Fix a security violation when restoring from a remote repository.

(Patch from Charles Duffy.)


git-svn-id: http://svn.savannah.nongnu.org/svn/rdiff-backup@752 2b77aa54-bcbc-44c9-a7ec-4f6cf2b41109

branches/r1-0/rdiff-backup/CHANGELOG

@@ -3,6 +3,8 @@ New in v1.0.5 (????/??/??)
 
 Fix a traceback due to an off-by-1 error in "--remove-older-than nB".
 
+Fix a security violation when restoring from a remote repository.
+(Patch from Charles Duffy.)
 
 New in v1.0.4 (2006/01/15)
 --------------------------

branches/r1-0/rdiff-backup/rdiff_backup/Security.py

@@ -139,6 +139,7 @@ def set_allowed_requests(sec_level):
 	if sec_level == "read-only" or sec_level == "all":
 		l.extend(["fs_abilities.get_fsabilities_readonly",
 				  "fs_abilities.get_fsabilities_restoresource",
+				  "restore.MirrorStruct.get_increment_times",
 				  "restore.MirrorStruct.set_mirror_and_rest_times",
 				  "restore.MirrorStruct.set_mirror_select",
 				  "restore.MirrorStruct.initialize_rf_cache",

trunk/rdiff-backup/CHANGELOG

@@ -8,7 +8,10 @@ were used.  Bug reported by Toni Price.
 A few minor changes to help rdiff-backup back up to an SMB/CIFS share.
 Thanks to Cengiz Gunay for testing.
 
-Fix an off-by-1 error in the "--remove-older-than nB" time specification.
+Fix a traceback due to an off-by-1 error in "--remove-older-than nB".
+
+Fix a security violation when restoring from a remote repository.
+(Patch from Charles Duffy.)
 
 
 New in v1.1.5 (2006/01/01)

trunk/rdiff-backup/rdiff_backup/Security.py

@@ -143,6 +143,7 @@ def set_allowed_requests(sec_level):
 				  "user_group.gid2gname"])
 	if sec_level == "read-only" or sec_level == "all":
 		l.extend(["fs_abilities.get_readonly_fsa",
+				  "restore.MirrorStruct.get_increment_times",
 				  "restore.MirrorStruct.set_mirror_and_rest_times",
 				  "restore.MirrorStruct.set_mirror_select",
 				  "restore.MirrorStruct.initialize_rf_cache",