Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 15 Jan 2024 07:54:05 +0300
From:      Gleb Popov <arrowd@freebsd.org>
To:        Craig Leres <leres@freebsd.org>
Cc:        freebsd-hackers@freebsd.org
Subject:   Re: poudriere 3.4.0 regression: -i runs as NON_ROOT user
Message-ID:  <CALH631kCySUSWxL6faUG7adekkakcyXzs-M=sxADsVHC_xj%2B1g@mail.gmail.com>
In-Reply-To: <0fb25c17-c737-4bc6-966c-6a03d0a41669@freebsd.org>
References:  <bbd3b92d-40f3-41f6-a802-001610b35c8b@freebsd.org> <ZaGC8pOtQ-cQV05A@ircbsd.lifeofadishwasher.com> <c1a8b664-317d-446d-b2f7-9ee7511dcff9@freebsd.org> <ZaIq79Rph8laIN28@ircbsd.lifeofadishwasher.com> <0b1ea9f1-4ed6-42c9-af21-844da9fb5c63@freebsd.org> <20240115070717.90a337c666aaa86003e7c231@dec.sakura.ne.jp> <0fb25c17-c737-4bc6-966c-6a03d0a41669@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Mon, Jan 15, 2024 at 5:10=E2=80=AFAM Craig Leres <leres@freebsd.org> wro=
te:
>
> On 1/14/24 14:07, Tomoaki AOKI wrote:
> > IIRC, poudriere[-devel] ran as nobody (65534) initially, but it started
> > running as root (0) when I started using ccache.
>
> Interesting. It's starting to sound to me as if there's just one bug;
> poudriere is not passing the correct value for UID to make.
>
> I commented out CCACHE_DIR in my poudriere.conf and indeed things run as
> user nobody.

Yes, this is documented in the config:
https://github.com/freebsd/poudriere/blob/acde697efbe6f857c9b00bc90737dd2d9=
7c95ba5/src/etc/poudriere.conf.sample#L287

> But looking at the build log I see UID is set to 0 in the
> environment. And I don't understand how poudriere does this ("ps e"
> doesn't show UID in the environment of any jail process).
>
>                 Craig
>
> ---Begin Environment---
> SHELL=3D/bin/csh
> [...]
> UID=3D0
> [...]
>

"Begin Environment" is the environment that Poudriere itself was
started in, the host one. Also note that when you do "testport -i" and
get into the jail, you'll be given root even if nobody was used during
building.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CALH631kCySUSWxL6faUG7adekkakcyXzs-M=sxADsVHC_xj%2B1g>