Bug#789868: pbuilder: pdebuild fails with sudo error
Mattia Rizzolo
mattia at mapreri.org
Fri Oct 2 19:49:44 UTC 2015
On Thu, Jun 25, 2015 at 02:07:42AM +0200, Vincent Lefevre wrote:
> I get the following error when running "pdebuild":
>
> sudo: sorry, you are not allowed to preserve the environment
>
> Note that I use sudo's default config.
>
> With "/bin/bash -x pdebuild", I can see a line starting with:
>
> sudo -E pbuilder --build --buildresult /var/cache/pbuilder/result/ [...]
>
> But it seems that for security reasons, the -E option no longer works.
> So, this would no longer be the right method.
discalimer: I don't even know whether I changed that bit of my sudo
config, but `sudo -E` does work fine for me.
The discussion that added -E to the default sudo is at #361362.
My grepping through the sudo config doesn't reveal any interesting
change env-wise, but I fear removing the -E would break quite some
things:
On Thu, 13 Dec 2007 20:35:36 +0100, dAniel hAhler wrote on that bug:
> I'm used to calling "DIST=feisty pdebuild" to create a package in a
> feisty
> pbuilder.
>
> The problem with PBUILDERROOTCMD="sudo" is, that $DIST makes it not into
> the "sudo" session anymore, when "sudo -E pbuilder --build" is called:
> therefore .pbuilderrc cannot dynamically change the settings based on
> $DIST
> and the default settings get used.
--
regards,
Mattia Rizzolo
GPG Key: 66AE 2B4A FCCF 3F52 DA18 4D18 4B04 3FCD B944 4540 .''`.
more about me: http://mapreri.org : :' :
Launchpad user: https://launchpad.net/~mapreri `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia `-
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pbuilder-maint/attachments/20151002/094a7738/attachment.sig>
More information about the Pbuilder-maint
mailing list