qmsk.rsync-ssh-command lvm source trailing slash incompatibility with rsync CVE-2022-29154 fixes #8
Comments
|
Symptoms similar to RsyncProject/rsync#376, but cause is entirely different. Interestingly it seems like |
SpComb
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Using
USER@HOST:lvm:vgFoo/lvBaras an rsync source fails with an rsync protocol incompatibility error if the rsync client version includes the fixes for CVE-2022-29154:However, the command actually executed by the rsync wrapper looks like this:
Note the additional trailing
/on the rsync server source, which was NOT present in the originalUSER@HOST:lvm:vgFoo/lvBarrsync source. This triggers the protocol error, and usingUSER@HOST:lvm:vgFoo/lvBar/(with trailing/) works as an rsync source.The extra trailing
/is added by thepathlogic in the rsync wrapper'sLVMSource- due to theqmsk.rsync-ssh-commandwrapper's use of temporary mountpoints for the LVM snapshots, it doesn't make any sense to send the mountpoint directory as-is, only its contents:backup/qmsk/backup/rsync.py
Line 287 in 47e991a
backup/qmsk/backup/rsync.py
Line 315 in 47e991a
The mismatch between the client and server trailing slash worked just fine in earlier versions of rsync, but breaks the increased validation of file names required by the CVE-2022-29154 fix. This is not an rsync regression, but rather a qmsk-backup bug and resulting rsync incompatibility.
The rsync wrapper logic must be fixed to require the client to supply the trailing
/for any send from an LVM snapshot source, with a clear error message if this is missing. The rsync wrapper must never attempt to insert any additional trailing/, as this will fail with the fixed rsync validation.The text was updated successfully, but these errors were encountered: