Trust file-content-metadata path on CVMFS when cloning (!4871) · Merge requests · LHCb / LHCb

To mitigate the vulnerability CVE-2024-32004, when cloning from a local repository, the directory have to be owned by the user doing the cloning or explicitly trusted. This change temporarily trusts the file-content-metadata repository in CVMFS before cloning it, if needed.

See: https://lore.kernel.org/git/20240529102307.GF1098944@coredump.intra.peff.net/T/#t

Replaces !4585 (closed)

Edited Jan 13, 2025 by Chris Burr

Trust file-content-metadata path on CVMFS when cloning

Merge request reports