Open sgn opened 4 years ago
ericonr
commented
4 years ago How else would we make a /tmp dir appear in the system? chrooting and running xbps-reconfigure even for base-files will still require it. We could:
xbps-reconfigure create /tmp if it can't be found (bad)/tmp directory in base-files, somehow (good)
github-actions[bot]
commented
2 years ago Issues become stale 90 days after last activity and are closed 14 days after that. If this issue is still relevant bump it or assign it.
github-actions[bot]
commented
2 years ago Issues become stale 90 days after last activity and are closed 14 days after that. If this issue is still relevant bump it or assign it.
github-actions[bot]
commented
2 years ago Issues become stale 90 days after last activity and are closed 14 days after that. If this issue is still relevant bump it or assign it.
github-actions[bot]
commented
1 year ago Issues become stale 90 days after last activity and are closed 14 days after that. If this issue is still relevant bump it or assign it.
In light of #23239,
I look into some
xbps-triggers, and I think those triggers aren't safe to be run from outside of chroot:execve(2)exit with 126,/bin/shwill search next commands in hosts, and use it instead of chroot's executable.system-accounts: check if the user https://github.com/void-linux/void-packages/blob/d148c444e4ff9387da8ada8adf6c3af34e1c4729/srcpkgs/xbps-triggers/files/system-accounts#L112 or group https://github.com/void-linux/void-packages/blob/d148c444e4ff9387da8ada8adf6c3af34e1c4729/srcpkgs/xbps-triggers/files/system-accounts#L29 exists in host (no options to mitigate?), then create user https://github.com/void-linux/void-packages/blob/d148c444e4ff9387da8ada8adf6c3af34e1c4729/srcpkgs/xbps-triggers/files/system-accounts#L113 and group https://github.com/void-linux/void-packages/blob/d148c444e4ff9387da8ada8adf6c3af34e1c4729/srcpkgs/xbps-triggers/files/system-accounts#L31 in host (can be mitigated bygroupadd -R -Panduseradd -R -P, don't know if they're portable). This one is very problematic becausebase-filesuses this triggersThought, @void-linux/pkg-committers @ericonr