FS#12263 - sudo's new umask handling can cause library permission errors
Attached to Project:
Pacman
Opened by Brad Conte (B-Con) - Friday, 28 November 2008, 04:10 GMT
Last edited by Dan McGee (toofishes) - Saturday, 03 January 2009, 06:25 GMT
Opened by Brad Conte (B-Con) - Friday, 28 November 2008, 04:10 GMT
Last edited by Dan McGee (toofishes) - Saturday, 03 January 2009, 06:25 GMT
|
Details
Summary and Info:
When a user's umask is set to a value stricter than sudo's default, sudo will now use to that user's umask value instead. When using the -U switch, it seems that sometimes the directory for a package in /var/lib/pacman/local will be set according to the user's umask, which can cause database query errors. Steps to Reproduce: Actual example: if the user's umask is 077,recompile kernel26 via makepkg and install via pacman -U kernel26.pkg.tar.gz. The library directory /var/lib/pacman/local/kernel26-2.6.27.6-1 will have permission 700. This problem also occurs when re-installing Firefox. Subsequent queries by pacman (such as pacman -Qi pkgname) run by the user will result in "cannot read this directory" errors. This does not seem to be reliably repeatable, as I've used -U to install packages that did not result in any permission problems. kernel26 and firefox have suffered from this problem on multiple trials, however. It might be solved by explicitly setting the directory permissions after creating a directory in /var/lib/pacman/local/ . Some forum chatter: http://bbs.archlinux.org/viewtopic.php?pid=454561 |
This task depends upon
Closed by Dan McGee (toofishes)
Saturday, 03 January 2009, 06:25 GMT
Reason for closing: Fixed
Additional comments about closing: Commit a73ad4f0e3
Saturday, 03 January 2009, 06:25 GMT
Reason for closing: Fixed
Additional comments about closing: Commit a73ad4f0e3
Makepkg does absolutely nothing with directories in the pacman DB- those are created exclusively within pacman itself, so lets not confuse the issue here.
Are we saying the following code is not working? We explicitly create directories with 755 in addition to changing our umask for all operations when we write DB entries:
http://projects.archlinux.org/?p=pacman.git;a=blob;f=lib/libalpm/be_files.c;h=f5d4e826a466aa63c95a7122cc204746bd6a3d7f;hb=HEAD#l670
If sudo screws this up, I'm not sure what more we can do beyond raising some voices to the upstream devs that this breaks a *lot* of things.
However, I'm just now noticing more packages that suffer from this problem, and they were all installed via pacman -Su.
Here's what I've gathered so far:
Setting umask to 022 solves the problem. With umask 077, this glitch only appears for specific packages. No matter which machine I try it on, and no matter where the package file comes from, the directory permissions will be incorrect for certain packages, but correct for others. I can set the exact same permissions for the .pkg, set a umask of 077, remove the package(s) from the db, and one package will install to the db correctly while another will not. This occurs repeatedly (and is independent of the package version) and the permission glitch persists even if the package was removed first or if the directory in question had the proper permissions set before upgrade.
What gets me is that, reliably, certain packages will always result in a bad db permission, while others will always have a good db permission. If sudo is allowing permission setting correctly for one package, why would it obstruct permissions for another? That kind of flakiness seems to imply either something amis in pacman, or the sudo devs implemented the new umask-inheritance scheme poorly.
Referring to the pacman code Dan linked to, pacman does set the directory permissions explicitly. What's noteworthy is that all created *files* have the correct permissions, it's the *directory* that doesn't. Also, from that code I noted that the directory is the only thing created prior to the manual setting of a new umask (lines 671 and 673). I tried switching those two lines, but it didn't the problem.
For reference, packages that are suspect to this glitch (for me, at least) include: kernel26, firefox, xine-lib, evince, pango, imagemagick, and several others.
If you do an 'su' to root, set a restrictive umask (0077) there, and then perform the same operation, can you reproduce the problem or is this *only* when running under sudo?
I usually set my umask to 077. Pacman often (usually?) sets incorrect permissions in /var/lib/pacman/local. As a workaround, I schedule a cron job to chmod a+rx /var/lib/pacman/local.
However, I recently installed a package using Yaourt and the binary ended up with permissions 700. As I understand this is probably a problem with makepkg?
Thanks!
FS#12333indicate that this is specific to particular packages. I can always replicate this when installing mutagen but never with vlc. However, changing my test code above to make the /var/lib/pacman/local/mutagen-1.15-1 directory does not replicate...Just put the attached script in a directory which is in $PATH, set "alias pacman='pacman-chmod'" in ~/.bashrc and "PacmanBin /usr/local/bin/pacman-chmod" in /etc/yaourtrc.
It's not a solution for this bug, but a dirty workaround which sets the correct file permissions after every installation done by root/with sudo.
Nevertheless it could help people get scripts like yaourt run without errors until this bug is fixed. So I think it can help anyway. ;-)
I set root's umask to 022 and the unprivileged users' umask to 077 and I've got the same issue, even if run pacman as root.
What is really confusing is this statement:
I set root's umask to 022 and the unprivileged users' umask to 077 and I've got the same issue, even if run pacman as root.
Are you absolutely sure about that? I can not replicate...
if((tmp = mkdir(pkgpath, 0755)) != 0) {
fprintf(stderr, "ERROR %d: unable to mkdir; %s\n", errno, strerror(errno));
}
Then I get this for packages that fail to have their permissions set:
ERROR 17: unable to mkdir; File exists
The directory obviously does get created... In fact, if you remove the directory creation line altogether, packages which do not have the right umask install fine but packages whose dir has the right umask fail to create an entry in /var/lib/pacman/local at all.
So, there appears to be something else creating this directory (maybe).
Allan- if you strace pacman (maybe send it to a file), you should be able to grep out all of the mkdir calls. I'm guessing libarchive, when extracting the ChangeLog, is creating these directories automagically and that is where we are hitting the issues?
Install files might play into these as well- actually, they probably don't as we extract it to /tmp/ to do the pre-* functions, don't we. Looks like we need to rethink when we extract the ChangeLog files?
since our db_write() call (add.c:803) is after we have finished our entire extract_single_file() loop, the changelog will always get extracted before we write to the database for the first time (and thus creating the directory).
The fix is to create the directory during just before the archive extraction. I'm also adding a check for successful directory creation (like a couple of comments above) so something like this will be flagged in the future.
The one thing to consider is what effect an empty directory (or one with only install/changelog) would have on pacman behavior. I'm not sure how clean we would handle this as a lot of times we prime our lists by just looking at folder names to get pkgname and pkgver, and only look at the files once we know we need more info on the given package.
Maybe we should skip extraction of install file and changelog while we are extracting the package and either do it after the db_write or even during?