Remove world-writability from per-user directories

'nix-daemon' now creates subdirectories for users when they first connect. Fixes #509 (CVE-2019-17365). Should also fix #3127. (cherry picked from commit 5a303093dcae1e5ce9212616ef18f2ca51020b0d)
author: Eelco Dolstra <edolstra@gmail.com> 2019-10-09T16·01+0200
committer: Eelco Dolstra <edolstra@gmail.com> 2019-10-09T21·57+0200
commit: 65953789bcd73f098486b0a385b4e661c0ccda19 (patch)
tree: 92a0208f5a4455b89f9549b802dc0f063e64711f /src/libstore/local-store.hh
parent: 910b0fcc118cce3ade09f252da43fbe2436080e5 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/src/libstore/local-store.hh b/src/libstore/local-store.hh
index 3ae34c4035c4..379a06af87de 100644
--- a/src/libstore/local-store.hh
+++ b/src/libstore/local-store.hh
@@ -293,6 +293,8 @@ private:
 
     Path getRealStoreDir() override { return realStoreDir; }
 
+    void createUser(const std::string & userName, uid_t userId) override;
+
     friend class DerivationGoal;
     friend class SubstitutionGoal;
 };
author	Eelco Dolstra <edolstra@gmail.com>	2019-10-09T16·01+0200
committer	Eelco Dolstra <edolstra@gmail.com>	2019-10-09T21·57+0200
commit	65953789bcd73f098486b0a385b4e661c0ccda19 (patch)
tree	92a0208f5a4455b89f9549b802dc0f063e64711f /src/libstore/local-store.hh
parent	910b0fcc118cce3ade09f252da43fbe2436080e5 (diff)