xattr support in live-installer?

To: debian-boot@lists.debian.org
Subject: xattr support in live-installer?
From: Colin Watson <cjwatson@debian.org>
Date: Wed, 9 Apr 2014 14:09:12 +0100
Message-id: <[🔎] 20140409130912.GA7031@riva.ucam.org>
Mail-followup-to: debian-boot@lists.debian.org

Hi,

https://launchpad.net/bugs/1302192 reports ping not being setuid root
after installation from squashfs-based media.  I've reproduced this with
the Ubuntu server installer, which uses live-installer to install the
base system (much faster than running debootstrap).  I haven't
explicitly tested Debian live media, but I suspect they'll suffer from
the same problem.

The question is what to do about it.  live-installer uses busybox tar to
shovel files around, and busybox tar doesn't support xattr.  We could do
something with getcap/setcap - indeed getcap supports recursive search
and setcap can read capabilities in bulk from standard input, so this
shouldn't need to be too slow - but we don't have those tools in d-i
right now.

Would it make sense to modify attr to build udebs, then change
live-installer to do a getcap/setcap run after transferring files with
tar?  I think this is probably going to be simpler than adding xattr
support to busybox tar (in GNU tar that depends on a specific archive
format, so I'm guessing it's not exactly trivial).  Even if we did go
for the latter approach instead, we'd probably still need at least a
libattr1-udeb.

Thoughts?

Thanks,

-- 
Colin Watson                                       [cjwatson@debian.org]

Reply to:

Follow-Ups:
- Re: xattr support in live-installer?
  - From: Cyril Brulebois <kibi@debian.org>

Prev by Date: Bug#687687: Behavior together shown in wheezy
Next by Date: Re: xattr support in live-installer?
Previous by thread: Bug#687687: Behavior together shown in wheezy
Next by thread: Re: xattr support in live-installer?
Index(es):
- Date
- Thread