snap-confine cannot be setuid root on openSUSE
Bug #1657098 reported by
Zygmunt Krynicki
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
snapd |
Won't Fix
|
Undecided
|
Zygmunt Krynicki |
Bug Description
OpenSUSE has a special system that (via the permissions package) that dictates which executable can be setuid root on the whole system. Extensions to that list are carefully managed through the core distribution. It would be good for snap-confine to work without requiring real root (e.g. through Linux capabilities) so that there's one less roadblock for becoming available to OpenSUSE users and developers.
NOTE: this is a clone of the following github issue https:/
Changed in snapd: | |
status: | New → Confirmed |
assignee: | nobody → Zygmunt Krynicki (zyga) |
tags: | added: cross-distro |
To post a comment you must log in.
This is technically also a problem for Fedora, too, but we're able to ignore it for the moment, because package linting is advisory rather than hard blocker to package builds.
But I'd like to switch Fedora back to file caps ASAP.