From patchwork Mon Jul 20 20:42:32 2015
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Etienne Champetier <champetier.etienne@gmail.com>
X-Patchwork-Id: 497900
Return-Path: <openwrt-devel-bounces@lists.openwrt.org>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Received: from arrakis.dune.hu (arrakis.dune.hu [78.24.191.176])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by ozlabs.org (Postfix) with ESMTPS id 7436014076E
	for <incoming@patchwork.ozlabs.org>;
	Tue, 21 Jul 2015 06:43:12 +1000 (AEST)
Received: from arrakis.dune.hu (localhost [127.0.0.1])
	by arrakis.dune.hu (Postfix) with ESMTP id 11E3928BA8B;
	Mon, 20 Jul 2015 22:42:40 +0200 (CEST)
X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on arrakis.dune.hu
X-Spam-Level: 
X-Spam-Status: No, score=-1.5 required=5.0 tests=BAYES_00,FREEMAIL_FROM,
	T_RP_MATCHES_RCVD autolearn=unavailable version=3.3.2
Received: from arrakis.dune.hu (localhost [127.0.0.1])
	by arrakis.dune.hu (Postfix) with ESMTP id 97E6C28BC4C
	for <openwrt-devel@lists.openwrt.org>;
	Mon, 20 Jul 2015 22:42:27 +0200 (CEST)
X-policyd-weight: using cached result; rate: -8.5
Received: from ns3354555.champetier.me (ns3354555.champetier.me
	[37.187.20.53]) by arrakis.dune.hu (Postfix) with ESMTP
	for <openwrt-devel@lists.openwrt.org>;
	Mon, 20 Jul 2015 22:42:25 +0200 (CEST)
Received: by ns3354555.champetier.me (Postfix, from userid 1000)
	id ADA003C7417E; Mon, 20 Jul 2015 22:42:51 +0200 (CEST)
From: Etienne CHAMPETIER <champetier.etienne@gmail.com>
To: OpenWrt Development List <openwrt-devel@lists.openwrt.org>
Date: Mon, 20 Jul 2015 22:42:32 +0200
Message-Id: <1437424953-29575-1-git-send-email-champetier.etienne@gmail.com>
X-Mailer: git-send-email 2.4.3
Subject: [OpenWrt-Devel] [PATCH 1/2] base-files: fix /tmp/.jail permissions
X-BeenThere: openwrt-devel@lists.openwrt.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OpenWrt Development List <openwrt-devel.lists.openwrt.org>
List-Unsubscribe: 
 <https://lists.openwrt.org/cgi-bin/mailman/options/openwrt-devel>,
	<mailto:openwrt-devel-request@lists.openwrt.org?subject=unsubscribe>
List-Archive: <http://lists.openwrt.org/pipermail/openwrt-devel/>
List-Post: <mailto:openwrt-devel@lists.openwrt.org>
List-Help: <mailto:openwrt-devel-request@lists.openwrt.org?subject=help>
List-Subscribe: 
 <https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-devel>,
	<mailto:openwrt-devel-request@lists.openwrt.org?subject=subscribe>
MIME-Version: 1.0
Errors-To: openwrt-devel-bounces@lists.openwrt.org
Sender: "openwrt-devel" <openwrt-devel-bounces@lists.openwrt.org>

We need a+x rights on the path to the root of the jails
so we can use users other than root (like nobody)

This partly fixes jailed dnsmasq

Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com>
---
 package/base-files/files/etc/init.d/boot | 1 -
 1 file changed, 1 deletion(-)

diff --git a/package/base-files/files/etc/init.d/boot b/package/base-files/files/etc/init.d/boot
index 6950130..a53be74 100755
--- a/package/base-files/files/etc/init.d/boot
+++ b/package/base-files/files/etc/init.d/boot
@@ -29,7 +29,6 @@ boot() {
 	mkdir -p /tmp/.uci
 	chmod 0700 /tmp/.uci
 	mkdir -p /tmp/.jail
-	chmod 0700 /tmp/.jail
 	touch /var/log/wtmp
 	touch /var/log/lastlog
 	touch /tmp/resolv.conf.auto