Use mount options to set tmpfs user/permissions
This commit is contained in:
parent
9c82f847ee
commit
02af05e7a4
1 changed files with 3 additions and 29 deletions
32
update.py
32
update.py
|
|
@ -18,6 +18,7 @@ import threading
|
||||||
from pathlib import Path
|
from pathlib import Path
|
||||||
from typing import Any, Union
|
from typing import Any, Union
|
||||||
import signal
|
import signal
|
||||||
|
import pwd
|
||||||
|
|
||||||
# SCRIPT_DIR = os.path.dirname(os.path.realpath(__file__))
|
# SCRIPT_DIR = os.path.dirname(os.path.realpath(__file__))
|
||||||
SUDO_PROC = False
|
SUDO_PROC = False
|
||||||
|
|
@ -1834,6 +1835,7 @@ if __name__ == "__main__":
|
||||||
PKG_STATE = pkg_state
|
PKG_STATE = pkg_state
|
||||||
OTHER_STATE = other_state
|
OTHER_STATE = other_state
|
||||||
other_state["USER"] = os.environ["USER"]
|
other_state["USER"] = os.environ["USER"]
|
||||||
|
other_state["UID"] = pwd.getpwnam(other_state["USER"]).pw_uid
|
||||||
other_state["logs_dir"] = None
|
other_state["logs_dir"] = None
|
||||||
other_state["log_limit"] = 1024 * 1024 * 1024
|
other_state["log_limit"] = 1024 * 1024 * 1024
|
||||||
other_state["error_on_limit"] = False
|
other_state["error_on_limit"] = False
|
||||||
|
|
@ -2057,7 +2059,7 @@ if __name__ == "__main__":
|
||||||
"-t",
|
"-t",
|
||||||
"tmpfs",
|
"tmpfs",
|
||||||
"-o",
|
"-o",
|
||||||
"size=90%",
|
f"size=90%,mode=0700,uid={other_state['UID']}",
|
||||||
"tmpfs",
|
"tmpfs",
|
||||||
other_state["tmpfs_chroot"],
|
other_state["tmpfs_chroot"],
|
||||||
),
|
),
|
||||||
|
|
@ -2074,34 +2076,6 @@ if __name__ == "__main__":
|
||||||
),
|
),
|
||||||
other_state["tmpfs_chroot"],
|
other_state["tmpfs_chroot"],
|
||||||
)
|
)
|
||||||
log_print(
|
|
||||||
"Setting tmpfs dir permissions...", other_state=other_state
|
|
||||||
)
|
|
||||||
subprocess.run(
|
|
||||||
(
|
|
||||||
"/usr/bin/env",
|
|
||||||
"sudo",
|
|
||||||
"chmod",
|
|
||||||
"700",
|
|
||||||
other_state["tmpfs_chroot"],
|
|
||||||
),
|
|
||||||
check=True,
|
|
||||||
)
|
|
||||||
log_print(
|
|
||||||
"Giving self user owner of tmpfs dir...",
|
|
||||||
other_state=other_state,
|
|
||||||
)
|
|
||||||
subprocess.run(
|
|
||||||
(
|
|
||||||
"/usr/bin/env",
|
|
||||||
"sudo",
|
|
||||||
"chown",
|
|
||||||
"-R",
|
|
||||||
other_state["USER"],
|
|
||||||
other_state["tmpfs_chroot"],
|
|
||||||
),
|
|
||||||
check=True,
|
|
||||||
)
|
|
||||||
os.umask(old_umask)
|
os.umask(old_umask)
|
||||||
except subprocess.CalledProcessError:
|
except subprocess.CalledProcessError:
|
||||||
log_print("ERROR: Failed to set up tmpfs!")
|
log_print("ERROR: Failed to set up tmpfs!")
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue