Detected unsafe path transition when creating chroot
Hello, So recently I wrongly diagnosed a package as being broken based on this issue until I realised it was my chroot. Due to the doas issue I have with dev tools, I use a manual chroot using the following steps, I will use (# to denote root and $ to denote unpriviliged) 1. Make the directory $ mkdir chroot I made this in the home directory of my user, polarian 2. Install the base system # pacstrap chroot base base-devel This will install the base system and also the base-devel tools used for building packages. but when doing this recently I have been getting the following issues: Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib/dbus. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/dbus. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/lock. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/sudo. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd/netif. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd/netif. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd/netif. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib/systemd. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/cache. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib/tpm2-tss/system. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/tpm2-tss. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log/journal. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log/journal. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log/journal. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log/journal/remote. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/snd/seq. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/snd/timer. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/loop-control. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/net/tun. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/fuse. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/kvm. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/vhost-net. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/vhost-vsock. During the pacstrap install... this happens when installing built packages inside my chroot, which resulted in me going mental yesterday and breaking a package... badly... (I should have taken a break). Anyways does any have any ideas on how to fix this? Thank you, Polarian -- Polarian GPG signature: 0770E5312238C760 Website: https://polarian.dev JID/XMPP: polarian@polarian.dev
Hi Polarian, I would assume that this is caused by the fact that you created your chroot using your user account. A quick chown -R root:root chroot should fix it. Best, Sefa https://scrumplex.net -------- Original Message -------- From: Polarian <polarian@polarian.dev> Sent: 4 February 2023 23:45:09 CET To: arch-general@lists.archlinux.org Subject: Detected unsafe path transition when creating chroot Hello, So recently I wrongly diagnosed a package as being broken based on this issue until I realised it was my chroot. Due to the doas issue I have with dev tools, I use a manual chroot using the following steps, I will use (# to denote root and $ to denote unpriviliged) 1. Make the directory $ mkdir chroot I made this in the home directory of my user, polarian 2. Install the base system # pacstrap chroot base base-devel This will install the base system and also the base-devel tools used for building packages. but when doing this recently I have been getting the following issues: Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib/dbus. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/dbus. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /etc (owned by root) during canonicalization of /etc. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/lock. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/sudo. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd/netif. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd/netif. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd/netif. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/systemd. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib/systemd. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/cache. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/lib/tpm2-tss/system. Detected unsafe path transition / (owned by 1000) → /run (owned by root) during canonicalization of /run/tpm2-tss. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log/journal. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log/journal. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log/journal. Detected unsafe path transition / (owned by 1000) → /var (owned by root) during canonicalization of /var/log/journal/remote. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/snd/seq. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/snd/timer. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/loop-control. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/net/tun. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/fuse. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/kvm. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/vhost-net. Detected unsafe path transition / (owned by 1000) → /dev (owned by root) during canonicalization of /dev/vhost-vsock. During the pacstrap install... this happens when installing built packages inside my chroot, which resulted in me going mental yesterday and breaking a package... badly... (I should have taken a break). Anyways does any have any ideas on how to fix this? Thank you, Polarian
Hello, Yes this fixes it, I realised that before I was running doas mkdir chroot, and when I stopped (after a few days I came back to making a new chroot), I did not and then ran into this issue. Sorry for the stupid thread, but this has been highly helpful :) Thank you so much! -- Polarian GPG signature: 0770E5312238C760 Website: https://polarian.dev JID/XMPP: polarian@polarian.dev
participants (2)
-
Polarian
-
Sefa Eyeoglu