/usr owned by group portage not root on the LiveISO

GoogleCodeExporter commented 9 years ago

Please make /usr owned by group root not portage.

Reason:
Virtualbox needs group 0 on /usr!
chown root:root /usr
and I can start VMs, might be hardened related.

Details:
When starting a VM in Virtualbox, this error pops up:
    Failed to load VMMR0.r0 (VERR_SUPLIB_WRITE_NON_SYS_GROUP).

This is in the log:
    pdmR3LoadR0U: pszName="VMMR0.r0" rc=VERR_SUPLIB_WRITE_NON_SYS_GROUP szErr="The group is not a system group and it has write access to '/usr'"

This comes from SUPR3HardenedVerify.cpp in the code. Group 0 is explicitly 
required, no other group allowed afaik.

Original issue reported on code.google.com by Wuod...@gmail.com on 2 Dec 2014 at 5:33

GoogleCodeExporter commented 9 years ago

Original comment by blshkv on 5 Dec 2014 at 6:01

GoogleCodeExporter commented 9 years ago

Nu specs # svn diff make_modules.sh 
Index: make_modules.sh
===================================================================
--- make_modules.sh     (revision 6225)
+++ make_modules.sh     (working copy)
@@ -43,7 +43,7 @@
 mkdir -p /catalyst/tmp/portage/portage/metadata
 mkdir -p /catalyst/tmp/portage/portage/packages
 rsync -aEXu --delete /catalyst/tmp/portage/portage /dev/shm/portage/rootfs/usr/
-chown portage.portage -R /dev/shm/portage/rootfs/
+chown portage.portage -R /dev/shm/portage/rootfs/usr/portage
 mksquashfs /dev/shm/portage/rootfs/ /usr/src/pentoo/livecd/trunk/isoroot/modules/portage-`awk '/snapshot:/ {print $3}' build_spec.sh`.lzm -comp xz -Xbcj x86 -b 1048576 -no-recovery -noappend -Xdict-size 1048576
 rm -rf /catalyst/tmp/portage/portage/distfiles
 rm -rf /catalyst/tmp/portage/portage/metadata

Fixed in svn, accidently committed all my pending changes to livecd stuff, but, 
enjoy.  Thanks for the report.

Original comment by sidhayn on 10 Dec 2014 at 2:47

Changed state: Fixed

bobwire / pentoo

/usr owned by group portage not root on the LiveISO #320