Qubes/core-admin
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

volume.Import: write data with sufficient privs

Browse Source 
Not sure how this ever worked before, if it did.

The device nodes pointed to by /dev/qubes_dom0/* are owned by
root:disk with perms 660, qubes user is not in disk group,
and service is invoked as qubes user, not root.
This commit is contained in:
Jean-Philippe Ouellet 2017-11-21 03:01:03 -05:00
parent ac8980a903
commit 21c3c2507e
No known key found for this signature in database
GPG Key ID: 4747332C27533622
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
qubes-rpc/admin.vm.volume.Import
View File

@ -43,7 +43,7 @@ size=$(tail -c +3 "$tmpfile"|cut -d ' ' -f 1)
path=$(tail -c +3 "$tmpfile"|cut -d ' ' -f 2)
# now process stdin into this path
if dd bs=4k of="$path" count="$size" iflag=count_bytes,fullblock \
if sudo dd bs=4k of="$path" count="$size" iflag=count_bytes,fullblock \
conv=sparse,notrunc,nocreat,fdatasync status=none; then
status="ok"
else