External/libvirt
1
0
Fork 0
mirror of https://gitlab.com/libvirt/libvirt.git synced 2025-01-08 14:05:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
32f577ab10
libvirt/src/logging
History
Daniel P. Berrangé e37bd65f99 logging: restrict sockets to mode 0600 
The virtlogd daemon's only intended client is the libvirtd daemon. As
such it should never allow clients from other user accounts to connect.
The code already enforces this and drops clients from other UIDs, but
we can get earlier (and thus stronger) protection against DoS by setting
the socket permissions to 0600

Fixes CVE-2019-10132

Reviewed-by: Ján Tomko <jtomko@redhat.com>
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
2019-05-21 13:05:00 +01:00
..
log_daemon_config.c Revert "Include unistd.h directly by files using it" 2019-04-10 12:26:32 +02:00
log_daemon_config.h Enforce a standard header file guard symbol name 2018-12-14 10:47:13 +00:00
log_daemon_dispatch.c Remove all Author(s): lines from source file headers 2018-12-13 16:08:38 +00:00
log_daemon_dispatch.h Enforce a standard header file guard symbol name 2018-12-14 10:47:13 +00:00
log_daemon.c Always put _LAST enums on second line of VIR_ENUM_IMPL 2019-04-11 12:47:23 -04:00
log_daemon.h Enforce a standard header file guard symbol name 2018-12-14 10:47:13 +00:00
log_handler.c Require a semicolon for VIR_ONCE_GLOBAL_INIT calls 2019-02-03 17:46:29 -05:00
log_handler.h Enforce a standard header file guard symbol name 2018-12-14 10:47:13 +00:00
log_manager.c Fix names for abs_top_{src,build}dir variables 2019-03-14 10:05:28 +01:00
log_manager.h Enforce a standard header file guard symbol name 2018-12-14 10:47:13 +00:00
log_protocol.x log: daemon: Add remote protocol handling for the log appending API 2016-06-07 18:10:29 +02:00
Makefile.inc.am src: don't statically link code that's already in libvirt.so 2019-05-17 14:34:45 +01:00
test_virtlogd.aug.in log: update docs for daemons to improve user understanding 2018-05-11 17:11:46 +01:00
virtlogd-admin.socket.in logging: restrict sockets to mode 0600 2019-05-21 13:05:00 +01:00
virtlogd.aug rpc: remove remains of obsolete log_buffer_size config parameter 2018-03-23 10:44:35 +00:00
virtlogd.conf log: update docs for daemons to improve user understanding 2018-05-11 17:11:46 +01:00
virtlogd.pod Use https:// links for most sites 2017-10-16 10:22:34 +01:00
virtlogd.service.in logd: add support for admin protocol in virtlogd 2018-01-31 15:17:47 +00:00
virtlogd.socket.in logging: restrict sockets to mode 0600 2019-05-21 13:05:00 +01:00
virtlogd.sysconf