upgrade errors about "detected unsafe path transition"

zaxdan69 · Yesterday 06:24:15

The last days when I upgrade, I get a lot of errors on "creating temporary files..." stage:

Creating temporary files...
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/ssh.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/ssh/ssh_config.d.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/ssh/sshd_config.d.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib.
Detected unsafe path transition / (owned by archuser) → /run (owned by root) during canonicalization of run.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/profile.d.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/log.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib/colord.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib/dbus.
Detected unsafe path transition / (owned by archuser) → /run (owned by root) during canonicalization of run/dbus.
Detected unsafe path transition / (owned by archuser) → /srv (owned by root) during canonicalization of srv.
Detected unsafe path transition / (owned by archuser) → /run (owned by root) during canonicalization of run/lock.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/cache.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib/mpd.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/pam.d.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib/plocate.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/polkit-1.
Detected unsafe path transition / (owned by archuser) → /dev (owned by root) during canonicalization of dev.
Detected unsafe path transition / (owned by archuser) → /run (owned by root) during canonicalization of run/sudo.
Detected unsafe path transition / (owned by archuser) → /run (owned by root) during canonicalization of run/systemd.
Detected unsafe path transition / (owned by archuser) → /run (owned by root) during canonicalization of run/systemd/netif.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib/systemd.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib/tpm2-tss/system.
Detected unsafe path transition / (owned by archuser) → /run (owned by root) during canonicalization of run/tpm2-tss.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audisp.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audit.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audit/audisp-remote.conf.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audit/plugins.d.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audit/plugins.d/filter.conf.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audit/plugins.d/au-remote.conf.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audit/plugins.d/audispd-zos-remote.conf.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audit/plugins.d/syslog.conf.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/audit/plugins.d/af_unix.conf.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/libaudit.conf.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/log/audit.
Detected unsafe path transition / (owned by archuser) → /etc (owned by root) during canonicalization of etc/brlapi.key.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/log/journal.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/log/journal/818ea07f32ca4fdaa655f8d80c2dc876.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/log/journal/remote.
Detected unsafe path transition / (owned by archuser) → /usr (owned by root) during canonicalization of usr/lib/utempter/utempter.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib/libvirt/qemu.
Detected unsafe path transition / (owned by archuser) → /usr (owned by root) during canonicalization of usr/bin/groupmems.
Detected unsafe path transition / (owned by archuser) → /dev (owned by root) during canonicalization of dev/snd/timer.
Detected unsafe path transition / (owned by archuser) → /dev (owned by root) during canonicalization of dev/loop-control.
Detected unsafe path transition / (owned by archuser) → /dev (owned by root) during canonicalization of dev/fuse.
Detected unsafe path transition / (owned by archuser) → /dev (owned by root) during canonicalization of dev/kvm.
Detected unsafe path transition / (owned by archuser) → /run (owned by root) during canonicalization of run/log/journal.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/log/journal/818ea07f32ca4fdaa655f8d80c2dc876/system.journal.
Detected unsafe path transition / (owned by archuser) → /var (owned by root) during canonicalization of var/lib/tpm2-tss/system/keystore.
Detected unsafe path transition / (owned by archuser) → /sys (owned by root) during canonicalization of sys/kernel/security/tpm0/binary_bios_measurements.
error: command failed to execute correctly

I checked the /etc/ssh directory, its files and some others, and are owned by root. Any idea why this happens and how to fix it?

Last edited by zaxdan69 (Yesterday 06:25:25)

seth · Yesterday 06:52:31

You chowned / to "archuser", set it back to root:root/755

zaxdan69 · Yesterday 11:16:32

It's a bit difficult to have done that in perpose, because I'm not new to linux and archlinux and use it as my main os for years now. But seems that you have right and somehow have changed to my user. Seems that the directories below it(except /home /tmp and /media, belong to root. I will change it, thanks.

Last edited by zaxdan69 (Yesterday 11:17:22)

seth · Yesterday 12:04:59

sudo pacman -Qkk filesystem

You can use a rule for https://wiki.archlinux.org/title/Audit_ … ies_access to figure what is doing this, but most likely some bogus script, maybe aur helper?

Either way please always remember to mark resolved threads by editing your initial posts subject - so others will know that there's no task left, but maybe a solution to find.
Thanks.

zaxdan69 · Yesterday 13:32:06

I'm using cachyos kernel and I get error when tried to run "auditctl -l". Seems that the kernel has no support for audit. I'm using octopi the last couple of weeks and I have aur enabled(with yay), but I have the aur update option disabled. So no aur upgrades when I use octopi to update the system.
As of solved mark, I didn't do it yet because I want to do some updates to see if the problem is solved first.

Arch Linux

#1 Yesterday 06:24:15

upgrade errors about "detected unsafe path transition"

#2 Yesterday 06:52:31

Re: upgrade errors about "detected unsafe path transition"

#3 Yesterday 11:16:32

Re: upgrade errors about "detected unsafe path transition"

#4 Yesterday 12:04:59

Re: upgrade errors about "detected unsafe path transition"

#5 Yesterday 13:32:06

Re: upgrade errors about "detected unsafe path transition"

Board footer