[Buildd-tools-devel] Bug#476332: Acknowledgement (schroot: Fails mysteriously when /etc/schroot/schroot.conf is a symlink)
Timothy G Abbott
tabbott at MIT.EDU
Wed Apr 16 19:03:04 UTC 2008
This seems to be caused by opening the configuration files with O_NOFOLLOW:
~/schroot-1.1.6$ grep -Rn O_NOFOLLOW .
./sbuild/sbuild-chroot-config.cc:441: int fd = open(file.c_str(), O_RDONLY|O_NOFOLLOW);
I don't see a reason why opening the configuration file with O_NOFOLLOW
improves the security of schroot, since the configuration comes from /etc
anyway.
-Tim Abbott
More information about the Buildd-tools-devel
mailing list