Bug 481512 - livecd-creator requires root password
livecd-creator requires root password
Product: Fedora
Classification: Fedora
Component: livecd-tools (Show other bugs)
x86_64 Linux
low Severity medium
: ---
: ---
Assigned To: Jeremy Katz
Fedora Extras Quality Assurance
Depends On:
  Show dependency treegraph
Reported: 2009-01-25 16:00 EST by Joachim Frieben
Modified: 2009-01-28 15:57 EST (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2009-01-28 15:57:49 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Joachim Frieben 2009-01-25 16:00:57 EST
Description of problem:
livecd-creator refuses to be launched by an ordinary user. It should be possible to create an ISO image as ordinary user using globally writable directories/files or (better) carry out all necessary operations confined to the user's home directory.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. Log in as non-root user and launch 'livecd-creator ...' from a shell.
Actual results:
System replies "You must run livecd-creator as root".

Expected results:
Creation of live CD image file begins.

Additional info:
I do not see the need for running livecd-creator as root. For creating RPM packages using 'rpm', this mode has long been deprecated. It is much better to set up the build directories locally in the user's home directory and create them as ordinary user with limited rights. As of F10, /usr/src/redhat/.. does not even exist anymore. Even when running 'rpm' as root, the build process happens in root's home directory. The same reasoning applies to livecd-creator, at least in my eyes.
Comment 1 Jeremy Katz 2009-01-28 15:57:49 EST
We can't create a filesystem with binaries that are owned by (and suid!) root as a regular user... doing so would be a significant security problem as it would give a trivial way to root a box.

Much like mock has to run as root to create a chroot, we have to create the chroot that is the livecd by root.

Note You need to log in before you can comment on or make changes to this bug.