[bug #60819] Avoid blocking install (configure) if /dev/shm is non-execu

reproduce-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug #60819] Avoid blocking install (configure) if /dev/shm is non-execu

From:	Boud Roukema
Subject:	[bug #60819] Avoid blocking install (configure) if /dev/shm is non-executable
Date:	Thu, 24 Jun 2021 15:50:37 -0400 (EDT)
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Firefox/78.0

URL:
  <https://savannah.nongnu.org/bugs/?60819>

                 Summary: Avoid blocking install (configure) if /dev/shm is
non-executable
                 Project: Maneage
            Submitted by: boud
            Submitted on: Thu 24 Jun 2021 07:50:35 PM UTC
                Category: None
                Severity: 3 - Normal
              Item Group: None
                  Status: None
                 Privacy: Public
             Assigned to: None
             Open/Closed: Open
         Discussion Lock: Any

    _______________________________________________________

Details:

BUG: Some systems have /dev/shm and set the `noexec' flag on /dev/shm for
security
reasons [1]. In this case on one system that I tried, the initial software
build failed with
 
./reproduce/software/shell/pre-make-build.sh: line 183: ./configure:
Permission denied


COMMENT:
A Maneage project should not require an extra
hack on a system just because it is secure. 

REPRODUCE: 
On a system with /dev/shm, do


sudo mount -o remount,noexec /dev/shm


and then try a completely fresh install of Maneage (e.g. commit b97c1ff). This
should fail with the message above.


PROPOSED SOLUTION:

This commit
https://codeberg.org/boud/maneage_dev/commit/3b0e314efab87b9e6da35d554730f2b8583d1c6a
creates a trivial dummy executable script file in /dev/shm
and resets the `configure.sh' variable associated with /dev/shm
to an empty string if the dummy script is found to
be not executable despite having been given executable rights
with chmod.

A possible simplification of this script would be for
the dummy script to be a zero-byte file.


[1] https://serverfault.com/questions/72356/how-useful-is-mounting-tmp-noexec
    (archive:
   
https://web.archive.org/web/20210624192819/https://serverfault.com/questions/72356/how-useful-is-mounting-tmp-noexec)






    _______________________________________________________

Reply to this item at:

  <https://savannah.nongnu.org/bugs/?60819>

_______________________________________________
  Message sent via Savannah
  https://savannah.nongnu.org/

[Prev in Thread]

Current Thread

[Next in Thread]

[bug #60819] Avoid blocking install (configure) if /dev/shm is non-executable, Boud Roukema <=
- [bug #60819] Avoid blocking install (configure) if /dev/shm is non-executable, Mohammad Akhlaghi, 2021/06/25
  - [bug #60819] Avoid blocking install (configure) if /dev/shm is non-executable, Boud Roukema, 2021/06/25
    - [bug #60819] Avoid blocking install (configure) if /dev/shm is non-executable, Mohammad Akhlaghi, 2021/06/25
    - [bug #60819] Avoid blocking install (configure) if /dev/shm is non-executable, Boud Roukema, 2021/06/25

Prev by Date: [task #15654] Webpage for videos introducing Maneage
Next by Date: [task #15996] bash options: -u and -o pipefail
Previous by thread: [task #15654] Webpage for videos introducing Maneage
Next by thread: [bug #60819] Avoid blocking install (configure) if /dev/shm is non-executable
Index(es):
- Date
- Thread