Backport upstream patch to workaround problem booting on live systems

- https://github.com/coreos/fedora-coreos-tracker/issues/339 - https://github.com/coreos/ignition/pull/907
2019-12-20 14:59:31 -05:00 · 2019-12-20 14:59:31 -05:00 · 1017665935
commit 1017665935
parent 367cb35982
2 changed files with 53 additions and 1 deletions
--- a/0001-stages-files-don-t-relabel-home-and-root-symlinks.patch
+++ b/0001-stages-files-don-t-relabel-home-and-root-symlinks.patch
@ -0,0 +1,44 @@
+From 5028460bba73b7580cb9198474358cb65afcbe0e Mon Sep 17 00:00:00 2001
+From: Jonathan Lebon <jonathan@jlebon.com>
+Date: Thu, 19 Dec 2019 16:21:19 -0500
+Subject: [PATCH] stages/files: don't relabel /home and /root symlinks
+
+On OSTree systems, those are just symlinks in the deployment root. If
+they're not labeled correctly already, it signals an issue with the disk
+creation process itself (and might also signal that the next time a
+deployment root is created, it'll also be mislabeled).
+
+Anyway, even on non-OSTree systems, it seems reasonable to expect that
+`/home` and `/root` at least already exist and don't need to be created
+(and thus don't need to be relabeld).
+
+It's possible that [fixing `getxattr` without a policy
+loaded](https://github.com/coreos/fedora-coreos-config/pull/245#issuecomment-560578750)
+would also fix this, since `setfiles` would see that the symlinks were
+already correctly labeled.
+
+In effect, this is completing what #632 started.
+
+Closes: https://github.com/coreos/fedora-coreos-tracker/issues/339
+---
+ internal/exec/stages/files/passwd.go | 4 +---
+ 1 file changed, 1 insertion(+), 3 deletions(-)
+
+diff --git a/internal/exec/stages/files/passwd.go b/internal/exec/stages/files/passwd.go
+index 8ba6cb1..c3d4737 100644
+--- a/internal/exec/stages/files/passwd.go
+++ b/internal/exec/stages/files/passwd.go
+@@ -68,9 +68,7 @@ func (s *stage) createPasswd(config types.Config) error {
+ 		s.relabel(deglobbed...)
+ 		s.relabel(
+ 			"/etc/.pwd.lock",
+-			"/home",
+-			"/root",
+-			// for OSTree-based systems (newer restorecon doesn't follow symlinks)
+			// for OSTree-based systems
+ 			"/var/home",
+ 			"/var/roothome",
+ 		)
+-- 
+2.20.1
+
--- a/ignition.spec
+++ b/ignition.spec
@ -73,13 +73,15 @@

 Name:           ignition
 Version:        2.1.1
-Release:        2.git%{shortcommit}%{?dist}
+Release:        3.git%{shortcommit}%{?dist}
 Summary:        First boot installer and configuration tool
 License:        ASL 2.0 and BSD
 URL:            https://%{provider_prefix}
 Source0:        https://%{provider_prefix}/archive/%{commit}/%{repo}-%{shortcommit}.tar.gz
 Source1:        https://%{dracutprovider_prefix}/archive/%{dracutcommit}/%{dracutrepo}-%{dracutshortcommit}.tar.gz

+Patch0:         0001-stages-files-don-t-relabel-home-and-root-symlinks.patch
+
 %define gopath %{_datadir}/gocode
 ExcludeArch: ppc64
 BuildRequires: golang >= 1.10
@ -375,6 +377,7 @@ Ignition project's Github releases page.
 # setup command reference: http://ftp.rpm.org/max-rpm/s1-rpm-inside-macros.html
 # unpack source0 and apply patches
 %setup -T -b 0 -q -n %{repo}-%{commit}
+%patch0 -p1

 # unpack source1 (dracut modules)
 %setup -T -D -a 1 -q -n %{repo}-%{commit}
@ -543,6 +546,11 @@ export GOPATH=%{buildroot}/%{gopath}:$(pwd)/vendor:%{gopath}
 %endif

 %changelog
+* Fri Dec 20 2019 Dusty Mabe <dusty@dustymabe.com> - 2.1.1-3.git40c0b57
+- Backport upstream patch to workaround problem booting on live systems
+    - https://github.com/coreos/fedora-coreos-tracker/issues/339
+    - https://github.com/coreos/ignition/pull/907
+
 * Tue Dec 17 2019 Andrew Jeddeloh <ajeddelo@redhat.com> - 2.1.1-2.git40c0b57
 - Add ignition-validate-nonlinux subpackage. This should not be installed. It
  is only used for building binaries to sign by Fedora release engineering and