[Bug 1996177] [NEW] Cleaner environment for dpkg execution
Julian Andres Klode
1996177 at bugs.launchpad.net
Thu Nov 10 11:52:41 UTC 2022
Public bug reported:
APT currently launches dpkg in the same environment as it is launched in
leaking all sorts of environment variables to it, only overriding PATH
with a sensible default.
This is suboptimal, apt should clean the environment more thoroughly or
populate a clean environment from scratch.
Questions to answer:
* Perhaps it can reuse systemd or sudo or pam mechanisms?
* If not, what can we copy/pass-through? e.g. TERM needs to be kept the same.
* What to do about hooks
* umask(022) before executing dpkg (anything?), also need correct umask for lists for sure.
** Affects: apt (Ubuntu)
Importance: Medium
Status: Triaged
** Changed in: apt (Ubuntu)
Importance: Undecided => Medium
** Changed in: apt (Ubuntu)
Status: New => Triaged
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to apt in Ubuntu.
https://bugs.launchpad.net/bugs/1996177
Title:
Cleaner environment for dpkg execution
Status in apt package in Ubuntu:
Triaged
Bug description:
APT currently launches dpkg in the same environment as it is launched
in leaking all sorts of environment variables to it, only overriding
PATH with a sensible default.
This is suboptimal, apt should clean the environment more thoroughly
or populate a clean environment from scratch.
Questions to answer:
* Perhaps it can reuse systemd or sudo or pam mechanisms?
* If not, what can we copy/pass-through? e.g. TERM needs to be kept the same.
* What to do about hooks
* umask(022) before executing dpkg (anything?), also need correct umask for lists for sure.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1996177/+subscriptions
More information about the foundations-bugs
mailing list