Bug#576678: initramfs-tools: breaks but continues if /tmp is mounted with noexec option
Hi Max,
maximilian attems wrote:
> > update-initramfs: Generating /boot/initrd.img-2.6.33-2-686
> > /usr/sbin/mkinitramfs: 276: /tmp/mkinitramfs_Ck5cpl/scripts/init-top/all_generic_ide: Permission denied
[...]
> > 2) Breaks if /tmp is mounted noexec. Since caring about a noexec
> > mounted /tmp is not required by policy, but quite some people use
> > it, I regard it as bug with severity minor or wishlist. Possibly
> > related to http://bugs.debian.org/567540.
>
> guess to disable that feature on noexec /tmp and warn about it
> is the way to go.
Well, with /tmp or any other directory that would be used instead.
(See below.)
> > Feel free to clone this bug into two seperate bugs if you intend to
> > fix both bugs.
> >
> > For 2) I suggest to allow the administrator to configure an
> > alternative temporary directory to use. Another possibility would be
> > to temporarily remount /tmp with exec. This is how I solved the issue
> > manually for now, but doing this automatically with scripts feels like
> > circumventing a possibly deliberately made decision of the local
> > administrator.
>
> thanks for pointing it out.
> mkinitramfs uses TMPDIR, do you have that variable set?
Just checked. It's not set. But I will try use that on the next kernel
upgrade.
BTW: The information about mkinitramfs looking at $TMPDIR is missing in
the mkinitramfs(8) man page. Looked there (mostly for commandline
options) before reporting that bug. But even searching for "TMP" in
there now didn't find any hint on that.
Regards, Axel
--
,''`. | Axel Beckert <abe@debian.org>, http://people.debian.org/~abe/
: :' : | Debian Developer, ftp.ch.debian.org Admin
`. `' | 1024D: F067 EA27 26B9 C3FC 1486 202E C09E 1D89 9593 0EDE
`- | 4096R: 2517 B724 C5F6 CA99 5329 6E61 2FF9 CD59 6126 16B5
Reply to: