[Rpm-maint] [rpm-software-management/rpm] Adding an LMDB backend to RPM (#281)

Jeff Johnson notifications at github.com
Tue Jul 17 04:03:33 UTC 2018


There are lots of ways to perform a chmod(2) call to ensure non-root lock access.

The best solution is to move lock.mdb out of /var/lib/rpm (which is also the best solution for using locks with Berkeley DB when non-root). I deliberately avoided attempting that implementation because the discussion will surely take months, it's a bike shed sort of issue.

One could also create an easily auditable 10 line program that is setuid root (or setgid rpm if /var/lib/rpm were owned by group rpm with 0775 permissions) that was exec'd as a helper by rpm.
This too should be attempted with Berkeley DB, rather than the insanity of not using locks with non-root access to /var/lib/rpm.


-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/281#issuecomment-405452885
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20180716/555d88e7/attachment.html>


More information about the Rpm-maint mailing list