Your message dated Sun, 10 Dec 2023 11:55:48 +0000
with message-id <[email protected]>
and subject line Bug#1050545: fixed in plymouth 22.02.122-4
has caused the Debian Bug report #1050545,
regarding reportbug: plymouth uses cp -a to create initramfs but cp -r works 
better for SE Linux and in gneral
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1050545: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050545
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: plymouth
Version: 22.02.122-3
Severity: normal
Tags: patch

The cp -a command preserves timestamps, permissions, ownership, and all
attributes.  An initramfs doesn't need ownership (/etc/passwd doesn't
match and everything runs as root), and doesn't really need permissions
except in the case of executables.  It also can't have SE Linux contexts
as the policy isn't loaded into the kernel.

The current version of plymouth uses cp -a to copy fonts etc which tries
to preserve their SE Linux contexts.  Generally we don't want the process
that makes an initramfs to have the ability to write to things outside of
that which means that it can't create font dirs with the type fonts_t under
/var/tmp.

The solution is to use "cp -r" to copy the files in question, I've attached
a patch to do this.  Another option would be to use "cp -rpd" which gets
closer to the original but shouldn't be necessary.

I've created an initramfs with this patch applied, run unmkinitramfs, and
then run diff on the output to show that it didn't change the contents when
compared to an initramfs created in permissive mode.


-- System Information:
Debian Release: trixie/sid
Architecture: amd64 (x86_64)

Kernel: Linux 6.4.0-3-amd64 (SMP w/4 CPU threads; PREEMPT)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: unable to detect

Versions of packages plymouth depends on:
ii  init-system-helpers        1.65.2
ii  initramfs-tools            0.142
ii  libc6                      2.37-7
ii  libdrm2                    2.4.115-1
ii  libplymouth5               22.02.122-3
ii  systemd                    254.1-3
ii  sysvinit-utils [lsb-base]  3.07-1
ii  udev                       254.1-3

plymouth recommends no packages.

Versions of packages plymouth suggests:
ii  desktop-base     12.0.6+nmu1
pn  plymouth-themes  <none>

-- debconf-show failed

--- End Message ---
--- Begin Message ---
Source: plymouth
Source-Version: 22.02.122-4
Done: Laurent Bigonville <[email protected]>

We believe that the bug you reported is fixed in the latest version of
plymouth, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Laurent Bigonville <[email protected]> (supplier of updated plymouth package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 10 Dec 2023 12:00:10 +0100
Source: plymouth
Architecture: source
Version: 22.02.122-4
Distribution: unstable
Urgency: medium
Maintainer: Laurent Bigonville <[email protected]>
Changed-By: Laurent Bigonville <[email protected]>
Closes: 916792 1035076 1050545 1052310
Changes:
 plymouth (22.02.122-4) unstable; urgency=medium
 .
   [ Helmut Grohne ]
   * Fix FTBFS when systemdsystemunitdir changes in systemd.pc. (Closes:
     #1052310)
 .
   [ Laurent Bigonville ]
   * debian/control: Add elogind as an alternative to systemd as elogind
     package ships the necessesary udev rules files (Closes: #1035076)
   * debian/local/plymouth.hook: Do not copy the security contexts when
     building the initramfs (Closes: #1050545)
   * Update initramfs for all kernel versions when installing or removing
     plymouth (Closes: #916792)
   * debian/control: Drop lsb-base, to please lintian
   * debian/plymouth.links: Fix .service symlink path after move to /usr
   * debian/rules: Move LSB init-functions file to /usr
Checksums-Sha1:
 f71f104559a3a9c1d0474544dd92017bf40ee29a 2042 plymouth_22.02.122-4.dsc
 1fff6b2d3c4c5a7045893fe7560acd0f1c484d62 29412 
plymouth_22.02.122-4.debian.tar.xz
 3ad37661955f7e9f1409dc529eb0a1964be9234f 14069 
plymouth_22.02.122-4_source.buildinfo
Checksums-Sha256:
 0fbede535aa54cbbd84cb0121e562fb9986e95acfbd6e181f42577f242bf3308 2042 
plymouth_22.02.122-4.dsc
 82dbbb020fd1d212d2136f81dec334f8ba367e1a771ff74317629a0c224efd6d 29412 
plymouth_22.02.122-4.debian.tar.xz
 786e6c899e4a056ff2ff12974e6ce3a5b36bcfa9d9fe935134ca55baaf338ef2 14069 
plymouth_22.02.122-4_source.buildinfo
Files:
 d5ae41c1e75a65c04e3047ce2e0ee75d 2042 misc optional plymouth_22.02.122-4.dsc
 f5ac956658c279eb0488422f0bd31b35 29412 misc optional 
plymouth_22.02.122-4.debian.tar.xz
 9e6becc3445fadb8e05e06009552b8cd 14069 misc optional 
plymouth_22.02.122-4_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQFFBAEBCAAvFiEEmRrdqQAhuF2x31DwH8WJHrqwQ9UFAmV1mpwRHGJpZ29uQGRl
Ymlhbi5vcmcACgkQH8WJHrqwQ9U4iAf+PKtjIifPOKPA9jZw1SY2mghLdZ4Zvgal
g9GV3gBiAZntf/2P6VWkX3yvdus0SpsEtkrSeZA+uw7QnrP07BeUOwDE0tCd+asT
cQ2K7S6NOPh9pGYH9T5RfpYYtnN/n/ULUS2gFr3FrkwRYQ6778blF/1plzOhXXes
rvA6G07d4+teMyPG0FgYDtjhafN0Jd/AdW8RTs/8uWuR0oUEsdQxuqXBNWzrQWo4
Q8zxdCMK84HLk30snBqHiIHluCBJCoEMb7yhkzPP3zQm3+kCP0+0XNIXRQWs9tKP
4ZgicOUibRoxkBbkYEGI0cifBm5O+65o9R/1KbLadL60XoXN0gyuyQ==
=UDX4
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to