Merge pull request #11684 from geofft/real-root-mode-0500

libstore: Make our sandbox pivot_root directory accessible to ourself
This commit is contained in:
Eelco Dolstra 2024-10-14 14:35:37 +02:00 committed by GitHub
commit b11c331c53
No known key found for this signature in database
GPG key ID: B5690EEEBB952194

View file

@ -2008,7 +2008,7 @@ void LocalDerivationGoal::runChild()
if (chdir(chrootRootDir.c_str()) == -1) if (chdir(chrootRootDir.c_str()) == -1)
throw SysError("cannot change directory to '%1%'", chrootRootDir); throw SysError("cannot change directory to '%1%'", chrootRootDir);
if (mkdir("real-root", 0) == -1) if (mkdir("real-root", 0500) == -1)
throw SysError("cannot create real-root directory"); throw SysError("cannot create real-root directory");
if (pivot_root(".", "real-root") == -1) if (pivot_root(".", "real-root") == -1)