[arch-projects] [devtools] [PATCH] fix potential non-writable directories of builduser in /build

Levente Polyak anthraxx at archlinux.org
Wed Feb 22 12:16:03 UTC 2017


This removes the preservation of HOME being /build just for the pacman
sudo call. Former leads to unbuildable packages when an to be installed
dependency writes something into the HOME dir (f.e. .config). The
resulting directories won't be writable by the builduser as they are
owned by root:root and ultimately will fail to build anything that
requires so.
---
 makechrootpkg.in | 1 -
 1 file changed, 1 deletion(-)

diff --git a/makechrootpkg.in b/makechrootpkg.in
index 284d444..0336640 100644
--- a/makechrootpkg.in
+++ b/makechrootpkg.in
@@ -173,7 +173,6 @@ prepare_chroot() {
 	done
 
 	cat > "$copydir/etc/sudoers.d/builduser-pacman" <<EOF
-Defaults env_keep += "HOME"
 builduser ALL = NOPASSWD: /usr/bin/pacman
 EOF
 	chmod 440 "$copydir/etc/sudoers.d/builduser-pacman"
-- 
2.11.1


More information about the arch-projects mailing list