chroot_scan: make sure the tarball is owned by non-priv user

Relates: #1472
rpm-software-management · Sep 27, 2024 · c522c5f · c522c5f
1 parent f51c5b8
commit c522c5f
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 0 deletions.
diff --git a/mock/py/mockbuild/plugins/chroot_scan.py b/mock/py/mockbuild/plugins/chroot_scan.py
@@ -90,3 +90,4 @@ def __scanChroot(self):
                     shell=False, printOutput=True
                 )
                 shutil.rmtree(self.resultdir)
+                self.buildroot.uid_manager.changeOwner(tarfile)
diff --git a/releng/release-notes-next/chroot-scan-permissions.bugfix b/releng/release-notes-next/chroot-scan-permissions.bugfix
@@ -0,0 +1,2 @@
+The ownership of the `chroot_scan` plugin "output tarball" (when `write_tar =
+True`) has been corrected, ensuring the file is no longer root-owned.
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,2 @@
		The ownership of the `chroot_scan` plugin "output tarball" (when `write_tar =
		True`) has been corrected, ensuring the file is no longer root-owned.