[OE-core] dbus build host uid/gid leaking into target home directory
Paul Barker
paul at paulbarker.me.uk
Tue Oct 14 06:23:52 UTC 2014
On 13 October 2014 10:13, Paul Eggleton <paul.eggleton at linux.intel.com> wrote:
> On Sunday 12 October 2014 16:05:41 Peter A. Bigot wrote:
>> Pilot error. This ultimately turned out to be a side-effect of the way
>> I create my image media: I unpacking the rootfs tar file onto a mounted
>> sdcard outside the pseudo environment and forgot that tar records
>> user/group by name not uid/gid.
>
> I used to use this method previously, and I guess it can still work if you're
> not including certain packages in your image - but I wonder if we should note
> this potential pitfall somewhere in the documentation. I'm not entirely sure
> where such a note would go, though.
>
It probably does need noting somewhere - I've been doing exactly this
for the last year or so and never even thought that I might be risking
bad uid/gid values. It makes sense now I think about it but it never
crossed my mind.
Looking at 'man tar', there is a '--numeric-owner' option to always
use numbers for user/group names. It might just be that we need to
recommend using this option when untarring a rootfs onto a mounted
volume. This option is present in GNU tar, I'm not sure about other
implementations, and I haven't given it a proper test, but it looks
like the thing we want.
Cheers,
--
Paul Barker
Email: paul at paulbarker.me.uk
http://www.paulbarker.me.uk
More information about the Openembedded-core
mailing list