image_types_ostree: make root directory only readable by root

Make the root home directory only accessible by root. Use 700 as commonly used for the root home directory. Signed-off-by: Stefan Agner <stefan.agner@toradex.com>
author: Stefan Agner <stefan.agner@toradex.com> 2019-07-19 21:55:15 +0200
committer: Stefan Agner <stefan.agner@toradex.com> 2019-07-19 22:01:11 +0200
commit: c170b6344b13ea075aff4091c846623b9b6f9a97 (patch)
tree: 91e54a454be70601338cc124d2154205bf85d415
parent: 986526193a8f2f08ccdc77d71bb7d7f5e86185f0 (diff)
download: meta-updater-c170b6344b13ea075aff4091c846623b9b6f9a97.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/classes/image_types_ostree.bbclass b/classes/image_types_ostree.bbclass
index 6bb303b..d3e7d0d 100644
--- a/classes/image_types_ostree.bbclass
+++ b/classes/image_types_ostree.bbclass
@@ -95,9 +95,9 @@ IMAGE_CMD_ostree () {
        fi
        if [ -n "${SYSTEMD_USED}" ]; then
-            echo "d /var/roothome 0755 root root -" >>${tmpfiles_conf}
+            echo "d /var/roothome 0700 root root -" >>${tmpfiles_conf}
        else
-            echo "mkdir -p /var/roothome; chown 755 /var/roothome" >>${tmpfiles_conf}
+            echo "mkdir -p /var/roothome; chown 700 /var/roothome" >>${tmpfiles_conf}
        fi
        rm -rf root
author	Stefan Agner <stefan.agner@toradex.com>	2019-07-19 21:55:15 +0200
committer	Stefan Agner <stefan.agner@toradex.com>	2019-07-19 22:01:11 +0200
commit	c170b6344b13ea075aff4091c846623b9b6f9a97 (patch)
tree	91e54a454be70601338cc124d2154205bf85d415
parent	986526193a8f2f08ccdc77d71bb7d7f5e86185f0 (diff)
download	meta-updater-c170b6344b13ea075aff4091c846623b9b6f9a97.tar.gz

diff --git a/classes/image_types_ostree.bbclass b/classes/image_types_ostree.bbclass index 6bb303b..d3e7d0d 100644 --- a/classes/image_types_ostree.bbclass +++ b/classes/image_types_ostree.bbclass
@@ -95,9 +95,9 @@ IMAGE_CMD_ostree () {
95	fi	95	fi
96		96
97	if [ -n "${SYSTEMD_USED}" ]; then	97	if [ -n "${SYSTEMD_USED}" ]; then
98	echo "d /var/roothome 0755 root root -" >>${tmpfiles_conf}	98	echo "d /var/roothome 0700 root root -" >>${tmpfiles_conf}
99	else	99	else
100	echo "mkdir -p /var/roothome; chown 755 /var/roothome" >>${tmpfiles_conf}	100	echo "mkdir -p /var/roothome; chown 700 /var/roothome" >>${tmpfiles_conf}
101	fi	101	fi
102		102
103	rm -rf root	103	rm -rf root