Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-8502

debian packaging postinst follows symlinks and chowns system files

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved (View Workflow)
    • Priority: Major
    • Resolution: Fixed
    • Component/s: other
    • Labels:
      None
    • Environment:
      Debian or Ubuntu using .debs provided by hudson labs.
    • Similar Issues:

      Description

      The hudson debian package postinst script has a find command which chowns files in /var/lib/hudson to the hudson user. The find command as currently written follows symlinks, which means if there are symlinks to system files (like are frequently found in python virtualenv build environments), the dpkg process, which runs as root, winds up chowning files in system locations (like /usr/lib/python) to be owned by hudson.

      This is obviously uncool.

      I've got a patch which fixes it - will submit a pull request in just a sec.

        Attachments

          Activity

          Hide
          kohsuke Kohsuke Kawaguchi added a comment -

          Applied mtaylor's patch for this toward 1.395.

          Show
          kohsuke Kohsuke Kawaguchi added a comment - Applied mtaylor's patch for this toward 1.395.

            People

            Assignee:
            sdirector Monty Taylor
            Reporter:
            sdirector Monty Taylor
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: