pAsg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=yZjx3TiuO/7Et2IZ3MxHk1jY9ITwATTXF4BaaiDscns=; b=jygRGMv5FTYuxvhfLS9+B9uKazO4BE+Y/VRpq0aWaVtJSqZ5c+N7XnEXOj5MnczSOL BwHSMIiPAaG1Rs9fnQRiL3ytT1EtAfF8uRxrsaB7rpSuuNkjeV5WX7RUCyA5J5IlxyQq eKoQ7N6JNB46ewsJQT91J9IuzYHubnTCmS0KOC2caEJzoC95PBSv/N18CpXXE0uikDXA 3qDHO9HGTyDj5JO5bxtg7FqGYbAqw1io81625h3qHHi792+jUJpBgzaMks2vLPeMCRma S3v8Q0UDwNOpRnsyY/90k2MO9NjDoC71jFZAeOLwNLnyNT4VgBuCH0WLgjX84uvfi4Rc 8k+A== X-Gm-Message-State: AOAM5310bDKMNThbgel6vBb2XcW3JO8hYxFFUhPJX2Cmr0WXatgiakGI SvBosBlU0RQ2OU6myuguhlJqaF7SRGc= X-Google-Smtp-Source: ABdhPJwdN/8IXRXNvGRhXoYsv4VQs+D/VkBhChbiEU7R4/gtCYzb3UlzlAt9fVX3atXGnbiax5zR8A== X-Received: by 2002:a17:90b:4f44:: with SMTP id pj4mr10913425pjb.150.1639004208785; Wed, 08 Dec 2021 14:56:48 -0800 (PST) Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id x14sm3836050pjl.27.2021.12.08.14.56.47 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Wed, 08 Dec 2021 14:56:48 -0800 (PST) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand To: Ulrich Mueller <ulm@HIDDEN>, Stefan Kangas <stefan@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> <ubl1qlq0n@HIDDEN> From: Jim Porter <jporterbugs@HIDDEN> Message-ID: <0e5e4724-7a31-b537-da3a-72e91bb19feb@HIDDEN> Date: Wed, 8 Dec 2021 14:56:47 -0800 MIME-Version: 1.0 In-Reply-To: <ubl1qlq0n@HIDDEN> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 51327 Cc: Paul Eggert <eggert@HIDDEN>, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) On 12/8/2021 1:56 PM, Ulrich Mueller wrote: > That's not an acceptable solution, because it will break the existing > workflow of users. Furthermore, it will make users jump through hoops to > achieve functionality which was the default in previous versions. > > So, can we please think about a better solution, and not knee-jerk > something half-baked into Emacs 28, like checking for yet another > environment variable? > > Even reverting to the Emacs 27 behaviour would be better than what has > been suggested above: In Emacs 27, you can set EMACS_SOCKET_NAME to make > things work. There's no advantage in introducing yet another variable, > which would only complicate things. Given the goal to release Emacs 28.1 soon, I'm not sure there's time to come up with (and be confident in) a better solution for 28. In that case, I guess the available options are: * If the security issue is considered minor enough, keep the current Emacs 28 behavior and silence the warning. * Otherwise, revert to the Emacs 27 behavior and come up with a better solution for Emacs 29.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 8 Dec 2021 21:56:39 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 16:56:39 2021 Received: from localhost ([127.0.0.1]:41783 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mv4vX-0001xN-Dk for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 16:56:39 -0500 Received: from woodpecker.gentoo.org ([140.211.166.183]:56456 helo=smtp.gentoo.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <ulm@HIDDEN>) id 1mv4vU-0001x8-OJ for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 16:56:38 -0500 From: Ulrich Mueller <ulm@HIDDEN> To: Stefan Kangas <stefan@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand In-Reply-To: <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> (Stefan Kangas's message of "Wed, 8 Dec 2021 12:23:23 -0800") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> Date: Wed, 08 Dec 2021 22:56:24 +0100 Message-ID: <ubl1qlq0n@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, Eli Zaretskii <eliz@HIDDEN>, Paul Eggert <eggert@HIDDEN>, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -6.0 (------) >>>>> On Wed, 08 Dec 2021, Stefan Kangas wrote: > Eli Zaretskii <eliz@HIDDEN> writes: >>> Date: Wed, 8 Dec 2021 11:06:12 -0800 >>> Cc: 51327 <at> debbugs.gnu.org >>> From: Paul Eggert <eggert@HIDDEN> >>> >>> On 12/7/21 22:57, Jim Porter wrote: >>> > Doing that by default opens a loophole for all emacsclient users, but >>> > what about a command-line flag like `emacsclient >>> > --allow-tmpdir-loophole' and/or an environment variable like >>> > `EMACS_ALLOW_TMPDIR_LOOPHOLE=1 emacsclient' (with a better name, of >>> > course)? Then, the default behavior would be free of loopholes[2], but >>> > Ulrich's case could be achieved by passing that flag when calling >>> > emacsclient. It might even be possible for Gentoo to enable that for the >>> > user in the appropriate cases... >>> >>> Yes, I think something like this would be OK. The command-line flag >>> would be easier to audit. >>> >>> Not sure whether a last-minute change like this should go into Emacs 28, >>> though, even though it's security-relevant. Eli would be a better judge >>> of that. >> >> If it's a new command-line argument, and if the participants in this >> discussion can live with it as the solution for this problem, I'm okay >> with having it on emacs-28. That's not an acceptable solution, because it will break the existing workflow of users. Furthermore, it will make users jump through hoops to achieve functionality which was the default in previous versions. So, can we please think about a better solution, and not knee-jerk something half-baked into Emacs 28, like checking for yet another environment variable? Even reverting to the Emacs 27 behaviour would be better than what has been suggested above: In Emacs 27, you can set EMACS_SOCKET_NAME to make things work. There's no advantage in introducing yet another variable, which would only complicate things.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 8 Dec 2021 20:23:33 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 15:23:33 2021 Received: from localhost ([127.0.0.1]:41522 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mv3TQ-0005fg-Ta for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 15:23:33 -0500 Received: from mail-pf1-f171.google.com ([209.85.210.171]:39483) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <stefankangas@HIDDEN>) id 1mv3TN-0005fS-IS for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 15:23:31 -0500 Received: by mail-pf1-f171.google.com with SMTP id i12so3433438pfd.6 for <51327 <at> debbugs.gnu.org>; Wed, 08 Dec 2021 12:23:29 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:in-reply-to:references:mime-version:date :message-id:subject:to:cc; bh=HW9R7+qtqulfKoZ1zXHU53qnwpUg/bYz5MaSSdjkYlw=; b=ApPPjS4H3W8eeVyK16FB5wgGo6Pd+4XneNx+PrHIdnG7awMKFp1Mmj8AGZ2XDiA1OK mHlgDcR5huNlZKalYwNtoKpQ4RCJ67hwOd6g/W+Ur5ZqtskrZCiVuoMgPa3iy2aIpjcD 1hVrAdhgL9Ek5YHFeDyoSACHHqzB4fZszgnrKf+1flRutENquxQJTD4NSDy3JOXGksPR BpYdMYqrT6/AgLhKWHsNLJN7tapg2jOD7VTSathRPLyavP25BqzdK8z9wnE3dY6jv0dp S6cWxs7X2HM1FtXJv4ZqJdUb8cMSUWh5cSF3p3Zv9fTJX2pE4mO9ZwLqZkmQS6VARrzq 7oag== X-Gm-Message-State: AOAM530IAM32I4nZxOB3lVOgcb9pC6drPiWl7yD1hhElzLga+TFL8j2B 2h5UBZIdzF/Q/owHvz3MxpmpipLkHOYwDHQd5Ac= X-Google-Smtp-Source: ABdhPJw89oEB3Fucx8LnZIDD/XgB21beTvj1bwSY1o2vgEioixcWrZfeIJ4nnIWLI+p3fxDjcJfwhDfEEidlyj1HjyA= X-Received: by 2002:a62:1a03:0:b0:494:64b5:3e01 with SMTP id a3-20020a621a03000000b0049464b53e01mr7693165pfa.35.1638995003849; Wed, 08 Dec 2021 12:23:23 -0800 (PST) Received: from 753933720722 named unknown by gmailapi.google.com with HTTPREST; Wed, 8 Dec 2021 12:23:23 -0800 From: Stefan Kangas <stefan@HIDDEN> In-Reply-To: <835yryx5yf.fsf@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> <835yryx5yf.fsf@HIDDEN> MIME-Version: 1.0 Date: Wed, 8 Dec 2021 12:23:23 -0800 Message-ID: <CADwFkmmMkjN0vXC9hrF+oASwQqq6_9wPLX9_o7dijkBnyDgNPw@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand To: Eli Zaretskii <eliz@HIDDEN>, Paul Eggert <eggert@HIDDEN> Content-Type: text/plain; charset="UTF-8" X-Spam-Score: 0.5 (/) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, Ulrich Mueller <ulm@HIDDEN>, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -0.5 (/) Eli Zaretskii <eliz@HIDDEN> writes: >> Date: Wed, 8 Dec 2021 11:06:12 -0800 >> Cc: 51327 <at> debbugs.gnu.org >> From: Paul Eggert <eggert@HIDDEN> >> >> On 12/7/21 22:57, Jim Porter wrote: >> > Doing that by default opens a loophole for all emacsclient users, but >> > what about a command-line flag like `emacsclient >> > --allow-tmpdir-loophole' and/or an environment variable like >> > `EMACS_ALLOW_TMPDIR_LOOPHOLE=1 emacsclient' (with a better name, of >> > course)? Then, the default behavior would be free of loopholes[2], but >> > Ulrich's case could be achieved by passing that flag when calling >> > emacsclient. It might even be possible for Gentoo to enable that for the >> > user in the appropriate cases... >> >> Yes, I think something like this would be OK. The command-line flag >> would be easier to audit. >> >> Not sure whether a last-minute change like this should go into Emacs 28, >> though, even though it's security-relevant. Eli would be a better judge >> of that. > > If it's a new command-line argument, and if the participants in this > discussion can live with it as the solution for this problem, I'm okay > with having it on emacs-28. Copying in Ulrich to make sure he's aware of this discussion.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 8 Dec 2021 19:17:08 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 14:17:08 2021 Received: from localhost ([127.0.0.1]:41389 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mv2R9-00041J-Te for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 14:17:08 -0500 Received: from eggs.gnu.org ([209.51.188.92]:33966) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eliz@HIDDEN>) id 1mv2R7-00040m-Q9 for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 14:17:07 -0500 Received: from [2001:470:142:3::e] (port=42470 helo=fencepost.gnu.org) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mv2R1-0006JC-OM; Wed, 08 Dec 2021 14:16:59 -0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org; s=fencepost-gnu-org; h=References:Subject:In-Reply-To:To:From:Date: mime-version; bh=6B2cD8X6hGUL2GeAK1GG9hbZgKNdegDejBOH54+DQXc=; b=dp2KD5hdx+DB 4VPvYWKHoZwtST6MfS3weBS9RTZ5mlRG43ZZJnqgErEgqL6UO6JQyrQyi6tZeF9z7K3Ur99PpLTLJ J1kYEJusEKg8SfNbBiE7x9ld62WkbkKoUzMNzvfQIRY3TEqADzkV21mbixTRU8FcO6OLCZv2Er0UY wvFrGmIHldIB8kGq7NlDPtUMhsxz1cEXUEIMN6EuoXKDbPYRpcL8Y/VZbwTCKPA0e0oRuj1XFVbpl uO+dl1j8lnkFHSeI/5QTy9ihzCNXhlr40QLFIj2iXUac3QYHKHTGLvxioO9GR7CZvsx3E7o49NcLT kCY7dIVB4snfYw8oF24Nvw==; Received: from [87.69.77.57] (port=4548 helo=home-c4e4a596f7) by fencepost.gnu.org with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mv2R1-0003A7-Gm; Wed, 08 Dec 2021 14:16:59 -0500 Date: Wed, 08 Dec 2021 21:16:40 +0200 Message-Id: <835yryx5yf.fsf@HIDDEN> From: Eli Zaretskii <eliz@HIDDEN> To: Paul Eggert <eggert@HIDDEN> In-Reply-To: <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> (message from Paul Eggert on Wed, 8 Dec 2021 11:06:12 -0800) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, 51327 <at> debbugs.gnu.org, stefan@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.3 (---) > Date: Wed, 8 Dec 2021 11:06:12 -0800 > Cc: 51327 <at> debbugs.gnu.org > From: Paul Eggert <eggert@HIDDEN> > > On 12/7/21 22:57, Jim Porter wrote: > > Doing that by default opens a loophole for all emacsclient users, but > > what about a command-line flag like `emacsclient > > --allow-tmpdir-loophole' and/or an environment variable like > > `EMACS_ALLOW_TMPDIR_LOOPHOLE=1 emacsclient' (with a better name, of > > course)? Then, the default behavior would be free of loopholes[2], but > > Ulrich's case could be achieved by passing that flag when calling > > emacsclient. It might even be possible for Gentoo to enable that for the > > user in the appropriate cases... > > Yes, I think something like this would be OK. The command-line flag > would be easier to audit. > > Not sure whether a last-minute change like this should go into Emacs 28, > though, even though it's security-relevant. Eli would be a better judge > of that. If it's a new command-line argument, and if the participants in this discussion can live with it as the solution for this problem, I'm okay with having it on emacs-28. Thanks.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 8 Dec 2021 19:06:21 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 14:06:21 2021 Received: from localhost ([127.0.0.1]:41369 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mv2Gj-0003lK-B9 for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 14:06:21 -0500 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:53458) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eggert@HIDDEN>) id 1mv2Gh-0003l6-JF for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 14:06:20 -0500 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 01E35160083; Wed, 8 Dec 2021 11:06:14 -0800 (PST) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id KbD5_L4bLPB9; Wed, 8 Dec 2021 11:06:13 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 4CC701600AE; Wed, 8 Dec 2021 11:06:13 -0800 (PST) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id r_yKUc2KMixi; Wed, 8 Dec 2021 11:06:13 -0800 (PST) Received: from [192.168.1.9] (cpe-172-91-119-151.socal.res.rr.com [172.91.119.151]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id 13E72160083; Wed, 8 Dec 2021 11:06:13 -0800 (PST) Message-ID: <d4a55d5e-d96a-e418-bec9-e624a9cf1645@HIDDEN> Date: Wed, 8 Dec 2021 11:06:12 -0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.3.1 Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand Content-Language: en-US To: Jim Porter <jporterbugs@HIDDEN>, Stefan Kangas <stefan@HIDDEN>, Eli Zaretskii <eliz@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> From: Paul Eggert <eggert@HIDDEN> Organization: UCLA Computer Science Department In-Reply-To: <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: -2.4 (--) X-Debbugs-Envelope-To: 51327 Cc: 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.4 (---) On 12/7/21 22:57, Jim Porter wrote: > Doing that by default opens a loophole for all emacsclient users, but > what about a command-line flag like `emacsclient > --allow-tmpdir-loophole' and/or an environment variable like > `EMACS_ALLOW_TMPDIR_LOOPHOLE=1 emacsclient' (with a better name, of > course)? Then, the default behavior would be free of loopholes[2], but > Ulrich's case could be achieved by passing that flag when calling > emacsclient. It might even be possible for Gentoo to enable that for the > user in the appropriate cases... Yes, I think something like this would be OK. The command-line flag would be easier to audit. Not sure whether a last-minute change like this should go into Emacs 28, though, even though it's security-relevant. Eli would be a better judge of that.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 8 Dec 2021 06:57:39 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Wed Dec 08 01:57:39 2021 Received: from localhost ([127.0.0.1]:39443 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1muqtX-0008C6-GG for submit <at> debbugs.gnu.org; Wed, 08 Dec 2021 01:57:39 -0500 Received: from mail-pf1-f176.google.com ([209.85.210.176]:42619) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <jporterbugs@HIDDEN>) id 1muqtS-0008Bq-OJ for 51327 <at> debbugs.gnu.org; Wed, 08 Dec 2021 01:57:38 -0500 Received: by mail-pf1-f176.google.com with SMTP id u80so1633964pfc.9 for <51327 <at> debbugs.gnu.org>; Tue, 07 Dec 2021 22:57:34 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:to:cc:references:from:message-id:date:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=4hVJwWKtRr5u/kGEXJYLmljZdr4o8PsaedruMAid1o8=; b=Vg4AKnBWE9cCOaOBmKnyGwl0OImwS2sxXW4ZIg4XeWO62Qj8b5tK2U2nkciHK5LLb4 030Lr0hAu0WJqMXDgDks9Mr7sx/Jy1/OuEW2h5IXvDtSZFBqFygoekSsUIlVsTZSz8wi 6KiTWT3PhLuVvT10Ejll70wncZm36Ct8OdhIyyh1a6hpoYxjDelUqd8RHeYLBR+uX+bh xY7CC9XP+zwsVFYEtzFe6WGoKYxWxPKmXL4duu3PhyIgPmWNwBz1q1QPZkRqkiEVuKEF 8pPMcOVabGHM5BI/9kVFJ/0bjHlGGko72/CDYYO4ad4bT460DGF77yFs3N9YdzaYPAQJ Elfg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=4hVJwWKtRr5u/kGEXJYLmljZdr4o8PsaedruMAid1o8=; b=2f+zAKdzLf6dAao+GTLRJjCgF+nmkNM6YdpaMnzAu4CVHeRlaMqLruiNOKIwLyPk18 up2htOsoO8nQU5892uv0jvJ+ujqWfOQIqGxTAmqVI7dKYfKjfryL1ZyjSqZDxgis8ZzS BZK4mVo9bxFQQpCBHddMs6b8bvwGeIgNRn4CE3NkHWKJ0gdmgy7fpVBeqqCSzR0jiJFq b+Q+2VklCxx3Flb9yWOBnAgaDuFdHq9WsSr38IzQzccwy/j5+RSGR4P2z54xw/qdSGG+ pyO2azUfH9LuN0LrVORBFTJZz9AOEWkC5O/PsmjU22B4A6f3rI19xdYUX1HL4MZ1hKWu Nu3A== X-Gm-Message-State: AOAM532ueUlUXY0c1vKj/26L9haUSa9svqwN1By4gG+Ypn1sOuJl8m6t qRYyZHoxdyuTvJ3y463Mrxg5wg24y4E= X-Google-Smtp-Source: ABdhPJy/Eo5znIraPF0TCzwIuKic1fxA3SVpFxaXv1VN4PLCX9kqfawpcz0b3nbSw9LhX38UshR4gA== X-Received: by 2002:a63:d008:: with SMTP id z8mr24160303pgf.623.1638946648826; Tue, 07 Dec 2021 22:57:28 -0800 (PST) Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id lb4sm5462593pjb.18.2021.12.07.22.57.27 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 07 Dec 2021 22:57:28 -0800 (PST) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand To: Paul Eggert <eggert@HIDDEN>, Stefan Kangas <stefan@HIDDEN>, Eli Zaretskii <eliz@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> From: Jim Porter <jporterbugs@HIDDEN> Message-ID: <3107b151-c56b-7c8d-7277-cbc39273a401@HIDDEN> Date: Tue, 7 Dec 2021 22:57:28 -0800 MIME-Version: 1.0 In-Reply-To: <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: 0.0 (/) X-Debbugs-Envelope-To: 51327 Cc: 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) On 12/7/2021 11:03 AM, Paul Eggert wrote: > Ulrich says the loophole is small because Emacs verifies that the > current user is the socket owner. However, small loopholes can still be > exploited: for example, an attacker could cause you to think that you're > connecting to your Emacs when you're really connecting to another of > your processes, and this could still lead to problems (particularly if > you're root). While I understand that Ulrich's goal is for things to Just Work with Gentoo's app-emacs/emacs-daemon package (which puts the socket in $TMPDIR), it seems there's no way to get that without opening at least a small loophole. When the user is guaranteed to be connecting to an Emacs daemon whose socket is in $TMPDIR, it's sufficient on Emacs 27 to just unset $XDG_RUNTIME_DIR first. However, from my discussion with Ulrich before[1], I believe one of the goals is to look in *both* places for a socket to be more flexible, as Emacs 28 currently does. Doing that by default opens a loophole for all emacsclient users, but what about a command-line flag like `emacsclient --allow-tmpdir-loophole' and/or an environment variable like `EMACS_ALLOW_TMPDIR_LOOPHOLE=1 emacsclient' (with a better name, of course)? Then, the default behavior would be free of loopholes[2], but Ulrich's case could be achieved by passing that flag when calling emacsclient. It might even be possible for Gentoo to enable that for the user in the appropriate cases... That's not as user-/distro-friendly as things just working automatically, but maybe it would be a decent compromise? Of course, if the loophole is small enough, maybe the current behavior in Emacs 28 is ok (aside from the warning message). I'm not an expert on the security implications though, so I don't have a strong opinion on which way to go here. [1] https://lists.gnu.org/archive/html/emacs-devel/2021-11/msg00435.html [2] Well, *known* loopholes...
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 7 Dec 2021 19:03:45 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Tue Dec 07 14:03:45 2021 Received: from localhost ([127.0.0.1]:38645 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mufke-0008Om-SD for submit <at> debbugs.gnu.org; Tue, 07 Dec 2021 14:03:45 -0500 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:36644) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eggert@HIDDEN>) id 1mufkd-0008OX-26 for 51327 <at> debbugs.gnu.org; Tue, 07 Dec 2021 14:03:43 -0500 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id C82B31600D5; Tue, 7 Dec 2021 11:03:36 -0800 (PST) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id 0snz_ujliRHn; Tue, 7 Dec 2021 11:03:36 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 143061600EA; Tue, 7 Dec 2021 11:03:36 -0800 (PST) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 5Af4CBKDrfSd; Tue, 7 Dec 2021 11:03:35 -0800 (PST) Received: from [192.168.1.9] (cpe-172-91-119-151.socal.res.rr.com [172.91.119.151]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id D9D0B1600D5; Tue, 7 Dec 2021 11:03:35 -0800 (PST) Message-ID: <212e4974-785a-65e0-70cc-fed7ea3ddacf@HIDDEN> Date: Tue, 7 Dec 2021 11:03:35 -0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.3.1 Content-Language: en-US To: Stefan Kangas <stefan@HIDDEN>, Eli Zaretskii <eliz@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> From: Paul Eggert <eggert@HIDDEN> Organization: UCLA Computer Science Department Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand In-Reply-To: <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: -2.4 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.4 (---) On 12/7/21 06:58, Stefan Kangas wrote: > Eli Zaretskii <eliz@HIDDEN> writes: > >>> Agreed. The only question is if this patch should go to emacs-28 or >>> master? Perhaps Eli or Lars has an opinion about that. >> >> AFAIU, Ulrich wasn't happy with that patch and proposed an >> alternative? > > You are correct, so it seems like we need to think about this more > closely before taking action. > > I linked the relevant emacs-devel thread with more discussion > separately. Although none of us has done a thorough security audit, I still think that looking in TMPDIR first is a security loophole that is exploitable in some circumstances. Ulrich says the loophole is small because Emacs verifies that the current user is the socket owner. However, small loopholes can still be exploited: for example, an attacker could cause you to think that you're connecting to your Emacs when you're really connecting to another of your processes, and this could still lead to problems (particularly if you're root).
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 7 Dec 2021 14:58:20 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Tue Dec 07 09:58:20 2021 Received: from localhost ([127.0.0.1]:38430 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mubvA-0001qN-Aj for submit <at> debbugs.gnu.org; Tue, 07 Dec 2021 09:58:20 -0500 Received: from mail-pf1-f179.google.com ([209.85.210.179]:41829) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <stefankangas@HIDDEN>) id 1mubv8-0001px-S8 for 51327 <at> debbugs.gnu.org; Tue, 07 Dec 2021 09:58:19 -0500 Received: by mail-pf1-f179.google.com with SMTP id g19so13734508pfb.8 for <51327 <at> debbugs.gnu.org>; Tue, 07 Dec 2021 06:58:18 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:in-reply-to:references:user-agent :mime-version:date:message-id:subject:to:cc; bh=U3BfNRCdBhgkxb5iTM1qYXa0rBK8A3IyThZLHo/dpY8=; b=S2Qccx/NqHxEwyIYubWcyYM9oG2wRGalw0Mp5o0+1YeKcGXe01YR605P0X7gkI6heF EiGNcrMKkHi1nNj41Pr9gQZqYtQnHKmSP4y/7x+OxsRFo7jeAoEarwesLdKZNO0YIBcD nYs3lh0jhQPwNwN8dG/6S7LqcRYIbnUTbAiiUkpSbPmhZHQGCi0I2Z7LBqN7sEGYVgak hJWIu6JdabJHI5kszkYReFr4OjEpBrzzl0qD4Si9N6RtdjUXUPCyHF80GWt3i2zL/dDC lRKTH0UVJoTtUDEndrK35YrR28CuOVVjO204GkvAL8RoBcw64Sy1viQHO4dw49VYvovZ aDCw== X-Gm-Message-State: AOAM532TD/GjckDd4pqkrfodJkyJhnfgmUOrRnZi2oCV4Rg2D578wI1u 3ULPBYpwBR1knHGRxlLHJaqATv6Ru6c7egM9/bY= X-Google-Smtp-Source: ABdhPJzpGW9rxziosesb7meJnuROGmHZWe97DAaa+YvqUHe1WEmdBk/GwlRvncBgeRPTBAcEpcftwGebtgSn7Yf2QlE= X-Received: by 2002:a62:1a03:0:b0:494:64b5:3e01 with SMTP id a3-20020a621a03000000b0049464b53e01mr43627289pfa.35.1638889093041; Tue, 07 Dec 2021 06:58:13 -0800 (PST) Received: from 753933720722 named unknown by gmailapi.google.com with HTTPREST; Tue, 7 Dec 2021 15:58:12 +0100 From: Stefan Kangas <stefan@HIDDEN> In-Reply-To: <834k7kze0z.fsf@HIDDEN> (Eli Zaretskii's message of "Tue, 07 Dec 2021 16:27:08 +0200") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> <834k7kze0z.fsf@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/29.0.50 (gnu/linux) MIME-Version: 1.0 Date: Tue, 7 Dec 2021 15:58:12 +0100 Message-ID: <CADwFkmkB6f5DWiUZaMOueDmqwyyutxBqoTYEkKFXx4Y0q52Zmw@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand To: Eli Zaretskii <eliz@HIDDEN> Content-Type: text/plain; charset="UTF-8" X-Spam-Score: 0.5 (/) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, eggert@HIDDEN, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -0.5 (/) Eli Zaretskii <eliz@HIDDEN> writes: >> Agreed. The only question is if this patch should go to emacs-28 or >> master? Perhaps Eli or Lars has an opinion about that. > > AFAIU, Ulrich wasn't happy with that patch and proposed an > alternative? You are correct, so it seems like we need to think about this more closely before taking action. I linked the relevant emacs-devel thread with more discussion separately.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 7 Dec 2021 14:58:18 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Tue Dec 07 09:58:18 2021 Received: from localhost ([127.0.0.1]:38427 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mubv8-0001q8-3I for submit <at> debbugs.gnu.org; Tue, 07 Dec 2021 09:58:18 -0500 Received: from mail-pl1-f177.google.com ([209.85.214.177]:44924) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <stefankangas@HIDDEN>) id 1mubv3-0001pn-Rx for 51327 <at> debbugs.gnu.org; Tue, 07 Dec 2021 09:58:17 -0500 Received: by mail-pl1-f177.google.com with SMTP id q17so9600798plr.11 for <51327 <at> debbugs.gnu.org>; Tue, 07 Dec 2021 06:58:13 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:in-reply-to:references:user-agent :mime-version:date:message-id:subject:to:cc; bh=EB3yUitDS/UnAD3zTD8xxYcMVzoqx6YK+2noENTM81E=; b=e8EIRzeLhy8Z6TPnBhWp3UAol9df8MhLUFw/UiU9Cs1SDOlHE5oqW49dCw3CWSAS+M +Y7I6nIJAs4rqQiN/MzI6+vz6WEBaoEO0S7kxT7Vp+RxwNOsXo2Qd7tfv8wdVGO9i0bt OqFBEHyv53/0QDxLKaoW126vIE0Yx6f+JaWSsdPgG0vzPtp/GqGU7/8ezkCsvYdro8l3 nz7wbBp2JtkQ0VK0XMyol6fyeddqQYiScWDD5/VbiSlDqfYfs44J991exFKq/K8MwzO/ IHRZY8UsIot1n+yY9winiRHLcgYovMHh4PrSfmis+EKF9kGh1rv7rdmksGNUvCJUUuUA XElg== X-Gm-Message-State: AOAM5329pWPJjYrkWOysORmJBGoNeSmOCYMj1N106JDUorm5ctD9x+Kw sriQb1jhL6K0ZuLD0PWTnbVDhr+taQ1UxY91wAs= X-Google-Smtp-Source: ABdhPJwJTl2aaSfivDcjEIixeyZQt4dgGRZ172Lzpqg0kV7TDrdcz1o/i58orHN8YGEgjvsguLrYZ+kBcSqtrrWbqcs= X-Received: by 2002:a17:90a:be10:: with SMTP id a16mr7225391pjs.133.1638889088060; Tue, 07 Dec 2021 06:58:08 -0800 (PST) Received: from 753933720722 named unknown by gmailapi.google.com with HTTPREST; Tue, 7 Dec 2021 15:58:07 +0100 From: Stefan Kangas <stefan@HIDDEN> In-Reply-To: <uczneyjin@HIDDEN> (Ulrich Mueller's message of "Fri, 05 Nov 2021 11:38:40 +0100") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <uczneyjin@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/29.0.50 (gnu/linux) MIME-Version: 1.0 Date: Tue, 7 Dec 2021 15:58:07 +0100 Message-ID: <CADwFkm=1k4a_UxUhgW820nicb2nfDAOjxS0cOkGsQwsz0WuE4w@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on demand To: Ulrich Mueller <ulm@HIDDEN> Content-Type: text/plain; charset="UTF-8" X-Spam-Score: 0.5 (/) X-Debbugs-Envelope-To: 51327 Cc: 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -0.5 (/) Ulrich Mueller <ulm@HIDDEN> writes: > If I understand this report correctly, the problem is just the spurious > warning about XDG_RUNTIME_DIR? > > Instead of changing the functionality (which breaks other use cases, see > my message to emacs-devel), wouldn't it make more sense to just suppress > the warning if the variable is set? As in attached patch? The discussion is here: https://lists.gnu.org/archive/html/emacs-devel/2021-11/msg00394.html
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 7 Dec 2021 14:27:15 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Tue Dec 07 09:27:15 2021 Received: from localhost ([127.0.0.1]:36912 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mubR5-0000dR-4a for submit <at> debbugs.gnu.org; Tue, 07 Dec 2021 09:27:15 -0500 Received: from eggs.gnu.org ([209.51.188.92]:55160) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eliz@HIDDEN>) id 1mubR4-0000dG-8P for 51327 <at> debbugs.gnu.org; Tue, 07 Dec 2021 09:27:14 -0500 Received: from [2001:470:142:3::e] (port=43094 helo=fencepost.gnu.org) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mubQy-0005Kt-HK; Tue, 07 Dec 2021 09:27:08 -0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org; s=fencepost-gnu-org; h=References:Subject:In-Reply-To:To:From:Date: mime-version; bh=1/GtikDc0f/xYkVX4UXzOPudv4Qgt4FS8YpCnKLJC0M=; b=dkwKTmVGYNjb LbbvM2/ykSwPx2+FpOenOYxpf7aKpvan1zR3VHRANp3FFFXBHb6/aDnU6nFOVBB5eADLuaKXLZdT+ OJs5W+ZqocDjgSuRpYgPKekPTYzgErQC2fWQUpBGIZuEfbVaxlvJnQYwi/9SkRIBgCPDCVj9YRcn5 svMPbLa5CdfZOSCUcUXxtxJoj3kSxwrXxEucQq1cY6othxOyswNIClkVB9tkifB8eFe5ktkww4I7o t/evX1OXfPcr770z3g1/Kz/TCaOIPm8Vhxxkv+rhxPqL19iiXZQ+qmjcfnVNCpA+3WtPhp380j5gr Fsd97jIVtmEdPRNenvg53Q==; Received: from [87.69.77.57] (port=4797 helo=home-c4e4a596f7) by fencepost.gnu.org with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <eliz@HIDDEN>) id 1mubQy-0001N7-Ae; Tue, 07 Dec 2021 09:27:08 -0500 Date: Tue, 07 Dec 2021 16:27:08 +0200 Message-Id: <834k7kze0z.fsf@HIDDEN> From: Eli Zaretskii <eliz@HIDDEN> To: Stefan Kangas <stefan@HIDDEN> In-Reply-To: <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> (message from Stefan Kangas on Tue, 7 Dec 2021 12:26:23 +0100) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 51327 Cc: jporterbugs@HIDDEN, eggert@HIDDEN, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.3 (---) > From: Stefan Kangas <stefan@HIDDEN> > Date: Tue, 7 Dec 2021 12:26:23 +0100 > Cc: Jim Porter <jporterbugs@HIDDEN>, 51327 <at> debbugs.gnu.org > > Paul Eggert <eggert@HIDDEN> writes: > > > Thanks, this patch looks good to me. You're right that the current approach is > > insecure, and your patch should make it somewhat less insecure. > > Agreed. The only question is if this patch should go to emacs-28 or > master? Perhaps Eli or Lars has an opinion about that. AFAIU, Ulrich wasn't happy with that patch and proposed an alternative?
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Stefan Kangas <stefan@HIDDEN>
to control <at> debbugs.gnu.org.
Full text available.Received: (at 51327) by debbugs.gnu.org; 7 Dec 2021 11:26:32 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Tue Dec 07 06:26:32 2021 Received: from localhost ([127.0.0.1]:36472 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1muYcC-00064b-5b for submit <at> debbugs.gnu.org; Tue, 07 Dec 2021 06:26:32 -0500 Received: from mail-pf1-f176.google.com ([209.85.210.176]:37509) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <stefankangas@HIDDEN>) id 1muYcA-00064L-3i for 51327 <at> debbugs.gnu.org; Tue, 07 Dec 2021 06:26:30 -0500 Received: by mail-pf1-f176.google.com with SMTP id 8so13189418pfo.4 for <51327 <at> debbugs.gnu.org>; Tue, 07 Dec 2021 03:26:30 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:in-reply-to:references:user-agent :mime-version:date:message-id:subject:to:cc; bh=RWjOzYn+yO6DZ4ddNhjTf7EqGuIf0kDCaxDkP6SkiuY=; b=3IGC7S2evyIHlqc8VfC8IH7yRzSdWKFR1rwPpRPYjUarj7Um5OHuCAQiPwKBG9uay2 P/W/XcgxfVinA8s42caPWiqXTqjVPXhXZmfeH3zpuux+5VUgPci5ywZDHiX6nQJs/kV+ 1B86Vz+hrJBDTERxzs6e7tatplmQvZCQQMpDf+nXDUmzBalePYamYhp0al28BKsuMbnN d8PtSDWBbc6AQUmObw8XAXl1VzNES/EaAGDe7rrYk5w9yCfFIFCY8+GdoN0PR53XjnxN cjTKd8rfM/PisVTpLCnKXE3bhqqtFmozBcCmIPA9mkyE2WvdIlgVSyuiZ/Vp94Yrg2Cs xvYA== X-Gm-Message-State: AOAM533ClsNZCyGTt4EsSoWctF5vqcyoMdWO+lVrzO5r6zPsd70R1jfE s+gj5kDh1Es8l+X0tP1e7stwG6ydgSO94jwpN4I= X-Google-Smtp-Source: ABdhPJy3oWSHcwuBNelrJ0GkUyfCQh54rcM7K8DoZXoJqd3ipwdkqaeksLGV8LywJMGKWw3oX+/+6fClZeny9sIYZ4U= X-Received: by 2002:aa7:8283:0:b0:49f:a0d0:abcf with SMTP id s3-20020aa78283000000b0049fa0d0abcfmr16852487pfm.70.1638876384229; Tue, 07 Dec 2021 03:26:24 -0800 (PST) Received: from 753933720722 named unknown by gmailapi.google.com with HTTPREST; Tue, 7 Dec 2021 12:26:23 +0100 From: Stefan Kangas <stefan@HIDDEN> In-Reply-To: <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> (Paul Eggert's message of "Sat, 30 Oct 2021 15:33:11 -0700") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/29.0.50 (gnu/linux) MIME-Version: 1.0 Date: Tue, 7 Dec 2021 12:26:23 +0100 Message-ID: <CADwFkmk3hCc_2ZcqJnexHKt7tNnBsUbGpM1X57-xtLU3EKrKjg@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand To: Paul Eggert <eggert@HIDDEN> Content-Type: text/plain; charset="UTF-8" X-Spam-Score: 0.5 (/) X-Debbugs-Envelope-To: 51327 Cc: Jim Porter <jporterbugs@HIDDEN>, 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -0.5 (/) Paul Eggert <eggert@HIDDEN> writes: > Thanks, this patch looks good to me. You're right that the current approach is > insecure, and your patch should make it somewhat less insecure. Agreed. The only question is if this patch should go to emacs-28 or master? Perhaps Eli or Lars has an opinion about that.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 12 Nov 2021 02:21:35 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Nov 11 21:21:35 2021 Received: from localhost ([127.0.0.1]:42724 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mlMC6-00062Y-Rk for submit <at> debbugs.gnu.org; Thu, 11 Nov 2021 21:21:34 -0500 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:47824) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eggert@HIDDEN>) id 1mlMC3-00062H-H6 for 51327 <at> debbugs.gnu.org; Thu, 11 Nov 2021 21:21:33 -0500 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 725F11600FC; Thu, 11 Nov 2021 18:21:25 -0800 (PST) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id pYjOikSM2CUB; Thu, 11 Nov 2021 18:21:24 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id CD45B160100; Thu, 11 Nov 2021 18:21:24 -0800 (PST) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id zTuiXwF7gWOv; Thu, 11 Nov 2021 18:21:24 -0800 (PST) Received: from [192.168.1.9] (cpe-172-91-119-151.socal.res.rr.com [172.91.119.151]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id A68811600FC; Thu, 11 Nov 2021 18:21:24 -0800 (PST) Message-ID: <87cc40c9-de9b-8d26-eaad-5c08f4bd065a@HIDDEN> Date: Thu, 11 Nov 2021 18:21:24 -0800 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.2.1 Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on demand Content-Language: en-US To: Jim Porter <jporterbugs@HIDDEN>, Ulrich Mueller <ulm@HIDDEN>, 51327 <at> debbugs.gnu.org References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <uczneyjin@HIDDEN> <238ece9e-df13-a604-ba3a-36b346857423@HIDDEN> <uwnlmwk9u@HIDDEN> <f13fb4b7-0299-db20-e80c-9c14be4ba466@HIDDEN> <umtmiwhm4@HIDDEN> <u7ddevo6y@HIDDEN> <82a66db9-f9b3-fc0f-a98d-8900d4fec066@HIDDEN> From: Paul Eggert <eggert@HIDDEN> Organization: UCLA Computer Science Department In-Reply-To: <82a66db9-f9b3-fc0f-a98d-8900d4fec066@HIDDEN> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: -2.4 (--) X-Debbugs-Envelope-To: 51327 X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.4 (---) On 11/11/21 09:06, Jim Porter wrote: > It's possible that this behavior is perfectly safe, but the way the code > is currently written (plus Paul Eggert's reply in this bug) seem to > indicate that it's vulnerable to attack. Yes, that's indeed the worry.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 11 Nov 2021 17:06:44 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Thu Nov 11 12:06:44 2021 Received: from localhost ([127.0.0.1]:42133 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mlDXA-00048R-Aa for submit <at> debbugs.gnu.org; Thu, 11 Nov 2021 12:06:44 -0500 Received: from mail-pg1-f170.google.com ([209.85.215.170]:33326) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <jporterbugs@HIDDEN>) id 1mlDX8-000488-Ku for 51327 <at> debbugs.gnu.org; Thu, 11 Nov 2021 12:06:43 -0500 Received: by mail-pg1-f170.google.com with SMTP id 136so1036394pgc.0 for <51327 <at> debbugs.gnu.org>; Thu, 11 Nov 2021 09:06:42 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:to:cc:references:from:message-id:date:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=6o6VHQtLCx81SdiuQjRF5NVLhaEm0M3mHwQJHLvis6s=; b=n+hloJschzHzW29ndgGrXjA2YanVpXUzp74tvPQpwpGtJv3wBWu4XpUHjL2kwSlfU9 yNVd4+aH6KID2hi0+mYcfRszzUOkdpfaGMvoFuofCDRFOvm+/2RDYmh+fbZX1pbkbV+6 /lWvloCtlXYT6UXrMlqVVLjXbB8KK/Yjgny4gFN1IqaybQ4eIlWQ9uCXUNIN3iSSlGNQ oSDa374zx1dEyV9fcTcoH28HIuhvl/hachv59lxbkXUm/y7L2wwdJI0XWPm2Pih9Yz+L CpUJsom2dODjwfjuZbTp8/RNoJWqv1vqHHTnPK/3weFr7cEWYuKhWDNJbmH55c5+fH45 MljQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=6o6VHQtLCx81SdiuQjRF5NVLhaEm0M3mHwQJHLvis6s=; b=wUZxB/Zf1Kcl2cPjUg5hNofBaz6JknONeQjjT77r/50aCa0MB7DsCwd6iOx7e/jZ0p E4+e66H245JpFjps33lCZoIlE7IqvViV35isa7ZOM2oAgop7Zd0vXp8iuddxp1D/WlpL Lk7lHQfULwedfACek3Jo4MTVWX4L9eim4Q42dW+9nld8ObMbIDCvMHm16usOX0motflS JSJyJuXIoiLmMJc+DUoZRqbR9BsahqrI54Qc8GIn+RaqRd1nHW2YsUvmzlB0fBtMdE2/ 9zEBbyjHmH902RsiW2iPl6vUSU/dTMeltZ5ooOUed/ku/mHUw35xVGxkJZECtHDv+cEp 5O6Q== X-Gm-Message-State: AOAM5315iMj6VXsiU5cKw1I7OL6DX5VY5/SGI26XQLVLRY6PGCbfwyLw drpugKU6doQhwZoyy3tjgnU= X-Google-Smtp-Source: ABdhPJwal05qtudO4HS5aJIy4x1pg39qXy9zZK4aQtRUGi8o8nOImsLaHaLZ9pnvo/6RE0Sy7NK2Hg== X-Received: by 2002:a63:ff04:: with SMTP id k4mr5386302pgi.309.1636650396629; Thu, 11 Nov 2021 09:06:36 -0800 (PST) Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id h22sm2681045pgh.80.2021.11.11.09.06.35 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 11 Nov 2021 09:06:36 -0800 (PST) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on demand To: Ulrich Mueller <ulm@HIDDEN>, 51327 <at> debbugs.gnu.org References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <uczneyjin@HIDDEN> <238ece9e-df13-a604-ba3a-36b346857423@HIDDEN> <uwnlmwk9u@HIDDEN> <f13fb4b7-0299-db20-e80c-9c14be4ba466@HIDDEN> <umtmiwhm4@HIDDEN> <u7ddevo6y@HIDDEN> From: Jim Porter <jporterbugs@HIDDEN> Message-ID: <82a66db9-f9b3-fc0f-a98d-8900d4fec066@HIDDEN> Date: Thu, 11 Nov 2021 09:06:36 -0800 MIME-Version: 1.0 In-Reply-To: <u7ddevo6y@HIDDEN> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 51327 Cc: Paul Eggert <eggert@HIDDEN> X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) On 11/11/2021 5:04 AM, Ulrich Mueller wrote: >>>>>> On Fri, 05 Nov 2021, Ulrich Mueller wrote: > >>>>>> On Fri, 05 Nov 2021, Jim Porter wrote: >>> I'm not an expert on this kind of attack, but my understanding is that >>> it could go something like this: > >>> 1. Attacker runs `evil-daemon' which puts its socket in /tmp/evil >>> 2. Attacker runs `ln -s /tmp/evil /tmp/emacs1000/server' > >> Right, and IIUC this must be carefully timed to exploit some race >> condition between permission checking and creating the socket. I am >> not an expert on this either. > > Thinking about it some more, when you always start the daemon with > XDG_RUNTIME_DIR present, there won't be a /tmp/emacs1000/server (at > least not one with correct user and permissions), and I don't believe > that a symlink attack would be possible. > > OTOH, when you start the daemon without XDG_RUNTIME_DIR, then the socket > will be created in /tmp, but in that case you'd want the client to find > it there. The case I'm concerned about is when the daemon *hasn't* been started yet by the time emacsclient is called. In that case, emacsclient checks both XDG_RUNTIME_DIR and TMPDIR before giving up and starting the daemon. In this case, that means that even on a system where Emacs only uses XDG_RUNTIME_DIR in practice, it'll still search TMPDIR the first time when looking for the (non-existent) daemon. The question then is whether it's safe for the emacsclient to look in TMPDIR to confirm that no daemon already exists. It's possible that this behavior is perfectly safe, but the way the code is currently written (plus Paul Eggert's reply in this bug) seem to indicate that it's vulnerable to attack. If it really is vulnerable, then I think it should be fixed; if it's safe, then just eliminating the warning is sufficient of course.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.
Received: (at 51327) by debbugs.gnu.org; 11 Nov 2021 13:04:18 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Thu Nov 11 08:04:18 2021
Received: from localhost ([127.0.0.1]:40386 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1ml9kX-0002s6-RP
for submit <at> debbugs.gnu.org; Thu, 11 Nov 2021 08:04:18 -0500
Received: from woodpecker.gentoo.org ([140.211.166.183]:37168
helo=smtp.gentoo.org) by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <ulm@HIDDEN>) id 1ml9kW-0002rs-2P
for 51327 <at> debbugs.gnu.org; Thu, 11 Nov 2021 08:04:16 -0500
From: Ulrich Mueller <ulm@HIDDEN>
To: 51327 <at> debbugs.gnu.org
Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR
when starting daemon on demand
In-Reply-To: <umtmiwhm4@HIDDEN> (Ulrich Mueller's message of "Fri, 05 Nov
2021 20:02:43 +0100")
References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN>
<uczneyjin@HIDDEN>
<238ece9e-df13-a604-ba3a-36b346857423@HIDDEN>
<uwnlmwk9u@HIDDEN>
<f13fb4b7-0299-db20-e80c-9c14be4ba466@HIDDEN>
<umtmiwhm4@HIDDEN>
Date: Thu, 11 Nov 2021 14:04:05 +0100
Message-ID: <u7ddevo6y@HIDDEN>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
X-Spam-Score: -5.0 (-----)
X-Debbugs-Envelope-To: 51327
Cc: Jim Porter <jporterbugs@HIDDEN>, Paul Eggert <eggert@HIDDEN>
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -6.0 (------)
>>>>> On Fri, 05 Nov 2021, Ulrich Mueller wrote:
>>>>> On Fri, 05 Nov 2021, Jim Porter wrote:
>> I'm not an expert on this kind of attack, but my understanding is that
>> it could go something like this:
>> 1. Attacker runs `evil-daemon' which puts its socket in /tmp/evil
>> 2. Attacker runs `ln -s /tmp/evil /tmp/emacs1000/server'
> Right, and IIUC this must be carefully timed to exploit some race
> condition between permission checking and creating the socket. I am
> not an expert on this either.
Thinking about it some more, when you always start the daemon with
XDG_RUNTIME_DIR present, there won't be a /tmp/emacs1000/server (at
least not one with correct user and permissions), and I don't believe
that a symlink attack would be possible.
OTOH, when you start the daemon without XDG_RUNTIME_DIR, then the socket
will be created in /tmp, but in that case you'd want the client to find
it there.
>> 3. User runs `emacsclient --alternate-editor=""'
>> 4. emacsclient doesn't see a socket in XDG_RUNTIME_DIR, checks TMPDIR
>> 5. emacsclient connects to evil-daemon
See above, unless the daemon was started without XDG*, there won't be
any socket in TMPDIR.
> Note that after locating the socket, emacsclient will double check for
> sane permissions. That is, correct user id and _no_ write permission for
> either group or others. That's why I think that there's little attack
> surface on the client side, once the socket has been created.
>> The evil-daemon probably can't get access to the user's files, but
>> might be able to trick a user into entering some secret. I'll let
>> others chime in too though, since like I said, I'm not an expert.
>> If I'm wrong and this isn't an a problem, then I agree that all we
>> need to do here is silence the warning.
The core issue is that /run/user/${UID}/ is transient and will disappear
after logout. So if you start an Emacs daemon then its process will
persist after logout, but its socket file will be gone and it will no
longer be possible to connect. This may not be a security issue, but it
may cause loss of data.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 5 Nov 2021 19:02:57 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Fri Nov 05 15:02:57 2021 Received: from localhost ([127.0.0.1]:47246 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mj4UL-0002Y0-8s for submit <at> debbugs.gnu.org; Fri, 05 Nov 2021 15:02:57 -0400 Received: from woodpecker.gentoo.org ([140.211.166.183]:37654 helo=smtp.gentoo.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <ulm@HIDDEN>) id 1mj4UI-0002Xm-SS for 51327 <at> debbugs.gnu.org; Fri, 05 Nov 2021 15:02:55 -0400 From: Ulrich Mueller <ulm@HIDDEN> To: Jim Porter <jporterbugs@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on demand In-Reply-To: <f13fb4b7-0299-db20-e80c-9c14be4ba466@HIDDEN> (Jim Porter's message of "Fri, 5 Nov 2021 11:38:48 -0700") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <uczneyjin@HIDDEN> <238ece9e-df13-a604-ba3a-36b346857423@HIDDEN> <uwnlmwk9u@HIDDEN> <f13fb4b7-0299-db20-e80c-9c14be4ba466@HIDDEN> Date: Fri, 05 Nov 2021 20:02:43 +0100 Message-ID: <umtmiwhm4@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 51327 Cc: Ulrich Mueller <ulm@HIDDEN>, 51327 <at> debbugs.gnu.org, Paul Eggert <eggert@HIDDEN> X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -6.0 (------) >>>>> On Fri, 05 Nov 2021, Jim Porter wrote: > (Cc'ing Paul Eggert, who can probably answer more confidently than me.) > On 11/5/2021 11:05 AM, Ulrich Mueller wrote: >> Can someone please explain to me how an exploit on the _client_ side >> would look like? >> When starting the server, I can believe that there may be some >> surface for a symlink attack. But once the daemon is running? What is >> the security issue for the client checking TMPDIR? > I'm not an expert on this kind of attack, but my understanding is that > it could go something like this: > 1. Attacker runs `evil-daemon' which puts its socket in /tmp/evil > 2. Attacker runs `ln -s /tmp/evil /tmp/emacs1000/server' Right, and IIUC this must be carefully timed to exploit some race condition between permission checking and creating the socket. I am not an expert on this either. > 3. User runs `emacsclient --alternate-editor=""' > 4. emacsclient doesn't see a socket in XDG_RUNTIME_DIR, checks TMPDIR > 5. emacsclient connects to evil-daemon Note that after locating the socket, emacsclient will double check for sane permissions. That is, correct user id and _no_ write permission for either group or others. That's why I think that there's little attack surface on the client side, once the socket has been created. > The evil-daemon probably can't get access to the user's files, but > might be able to trick a user into entering some secret. I'll let > others chime in too though, since like I said, I'm not an expert. > If I'm wrong and this isn't an a problem, then I agree that all we > need to do here is silence the warning.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 5 Nov 2021 18:38:56 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Fri Nov 05 14:38:56 2021 Received: from localhost ([127.0.0.1]:47213 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mj476-0008Eg-Hq for submit <at> debbugs.gnu.org; Fri, 05 Nov 2021 14:38:56 -0400 Received: from mail-pj1-f45.google.com ([209.85.216.45]:40553) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <jporterbugs@HIDDEN>) id 1mj474-0008ES-Jq for 51327 <at> debbugs.gnu.org; Fri, 05 Nov 2021 14:38:54 -0400 Received: by mail-pj1-f45.google.com with SMTP id n36-20020a17090a5aa700b0019fa884ab85so3934295pji.5 for <51327 <at> debbugs.gnu.org>; Fri, 05 Nov 2021 11:38:54 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:to:cc:references:from:message-id:date:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=MiGhWH2j2cw0qmwxsbOuzZgpDIVPmATTk7VWONWWAl8=; b=dWH8QyARvmI1e3A9KnClEt85wfvsoRQRHojFr8Z28CQpwPtWY7va2e/+pU5J22IoHp hPPmx4Iev4To1UdsB5wyFySeWsQiH0+jofVVU8KIVe/oMGOapJEwPllPE4e7GSJ+FiLQ BJjXTIJX6/Oa7x4U0Na4eAwBFPmIcMZaZJogzuX9RwHkukWX5m5YJZ2UYN2R2oMlYWgT nL4LjSqOaaCo+Uz2WpEkkcmXSSOoJ7Adf0oUP6Wa5L0aV79jvBkdxhTdbN4pGXe3k+gY 4CKx2/bx5X+Aln+NEm1vkT3PKAhuAQ7jCiD+yC+/ndIEzW1DDjo8eivSiQ4zbkLt9kcN NYiw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=MiGhWH2j2cw0qmwxsbOuzZgpDIVPmATTk7VWONWWAl8=; b=WiDD2ONKW+vimcRCQpRWYd7Nud/RQGkOdsgzcetIAomM7HUt3ouCnIuzKJKNUVbnNY LD/eSJVOAxDCUYDXj8CM23nJxWj1kvWI4tRHaOXpgJVWTSjBrR2EnA1Wtn8rLdcrUr3w zJoaSpIfF1UC7keBnb9sPBUC5XzVa/ZDvzScXdjzoHZEKDjSo7+1J9GAOKwLXIZCvkuL wEoqqIbJamiFlJm0TlUlrRVSLFap8VSPq845ccjxXxEyXFkVJ2ihqsX/3ekSw3+dxmDO oh2n5XfQJ/VdrGrHtdYERTooLzzq0pigH1LUa2EtBnRaOkqhix7QiddpwWFFodd0VKuM lX/w== X-Gm-Message-State: AOAM533/RR1Z6dRPJCZ0VOCaOwFv82ZVvcAQLXWbXm/Bjt4tY3ZcAnWT CA62bAnaZ37hpfGmcA8w+jM= X-Google-Smtp-Source: ABdhPJxSJwPrWaUmRcOh1IHisZNTmnoG/d8FsQ9RVjOkGX0bUh81GWnUfkOMI31KRwkm9ahl1ctdUw== X-Received: by 2002:a17:90a:4586:: with SMTP id v6mr32394936pjg.43.1636137528658; Fri, 05 Nov 2021 11:38:48 -0700 (PDT) Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id e6sm6444806pgf.59.2021.11.05.11.38.47 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 05 Nov 2021 11:38:48 -0700 (PDT) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on demand To: Ulrich Mueller <ulm@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <uczneyjin@HIDDEN> <238ece9e-df13-a604-ba3a-36b346857423@HIDDEN> <uwnlmwk9u@HIDDEN> From: Jim Porter <jporterbugs@HIDDEN> Message-ID: <f13fb4b7-0299-db20-e80c-9c14be4ba466@HIDDEN> Date: Fri, 5 Nov 2021 11:38:48 -0700 MIME-Version: 1.0 In-Reply-To: <uwnlmwk9u@HIDDEN> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 51327 Cc: 51327 <at> debbugs.gnu.org, Paul Eggert <eggert@HIDDEN> X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) (Cc'ing Paul Eggert, who can probably answer more confidently than me.) On 11/5/2021 11:05 AM, Ulrich Mueller wrote: > Can someone please explain to me how an exploit on the _client_ side > would look like? > > When starting the server, I can believe that there may be some surface > for a symlink attack. But once the daemon is running? What is the > security issue for the client checking TMPDIR? I'm not an expert on this kind of attack, but my understanding is that it could go something like this: 1. Attacker runs `evil-daemon' which puts its socket in /tmp/evil 2. Attacker runs `ln -s /tmp/evil /tmp/emacs1000/server' 3. User runs `emacsclient --alternate-editor=""' 4. emacsclient doesn't see a socket in XDG_RUNTIME_DIR, checks TMPDIR 5. emacsclient connects to evil-daemon The evil-daemon probably can't get access to the user's files, but might be able to trick a user into entering some secret. I'll let others chime in too though, since like I said, I'm not an expert. If I'm wrong and this isn't an a problem, then I agree that all we need to do here is silence the warning.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 5 Nov 2021 18:05:30 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Fri Nov 05 14:05:30 2021 Received: from localhost ([127.0.0.1]:47128 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mj3aj-0007OT-Sf for submit <at> debbugs.gnu.org; Fri, 05 Nov 2021 14:05:30 -0400 Received: from woodpecker.gentoo.org ([140.211.166.183]:49864 helo=smtp.gentoo.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <ulm@HIDDEN>) id 1mj3ai-0007O1-7T for 51327 <at> debbugs.gnu.org; Fri, 05 Nov 2021 14:05:28 -0400 From: Ulrich Mueller <ulm@HIDDEN> To: Jim Porter <jporterbugs@HIDDEN> Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on demand In-Reply-To: <238ece9e-df13-a604-ba3a-36b346857423@HIDDEN> (Jim Porter's message of "Fri, 5 Nov 2021 10:54:29 -0700") References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <uczneyjin@HIDDEN> <238ece9e-df13-a604-ba3a-36b346857423@HIDDEN> Date: Fri, 05 Nov 2021 19:05:17 +0100 Message-ID: <uwnlmwk9u@HIDDEN> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 51327 Cc: 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -6.0 (------) Can someone please explain to me how an exploit on the _client_ side would look like? When starting the server, I can believe that there may be some surface for a symlink attack. But once the daemon is running? What is the security issue for the client checking TMPDIR?
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 5 Nov 2021 17:54:40 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Fri Nov 05 13:54:40 2021 Received: from localhost ([127.0.0.1]:47109 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mj3QF-00077H-WF for submit <at> debbugs.gnu.org; Fri, 05 Nov 2021 13:54:40 -0400 Received: from mail-pj1-f47.google.com ([209.85.216.47]:52868) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <jporterbugs@HIDDEN>) id 1mj3QA-00076z-V1 for 51327 <at> debbugs.gnu.org; Fri, 05 Nov 2021 13:54:38 -0400 Received: by mail-pj1-f47.google.com with SMTP id h24so2496692pjq.2 for <51327 <at> debbugs.gnu.org>; Fri, 05 Nov 2021 10:54:34 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:to:references:from:message-id:date:mime-version:in-reply-to :content-language:content-transfer-encoding; bh=qsjqsJuAG96HVuKLzky2sgHjBn6TzFCbNf8oEk+Exv0=; b=qX5EAf5MfMwkzKO56oCXJk8ZkHQj+L2q6xLPAsltnxN2MhKdFpXe2RvLDMrdrMgbOT oEHnVzzL1znzb0E1XETa9k60bT6kBSoAuE28YA/Un1ZVJA93KqwcUnDw1UvZvLeO8aLQ oel1oseLsar42py7StqDT8YomcKLgg6KaWW1t8nUDl2go5MPu1ev2yI0NMcw/4bXZQRI /EEnrwz7FjksgimCNDcDT0WSj/GR38UfKmS9bAVc1VvMuLMnScSfFTS/raqbbqzz56CL KhsBnnYBiphfgMjXWSgl5FejsKYfWb9f3+fSyDdFG/gXsvDqvpfCJGPaiYRSNg/RhXNf EKiQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:to:references:from:message-id:date :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=qsjqsJuAG96HVuKLzky2sgHjBn6TzFCbNf8oEk+Exv0=; b=3U2JcCA+87Qv51rN56VXMuvUWbuAdQmfTQLzZ9gmIWtJHOsdxajRr1GN89uW5g0bVd NLUS7dHjQlJtZrQQ6xsCnKpfzOOp+hf27rmChE/i7Z420r4HfxGKCL68R5Zzc7C6xLv9 wQ9YCHPRu++eIii+aD2eT3925ARWIFOUqb1yaBXtbVnN6jcMDhQ32iu8MwS2IJWe/0Lh T8RDwQV+DgEBNV5WeiimZ7Dt6BbWGmkQVm8PSlH4ZgZVKCsNVN52ofXfzn7nTMPn1uJI sbwCRdW53C4a9bN2P/c/+It9GWL9oEjaGCWvcu2kYSfY+QOrMiZCYpsEY1CQ+3s+b/Ou 7I7g== X-Gm-Message-State: AOAM530s+oC9FzOQr8s155SYtD19oEj1F77Tc5tm2MTew8ChAtwbBtmB dMns+fS5PN02MpsT/5jS0NV5GeRaxbo= X-Google-Smtp-Source: ABdhPJz4EbC+qm9JtNL4qPckRdBYp/683PPIcIaVJ0GM6+r2lPuBtFktQuO09d2GwAfgnqNyd8CsyQ== X-Received: by 2002:a17:90a:8912:: with SMTP id u18mr31223649pjn.69.1636134869067; Fri, 05 Nov 2021 10:54:29 -0700 (PDT) Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id x193sm6526110pfd.160.2021.11.05.10.54.28 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 05 Nov 2021 10:54:28 -0700 (PDT) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on demand To: Ulrich Mueller <ulm@HIDDEN>, 51327 <at> debbugs.gnu.org References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <uczneyjin@HIDDEN> From: Jim Porter <jporterbugs@HIDDEN> Message-ID: <238ece9e-df13-a604-ba3a-36b346857423@HIDDEN> Date: Fri, 5 Nov 2021 10:54:29 -0700 MIME-Version: 1.0 In-Reply-To: <uczneyjin@HIDDEN> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 51327 X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) On 11/5/2021 3:38 AM, Ulrich Mueller wrote: > If I understand this report correctly, the problem is just the spurious > warning about XDG_RUNTIME_DIR? > > Instead of changing the functionality (which breaks other use cases, see > my message to emacs-devel), wouldn't it make more sense to just suppress > the warning if the variable is set? As in attached patch? It's not just a spurious warning; the warning is telling the user about a real problem, though the wording is a bit confusing for this particular case. If a user calls `emacsclient --alternate-editor=""' with XDG_RUNTIME_DIR set and no Emacs server running, emacsclient will check in both XDG_RUNTIME_DIR and TMPDIR to find the server socket before giving up and starting the daemon. Since XDG_RUNTIME_DIR exists (at least in part) to prevent symlink attacks, Emacs should try to avoid checking TMPDIR in order to avoid this vulnerability. Emacs 27 is secure in this regard, since it *never* checks TMPDIR if XDG_RUNTIME_DIR is set. However, that behavior caused the problems described in bug#33847. The patch I posted is a compromise that restores the secure behavior for users who set the alternate editor and want to start the Emacs daemon on demand (it's not perfect though; see my reply in emacs-devel).
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.
Received: (at 51327) by debbugs.gnu.org; 5 Nov 2021 10:38:54 +0000
From debbugs-submit-bounces <at> debbugs.gnu.org Fri Nov 05 06:38:54 2021
Received: from localhost ([127.0.0.1]:44947 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1miwcY-000840-1K
for submit <at> debbugs.gnu.org; Fri, 05 Nov 2021 06:38:54 -0400
Received: from woodpecker.gentoo.org ([140.211.166.183]:37806
helo=smtp.gentoo.org) by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <ulm@HIDDEN>) id 1miwcV-00083i-Kb
for 51327 <at> debbugs.gnu.org; Fri, 05 Nov 2021 06:38:52 -0400
From: Ulrich Mueller <ulm@HIDDEN>
To: 51327 <at> debbugs.gnu.org
Subject: Re: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting
daemon on demand
Date: Fri, 05 Nov 2021 11:38:40 +0100
Message-ID: <uczneyjin@HIDDEN>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="=-=-="
X-Spam-Score: -5.0 (-----)
X-Debbugs-Envelope-To: 51327
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -6.0 (------)
--=-=-=
Content-Type: text/plain
If I understand this report correctly, the problem is just the spurious
warning about XDG_RUNTIME_DIR?
Instead of changing the functionality (which breaks other use cases, see
my message to emacs-devel), wouldn't it make more sense to just suppress
the warning if the variable is set? As in attached patch?
--=-=-=
Content-Type: text/plain
Content-Disposition: attachment;
filename=0001-Suppress-a-spurious-warning-in-emacsclient.patch
From 8b13b4ce6b5c5998ea8dc6db0c1021f2beba41aa Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ulrich=20M=C3=BCller?= <ulm@HIDDEN>
Date: Fri, 5 Nov 2021 11:30:28 +0100
Subject: [PATCH] Suppress a spurious warning in emacsclient
* lib-src/emacsclient.c (set_local_socket): Suppress warning about
unset XDG_RUNTIME_DIR if the variable is actually set.
(Bug#51327)
---
lib-src/emacsclient.c | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/lib-src/emacsclient.c b/lib-src/emacsclient.c
index 0e800dd7e8..d812ae6bc8 100644
--- a/lib-src/emacsclient.c
+++ b/lib-src/emacsclient.c
@@ -1447,6 +1447,7 @@ set_local_socket (char const *server_name)
int tmpdirlen = -1;
int socknamelen = -1;
uid_t uid = geteuid ();
+ char const *xdg_runtime_dir = NULL;
bool tmpdir_used = false;
int s = cloexec_socket (AF_UNIX, SOCK_STREAM, 0);
if (s < 0)
@@ -1468,7 +1469,7 @@ set_local_socket (char const *server_name)
{
/* socket_name is a file name component. */
sock_status = ENOENT;
- char const *xdg_runtime_dir = egetenv ("XDG_RUNTIME_DIR");
+ xdg_runtime_dir = egetenv ("XDG_RUNTIME_DIR");
if (xdg_runtime_dir)
{
socknamelen = snprintf (sockname, socknamesize, "%s/emacs/%s",
@@ -1559,7 +1560,8 @@ set_local_socket (char const *server_name)
int sockdirnamelen = snprintf (sockdirname, sizeof sockdirname,
"/run/user/%"PRIuMAX, id);
if (0 <= sockdirnamelen && sockdirnamelen < sizeof sockdirname
- && faccessat (AT_FDCWD, sockdirname, X_OK, AT_EACCESS) == 0)
+ && faccessat (AT_FDCWD, sockdirname, X_OK, AT_EACCESS) == 0
+ && !xdg_runtime_dir)
message
(true,
("%s: Should XDG_RUNTIME_DIR='%s' be in the environment?\n"
--
2.33.1
--=-=-=--
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 30 Oct 2021 22:33:22 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Sat Oct 30 18:33:22 2021 Received: from localhost ([127.0.0.1]:58582 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mgwug-0004NK-CV for submit <at> debbugs.gnu.org; Sat, 30 Oct 2021 18:33:22 -0400 Received: from zimbra.cs.ucla.edu ([131.179.128.68]:36470) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <eggert@HIDDEN>) id 1mgwud-0004N5-JO for 51327 <at> debbugs.gnu.org; Sat, 30 Oct 2021 18:33:20 -0400 Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id 4918A1600EB; Sat, 30 Oct 2021 15:33:13 -0700 (PDT) Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id jjdj3vYFbjCM; Sat, 30 Oct 2021 15:33:12 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by zimbra.cs.ucla.edu (Postfix) with ESMTP id A1B8F1600FC; Sat, 30 Oct 2021 15:33:12 -0700 (PDT) X-Virus-Scanned: amavisd-new at zimbra.cs.ucla.edu Received: from zimbra.cs.ucla.edu ([127.0.0.1]) by localhost (zimbra.cs.ucla.edu [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id Oqpsl-BP-XtM; Sat, 30 Oct 2021 15:33:12 -0700 (PDT) Received: from [192.168.1.9] (cpe-172-91-119-151.socal.res.rr.com [172.91.119.151]) by zimbra.cs.ucla.edu (Postfix) with ESMTPSA id 6763B1600EB; Sat, 30 Oct 2021 15:33:12 -0700 (PDT) Message-ID: <b6140cd0-b692-0be9-70c2-64e751381ae6@HIDDEN> Date: Sat, 30 Oct 2021 15:33:11 -0700 MIME-Version: 1.0 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.1.2 Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand Content-Language: en-US To: Jim Porter <jporterbugs@HIDDEN> References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> From: Paul Eggert <eggert@HIDDEN> Organization: UCLA Computer Science Department In-Reply-To: <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Score: -2.4 (--) X-Debbugs-Envelope-To: 51327 Cc: 51327 <at> debbugs.gnu.org X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -3.4 (---) Thanks, this patch looks good to me. You're right that the current approach is insecure, and your patch should make it somewhat less insecure.
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Received: (at 51327) by debbugs.gnu.org; 30 Oct 2021 19:37:13 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Sat Oct 30 15:37:12 2021 Received: from localhost ([127.0.0.1]:58485 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mguAC-0008OU-JA for submit <at> debbugs.gnu.org; Sat, 30 Oct 2021 15:37:12 -0400 Received: from mail-pj1-f43.google.com ([209.85.216.43]:42703) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <jporterbugs@HIDDEN>) id 1mguAA-0008OI-Pd for 51327 <at> debbugs.gnu.org; Sat, 30 Oct 2021 15:37:11 -0400 Received: by mail-pj1-f43.google.com with SMTP id nn3-20020a17090b38c300b001a03bb6c4ebso9745835pjb.1 for <51327 <at> debbugs.gnu.org>; Sat, 30 Oct 2021 12:37:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=subject:from:to:cc:references:message-id:date:mime-version :in-reply-to:content-language; bh=eokKXPErDDuO3HWssqTTmpUCjEMOQ0t7scrKT861+FM=; b=MKFM5CpMfMzjNU9Rk49uX0Q6htO1L0/WD6b3rRYwq/ddS1v8spZmvcUGXdA5G5o/iZ BjLAoyMPEKqHJJAyIa2A6v9w3egfXuL/MUUFgtZBYKvFXdfYGX4FQt+6Ne6wvGbTpOZs ieNeIBvq72/S4lQjWB5kjVP74QLKOriTGa4VWC0yrhP3MIIXa/gVY/1vaMTfV6flU+LZ OgycYyVGSiu1PaqGeQBA55muV9xd2k5Km1VeetGupbjoFLCJqIhWm7OGOib2hxvvDwsj YcHvck/7XDGrKbM7NXNog25Ksi5V/o4iBZIz5tLyylAkpoPXtr9U+BkAZfAUWczimPo2 G+6A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:subject:from:to:cc:references:message-id:date :mime-version:in-reply-to:content-language; bh=eokKXPErDDuO3HWssqTTmpUCjEMOQ0t7scrKT861+FM=; b=zjW/oHg85xGFj2hDCqV3Wx3OVvNt7EMmZWYWc/SV951MoIOPPIe9VonBU1LewVbo0V clnr9v5QwdYtTdDQvOvmeZRpfwHoFcb5AWMwdgNAd9WK4b19Ax/fmuGL7RJt4xAb0t53 p5HSntoBMbOE5IgAvFUIhL6UbuUI/dAMW3JTfbzBQlxe3q4PWTag395s2sLTc8mzbACZ etbuGI3L4I+1A4OUHqZuEkR1auQyGqKIX3/nt4W6NCUVQlXEYmIGS3Qv9H0e1EcsikZL AgVU8sOS7uf4b6HUPci/8urSpkvy9KVuuGBN90F1ljG04lTKfBqc7xeHWRaOsaZR0OXN QpUQ== X-Gm-Message-State: AOAM533/Bc9CREgNUDSfv3IkpumPVUZ21qO+bXIi6WB8bCNNEqfqCbRp CRTOwD1G/Y66d3hEFJAEETI= X-Google-Smtp-Source: ABdhPJyI/e8AoTgDvlm292LxfLerIobqInZXnNEjgRxp3IKmNOOofiPqOAh0sZR4ovGdup3gUKJdeg== X-Received: by 2002:a17:902:b94a:b0:141:8454:d665 with SMTP id h10-20020a170902b94a00b001418454d665mr16548780pls.88.1635622624834; Sat, 30 Oct 2021 12:37:04 -0700 (PDT) Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id m4sm4176913pjs.1.2021.10.30.12.37.02 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Sat, 30 Oct 2021 12:37:03 -0700 (PDT) Subject: Re: bug#51327: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand From: Jim Porter <jporterbugs@HIDDEN> To: 51327 <at> debbugs.gnu.org References: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> Message-ID: <53706fa9-1458-fb5c-bd31-15ab555b59e9@HIDDEN> Date: Sat, 30 Oct 2021 12:37:02 -0700 MIME-Version: 1.0 In-Reply-To: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> Content-Type: multipart/mixed; boundary="------------D0A415F2BE8E27FC4474B716" Content-Language: en-US X-Spam-Score: -0.0 (/) X-Debbugs-Envelope-To: 51327 Cc: eggert@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) This is a multi-part message in MIME format. --------------D0A415F2BE8E27FC4474B716 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit On 10/21/2021 9:58 PM, Jim Porter wrote: > Normally, when running `emacsclient --alternate-editor=""' with no Emacs > server running, it will run `emacs --daemon' and then connect to it. In > Emacs 28, it will also issue the following warning: > > Should XDG_RUNTIME_DIR='/run/user/1000' be in the environment? > (Be careful: XDG_RUNTIME_DIR is security-related.) > > However, XDG_RUNTIME_DIR *is* set in my environment, so it shouldn't be > warning me about it. > > I believe this is due to the fix for bug#33847 (see commit > 007744dd0404d6febca88b00c22981cc630fb8c0). That bug asked for > emacsclient to look in both XDG_RUNTIME_DIR and TMPDIR to find the > server socket, in order to accommodate the case where `emacs --daemon' > is started when XDG_RUNTIME_DIR is unset, but *is* set when running > `emacsclient'. Attached is a patch that should fix this by skipping the TMPDIR check whenever a) we have an alternate editor and b) XDG_RUNTIME_DIR is set. This has the benefit of supporting the use case in bug#33847 as well as users who start the Emacs daemon on-demand. The only flaw I can think of with this method is that it would still be technically possible to perform a symlink attack against a user who runs `emacs --daemon' explicitly with XDG_RUNTIME_DIR set, and then runs `emacsclient' without an alternate editor set. However, this would require the attacker to be able to kill the `emacs --daemon' process somehow so that emacsclient falls back to looking in TMPDIR. I'm not sure that's a realistic attack vector, but I thought I'd mention it for completeness. --------------D0A415F2BE8E27FC4474B716 Content-Type: text/plain; charset=UTF-8; name="0001-Prevent-symlink-attacks-in-emacsclient-when-an-alter.patch" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename*0="0001-Prevent-symlink-attacks-in-emacsclient-when-an-alter.pa"; filename*1="tch" RnJvbSA2YjhjN2E5ODgxYjc5MjU0YzYxODM1NmE0ZGZhMjU3ODEyYTZmZTVjIE1vbiBTZXAg MTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKaW0gUG9ydGVyIDxqcG9ydGVyYnVnc0BnbWFpbC5j b20+CkRhdGU6IFNhdCwgMzAgT2N0IDIwMjEgMTI6MjI6MDIgLTA3MDAKU3ViamVjdDogW1BB VENIXSBQcmV2ZW50IHN5bWxpbmsgYXR0YWNrcyBpbiBlbWFjc2NsaWVudCB3aGVuIGFuIGFs dGVybmF0ZQogZWRpdG9yIGlzIHNldAoKKiBsaWItc3JjL2VtYWNzY2xpZW50LmMgKHNldF9s b2NhbF9zb2NrZXQpOiBEb24ndCBsb29rIGluIFRNUERJUiBmb3IgYQpzb2NrZXQgaWYgd2Ug aGF2ZSBhbiBhbHRlcm5hdGUgZWRpdG9yIGFuZCBYREdfUlVOVElNRV9ESVIgaXMgc2V0CihC dWcjNTEzMjcpLgotLS0KIGxpYi1zcmMvZW1hY3NjbGllbnQuYyB8IDUgKysrKy0KIDEgZmls ZSBjaGFuZ2VkLCA0IGluc2VydGlvbnMoKyksIDEgZGVsZXRpb24oLSkKCmRpZmYgLS1naXQg YS9saWItc3JjL2VtYWNzY2xpZW50LmMgYi9saWItc3JjL2VtYWNzY2xpZW50LmMKaW5kZXgg Y2ZmM2NlYzJhNy4uMTMwNTIyNjA1NiAxMDA2NDQKLS0tIGEvbGliLXNyYy9lbWFjc2NsaWVu dC5jCisrKyBiL2xpYi1zcmMvZW1hY3NjbGllbnQuYwpAQCAtMTQ2Niw3ICsxNDY2LDEwIEBA IHNldF9sb2NhbF9zb2NrZXQgKGNoYXIgY29uc3QgKnNlcnZlcl9uYW1lKQogCQkJID8gY29u bmVjdF9zb2NrZXQgKEFUX0ZEQ1dELCBzb2NrbmFtZSwgcywgMCkKIAkJCSA6IEVOQU1FVE9P TE9ORyk7CiAJfQotICAgICAgaWYgKHNvY2tfc3RhdHVzID09IEVOT0VOVCkKKyAgICAgIC8q IEZhbGwgYmFjayB0byBjaGVja2luZyBmb3IgYSBzb2NrZXQgaW4gVE1QRElSIHVubGVzcyB3 ZSBoYXZlCisJIGFuIGFsdGVybmF0ZSBlZGl0b3IgYW5kIFhER19SVU5USU1FX0RJUiBpcyBz ZXQuICBJbiB0aGF0CisJIGNhc2UsIHdlIHdhbnQgdG8gYmFpbCBvdXQgYW5kIHNwYXduIHRo ZSBhbHRlcm5hdGUgZWRpdG9yLiAqLworICAgICAgaWYgKCEoeGRnX3J1bnRpbWVfZGlyICYm IGFsdGVybmF0ZV9lZGl0b3IpICYmIHNvY2tfc3RhdHVzID09IEVOT0VOVCkKIAl7CiAJICBj aGFyIGNvbnN0ICp0bXBkaXIgPSBlZ2V0ZW52ICgiVE1QRElSIik7CiAJICBpZiAodG1wZGly KQotLSAKMi4yNS4xCgo= --------------D0A415F2BE8E27FC4474B716--
bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.Stefan Kangas <stefan@HIDDEN>
to control <at> debbugs.gnu.org.
Full text available.Received: (at submit) by debbugs.gnu.org; 22 Oct 2021 04:58:09 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Fri Oct 22 00:58:09 2021 Received: from localhost ([127.0.0.1]:59069 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1mdmd7-00010z-GJ for submit <at> debbugs.gnu.org; Fri, 22 Oct 2021 00:58:09 -0400 Received: from lists.gnu.org ([209.51.188.17]:49980) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <jporterbugs@HIDDEN>) id 1mdmd5-00010q-T8 for submit <at> debbugs.gnu.org; Fri, 22 Oct 2021 00:58:08 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:37938) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <jporterbugs@HIDDEN>) id 1mdmd5-00021Y-IV for bug-gnu-emacs@HIDDEN; Fri, 22 Oct 2021 00:58:07 -0400 Received: from mail-pg1-x533.google.com ([2607:f8b0:4864:20::533]:36439) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from <jporterbugs@HIDDEN>) id 1mdmd1-0006HU-Qw for bug-gnu-emacs@HIDDEN; Fri, 22 Oct 2021 00:58:07 -0400 Received: by mail-pg1-x533.google.com with SMTP id 75so2277304pga.3 for <bug-gnu-emacs@HIDDEN>; Thu, 21 Oct 2021 21:58:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=from:subject:to:cc:message-id:date:mime-version:content-language :content-transfer-encoding; bh=hvJGcbhYZLpEGRxE6NByVUbEDo7XK61DwYuIxjCJy5M=; b=QXHXVljBdGS0Aj9c1zINGDhLCuR9wmHyPIcxnvPabRDMJ+NlhK5lSQc+X2NcouQhvo hGKV9UDEWut4FaOYkXaL12uf1ZjC1Gjt+jEEcmHH1qZRlkeLUeGG6IFr6JaWQe3Lxryz +X633v+61QatKbSc0FebIfKPXVg0wjIHsA5Vphx8gfbPBMC7BParf6HsE20esVg2HBoQ p1u4xBQBinGh0SNHdHFtI3JwpRCHDM1EMMOBRYh2XsMYJlZ65CeUkHjeq2TKONe/Gmgi JpKtDR6h8B9YmV1DoUHgouW2AJudGw9EYUdDMzuRRQTGC/DQqfgz/aKuMqzVDdH0Irmh rhgA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:subject:to:cc:message-id:date:mime-version :content-language:content-transfer-encoding; bh=hvJGcbhYZLpEGRxE6NByVUbEDo7XK61DwYuIxjCJy5M=; b=hPLapf1XK9UKlFrJA/miIrzLCcPdkhBe9v0WgVj05heI/nXI+3fs0UzdcSFW46OYiP H4SA7mXu3wqvR3NBYPTWXYZDfy5pTpkdvQef/qHoxX6/TEuQvdqpDuRlH7vCiG8OZuOz q0czJt08C1b/+aUBQaSTkfmabzea7jmCuryzgX8ZNzOybr/BCgDG28ofbQ2HbXrqWXuo t5Y/Mxk5qyz1DWyTa19YG2aofkwv0LB/b6hxVlCZ3JMEolxRp0YA8nCi1q20ddyUIm3B RytlRDguMCkfwU91giVMT75VRlVwlJ/PHkHy6nF7XDUB5TWWH1ivaqSeMES4d4yx52C+ l7JQ== X-Gm-Message-State: AOAM533rT7L8rF6RCKxzxpZqA3otCrDQkbzAOW7b0Gtz78+mikWltOTH drQSUMDqrVLbvbDjDvFI7QE= X-Google-Smtp-Source: ABdhPJwFHPRO7Ldwvsfx6sjBwSXCz3ZDn+X01wCmKHMfa3uUqRmdaUa12cQz6uWuPyd9iuCsFEOVsw== X-Received: by 2002:a63:b218:: with SMTP id x24mr7630645pge.29.1634878681443; Thu, 21 Oct 2021 21:58:01 -0700 (PDT) Received: from [192.168.1.2] (cpe-76-168-148-233.socal.res.rr.com. [76.168.148.233]) by smtp.googlemail.com with ESMTPSA id u11sm8165835pfg.2.2021.10.21.21.58.00 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 21 Oct 2021 21:58:00 -0700 (PDT) X-Mozilla-News-Host: news://news.gmane.org:119 From: Jim Porter <jporterbugs@HIDDEN> Subject: 28.0.60; emacsclient warns about XDG_RUNTIME_DIR when starting daemon on-demand To: bug-gnu-emacs@HIDDEN Message-ID: <ba5ee273-9d0f-7baf-ef2e-d0b005f29ed0@HIDDEN> Date: Thu, 21 Oct 2021 21:58:00 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit Received-SPF: pass client-ip=2607:f8b0:4864:20::533; envelope-from=jporterbugs@HIDDEN; helo=mail-pg1-x533.google.com X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-Spam-Score: -1.3 (-) X-Debbugs-Envelope-To: submit Cc: eggert@HIDDEN X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -2.3 (--) Normally, when running `emacsclient --alternate-editor=""' with no Emacs server running, it will run `emacs --daemon' and then connect to it. In Emacs 28, it will also issue the following warning: Should XDG_RUNTIME_DIR='/run/user/1000' be in the environment? (Be careful: XDG_RUNTIME_DIR is security-related.) However, XDG_RUNTIME_DIR *is* set in my environment, so it shouldn't be warning me about it. I believe this is due to the fix for bug#33847 (see commit 007744dd0404d6febca88b00c22981cc630fb8c0). That bug asked for emacsclient to look in both XDG_RUNTIME_DIR and TMPDIR to find the server socket, in order to accommodate the case where `emacs --daemon' is started when XDG_RUNTIME_DIR is unset, but *is* set when running `emacsclient'. That works for the issue described in bug#33847, but for users with XDG_RUNTIME_DIR set who want `emacs --daemon' to start on demand, the change means that emacsclient will look in TMPDIR to find a server socket, record that attempt, and then warn about it before finally going ahead and starting `emacs --daemon'. I'm not an expert on XDG_RUNTIME_DIR, but my understanding is that this was added to improve security over using TMPDIR. However, as far as I can tell, the fix in bug#33847 partially undoes the security improvement for users who want to start `emacs --daemon' on demand. I'm not sure what the fix here is, at least not while ensuring that both this case and the case in bug#33847 "just work" without setting some option... (The original bug#33847 is rather long, and I see that similar concerns were raised there, so I hope I've summarized this accurately and I'm not just misunderstanding what this code is doing.)
Jim Porter <jporterbugs@HIDDEN>:bug-gnu-emacs@HIDDEN.
Full text available.bug-gnu-emacs@HIDDEN:bug#51327; Package emacs.
Full text available.
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997 nCipher Corporation Ltd,
1994-97 Ian Jackson.