path: root/meta/files/fs-perms.txt
Commit message (Collapse)AuthorAgeFilesLines
* fs-perms.txt: fix ROOT_HOME's permissionrbt/homeRobert Yang2016-04-071-0/+3
| | | | | | | It should be 0700 rather than 0755. Reported-by: Charles Chan <charles.wh.chan@gmail.com> Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
* base-files: fix up misleading dir grouping names for lsb dirsPaul Gortmaker2014-07-291-3/+3
| | | | | | | | | | | | | | | | | | | | | | | In commit b0df35f47fb79dc149504bd66d1186b3276f9510 ("base-files: Add to make some directories needed by LSB.") there were new groupings of dirs made. But rather than keep the grouping names permissions based as they clearly were, it seems that it was unfortunately misinterpreted as a counter, simply incrementing as a new group was added. This leads to dir3755 getting chmod'd to 0755 and dir4775 being chmod'd to 2775 which to any new reader of the code is terribly confusing. Choose names that clearly reflect the permissions, and add a lsb suffix to indicate the role. Also note that the settings for /var/mail seem incorrect, and so they have been aligned with what is seen in most common distros. Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* base-files: remove strange 2775 perms from dirs like /homePaul Gortmaker2014-07-291-5/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Mark Hatle did the historical research into why this was so, and found that it originally was via debian import, and then it morphed over time: <fray> +# chown -R root:root ${D} <fray> +# cd ${D} && chown root:src usr/src <fray> +# cd ${D} && chown root:staff var/local <fray> +# cd ${D} && chown root:staff home <fray> + cd ${D} && chmod 755 `find . -type d` <fray> + cd ${D} && chmod 1777 `cat ${S}/debian/1777-dirs` <fray> + cd ${D} && chmod 2775 `cat ${S}/debian/2775-dirs` <fray> that was the original code <fray> so THAT is why they're 2775.. <fray> they were original 'src' and 'staff'.. which has gotten lost sometime in the last 10 years <fray> AND the origin: <fray> commit b45c9ed40bb4f893f99127a21776aef3ae888ad7 <fray> Author: Chris Larson <clarson@kergoth.com> <fray> Date: Tue Sep 30 16:30:41 2003 +0000 <fray> Add base-files 3.0.10 (from debian). <fray> thats where the brain damage started ... Debian in 2003.. Here we simply convert them to being normal 755 dirs. [YOCTO #6579] Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* base-files: add /run directory from FHS 3 draft specificationJonathan Liu2013-05-291-3/+2
| | | | | | | | | | | | | | | | | This adds the /run directory from the Filesystem Hierarchy Standard 3.0 Draft [1] and refactors the filesystem as follows: - Remove creation of /var/volatile/run - Remove creation of /var/volatile/lock - Remove symbolic link from /var/run to /var/volatile/run - Remove symbolic link from /var/lock to /var/volatile/lock - Add symbolic link from /var/run to /run - Add symbolic link from /var/lock -> /run/lock - Add /run to /etc/fstab for sysvinit compatibility [1] http://www.linuxbase.org/betaspecs/fhs/fhs.html#runRuntimeVariableData Signed-off-by: Jonathan Liu <net147@gmail.com> Signed-off-by: Saul Wold <sgw@linux.intel.com>
* fs-perms.txt: Don't tinker with file modes in /usr/src/debugPhil Blundell2013-05-031-1/+1
| | | | | | | | | | | | | | | | Since 6775feb9fe935ab01fd9cae2b2d3fce5824a9a72 our local "copy" of the debug sources has in fact been hardlinked to ${S} and potentially other places too. This means that any modifications we make to these files might have wider consequences than intended. Avoid this potential pitfall by telling fixup_perms() to leave the file modes in this directory alone. No great harm will result from shipping debug sources with a mode other than 0644: if the mode was permissive enough for us to compile the sources in the first place then it must also be permissive enough for subsequent debugging. Signed-off-by: Phil Blundell <philb@gnu.org> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* fs-perms: remove /var/cache from volatilesLaurentiu Palcu2013-02-061-1/+0
| | | | | Signed-off-by: Laurentiu Palcu <laurentiu.palcu@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* classes/package.bbclass: Add fixup_permsMark Hatle2011-06-301-0/+69
Add a new function that is responsible for fixing directory and file permissions, owners and groups during the packaging process. This will fix various issues where two packages may create the same directory and end up with different permissions, owner and/or group. The issue being resolved is that if two packages conflict in their ownership of a directory, the first installed into the rootfs sets the permissions. This leads to a least potentially non-deterministic filesystems, at worst security defects. The user can specify their own settings via the configuration files specified in FILESYSTEM_PERMS_TABLES. If this is not defined, it will fall back to loading files/fs-perms.txt from BBPATH. The format of this file is documented within the file. By default all of the system directories, specified in bitbake.conf, will be fixed to be 0755, root, root. The fs-perms.txt contains a few default entries to correct documentation, locale, headers and debug sources. It was discovered these are often incorrect due to being directly copied from the build user environment. The entries needed to match the base-files package have also been added. Also tweak a couple of warnings to provide more diagnostic information. Signed-off-by: Mark Hatle <mark.hatle@windriver.com>