[buildd-tools-devel] Bug#586333: Bug#586333: Bug#586333: mount /var/run/gdm3 by default (?)

Roger Leigh rleigh at codelibre.net
Wed Jun 23 23:15:42 UTC 2010


On Fri, Jun 18, 2010 at 03:50:27PM +0100, Roger Leigh wrote:
> On Fri, Jun 18, 2010 at 03:23:08PM +0200, Stefano Zacchiroli wrote:
> > A straightforward "schroot -p COMMAND" no longer works because with gdm3 the
> > authority file is now located under /var/run/gdm3/, which is not mounted by
> > schroot setup/exec scripts. I believe that without gdm3 that still works, as
> > probably the authoritfy file was elsewhere before, in a directory mounted by
> > those scripts (I don't have easy access to a non-gdm3 machine right now, so I
> > haven't been able to test that though).
> > 
> > The "fix" is straightforward, it's enough to add the following line to
> > /etc/schroot/default/fstab:
> > 
> >   /var/run/gdm3	/var/run/gdm3	none	rw,bind		0	0
> 
> Ah, that makes sense.  We had one report of schroot no longer
> working with gdm, but it wasn't clear why.

Over the last couple of nights, I've added support for "profiles"
to schroot, and one of these is a "desktop" profile.  Currently,
this is the fstab for this profile on Linux:

# fstab: static file system information for chroots.
# Note that the mount point will be prefixed by the chroot path
# (CHROOT_PATH)
#
# <file system> <mount point>   <type>  <options>       <dump>  <pass>
/proc           /proc           none    rw,rbind        0       0
/sysfs          /sysfs          none    rw,rbind        0       0
/dev            /dev            none    rw,rbind        0       0
/home           /home           none    rw,bind         0       0
/tmp            /tmp            none    rw,bind         0       0
/var/run        /var/run        none    rw,bind         0       0

I opted to bind mount the whole of /var/run to get other stuff
like dbus sockets.  However, doing this more selectively might
reduce the change of nasty problems such as things in the
chroot interfering with services on the host.

Do you think there are any other things that need binding into the
chroot under e.g. /var that we've missed?

The same applies to files copied in with "copyfiles"--is there anything
else here we should add?  Currently this is just resolv.conf, but any
other stuff needed by X or other things in the user's session could be
copied here.


Regards,
Roger

-- 
  .''`.  Roger Leigh
 : :' :  Debian GNU/Linux             http://people.debian.org/~rleigh/
 `. `'   Printing on GNU/Linux?       http://gutenprint.sourceforge.net/
   `-    GPG Public Key: 0x25BFB848   Please GPG sign your mail.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/buildd-tools-devel/attachments/20100624/59887ad5/attachment.pgp>


More information about the Buildd-tools-devel mailing list