Skip to first unread message
tsjsdbd
May 20, 2014, 10:53:22 PM5/20/14
to vcap...@cloudfoundry.org
when start warden on SUSE, the /tmp directory in container without the sticky bit set on.
root@17pqsd48lks:/tmp/staged# ll /tmp
total 20
drwxrwxrwx 4 root root 4096 May 20 20:46 ./
on Ubuntu, it's OK
root@17ioiitquk6:~# ll /tmp
total 292
drwxrwxrwt 3 root root 4096 Apr 24 2013 ./
this cause the ruby's function 'mktmpdir' fail with err ""stderr":"/usr/lib/ruby/1.9.1/fileutils.rb:708:in `remove_entry_secure': parent directory is world writabl
e, FileUtils#remove_entry_secure does not work; abort: \"/tmp/ruby_versions-20140210-79-1vvttj9\" (parent directory mode 40777) (ArgumentError)\n\tfro
m /usr/lib/ruby/1.9.1/tmpdir.rb:85:in `mktmpdir'\n"
maybe in https://github.com/cloudfoundry/warden/blob/master/warden/root/linux/skeleton/setup.sh, we should add "chmod o+t /tmp", or somewhere else?
James Bayer
May 27, 2014, 10:06:25 AM5/27/14
to vcap...@cloudfoundry.org
we don't do any testing on suse as part of the CF eng work, so if you find a solution that works on suse that requires modifying the warden code, please let us know. as long as it's not too disruptive to the existing approach, a pull request to fix this for suse should be fine.
--
You received this message because you are subscribed to the Google Groups "Cloud Foundry Developers" group.
To view this discussion on the web visit https://groups.google.com/a/cloudfoundry.org/d/msgid/vcap-dev/b90047f9-3eae-4b77-8320-85a5827e080e%40cloudfoundry.org.
To unsubscribe from this group and stop receiving emails from it, send an email to vcap-dev+u...@cloudfoundry.org.
Thank you,
James Bayer
Reply all
Reply to author
Forward
0 new messages