Re: dchroot scripts

To: debian-amd64@lists.debian.org
Subject: Re: dchroot scripts
From: cookedm+news@physics.mcmaster.ca (David M. Cooke)
Date: Fri, 17 Dec 2004 16:32:33 -0500
Message-id: <[🔎] qnk1xdok3v2.fsf@arbutus.physics.mcmaster.ca>
References: <[🔎] 87pt1891s9.fsf@jihl.valley-of-wind.krose.org>

Kyle Rose <krose@krose.org> writes:

> So, the dchroot wrapper script suggestion in the FAQ is okay, but it
> doesn't really work in all cases because dchroot appears to sh -c
> ... without doing proper quoting on the underlying command.  Commands
> like
>
>   mplayer 'rtsp://1.2.3.4:5678/encoder/listen.rm?cloakport=8080'
>
> would choke because the shell would try to glob for ? and fail.

There are actually two separate problems with quoting in dchroot, and
they're both caused by interaction with su:

Bug #249655: "dchroot -d ls -l" broken: su tries to interpret -l switch
* dchroot doesn't call su with -- before the command, so su tries to
  interpret anything in the command that looks like one of it's options.

Bug #276419: su appends the positional args to the command line
* Using su username command arg1 arg2, su calls sh -c with the string
  "command arg1 arg2" using execv, instead of execvp. So spaces, etc.
  screw you up. If it used execvp, you wouldn't have to do the quoting.

I was swearing at dchroot yesterday, and came up with my own fix
(using python), although I patched dchroot to fix the first issue.

-- 
|>|\/|<
/--------------------------------------------------------------------------\
|David M. Cooke
|cookedm(at)physics(dot)mcmaster(dot)ca

Reply to:

Follow-Ups:
- Re: dchroot scripts
  - From: Kyle Rose <krose@krose.org>

References:
- dchroot scripts
  - From: Kyle Rose <krose@krose.org>

Prev by Date: Re: dchroot scripts
Next by Date: Re: dchroot scripts
Previous by thread: Re: dchroot scripts
Next by thread: Re: dchroot scripts
Index(es):
- Date
- Thread