alpm downloaduser failed retrieving file 'lonewolf.db' from disk

Allan · 2025-05-30 08:41:50

It is probably from this line of code when setting up the child process for the download...

$ git grep setgroups
lib/libalpm/sandbox.c:  ASSERT(setgroups(0, NULL) == 0, return -1);

Looks like "intended" but I really have no idea what the intention was!

Lone_Wolf · 2025-05-30 09:44:41

It was added in commit ce83cf63 Provide function for switching user in child processes , part of MR 23

Last edited by Lone_Wolf (2025-05-30 09:46:54)

Allan · 2025-05-30 12:26:58

I guess this needs a bug report. I think your setup is reasonable to support. Thanks!

seth · 2025-05-30 13:59:35

It would seem like a hardening effort if some genius add alpm to the wheel, adm or root group?
One might want a DownloadGroup next to the DownloadUser to address this.

Allan · 2025-05-30 23:23:00

yes - the usual tightrope of supporting reasonable setups while not reducing security....

topcat01 · 2025-05-30 23:50:48

seth wrote:

It would seem like a hardening effort if some genius add alpm to the wheel, adm or root group?
One might want a DownloadGroup next to the DownloadUser to address this.

I like this idea.

Arch Linux

#26 2025-05-30 08:41:50

Re: alpm downloaduser failed retrieving file 'lonewolf.db' from disk

#27 2025-05-30 09:44:41

Re: alpm downloaduser failed retrieving file 'lonewolf.db' from disk

#28 2025-05-30 12:26:58

Re: alpm downloaduser failed retrieving file 'lonewolf.db' from disk

#29 2025-05-30 13:59:35

Re: alpm downloaduser failed retrieving file 'lonewolf.db' from disk

#30 2025-05-30 23:23:00

Re: alpm downloaduser failed retrieving file 'lonewolf.db' from disk

#31 2025-05-30 23:50:48

Re: alpm downloaduser failed retrieving file 'lonewolf.db' from disk

Board footer