fix data dir perms: root dir must belong to root user

inspired by:
  https://forums.freebsd.org/threads/sshd_config-authorizedkeyscommand-not-working.70500/

freebsd_world.subr

@@ -52,17 +52,15 @@ populate_freebsd_world()
 
 	/usr/bin/touch "${data}/etc/fstab"
 
-	[ ! -d ${data}/usr/home ] && mkdir ${data}/usr/home
-	[ ! -d ${data}/usr/local ] && mkdir ${data}/usr/local
-	[ ! -d ${data}/compat ] && mkdir ${data}/compat
-	[ ! -d ${data}/usr/ports ] && mkdir ${data}/usr/ports
-	[ ! -d ${data}/usr/local/etc ] && mkdir -p ${data}/usr/local/etc
+	for i in ${data}/usr/home ${data}/usr/local ${data}/compat ${data}/usr/ports ${data}/usr/local/etc; do
+		[ ! -d ${i} ] && /bin/mkdir -p ${i}
+	done
 
 	if [ ${applytpl} -eq 1 ]; then
 		/usr/bin/touch ${data}/etc/src.conf
 		if [ -d "${jailskeldir}" ]; then
 			${ECHO} "${N1_COLOR}Applying skel dir template from: ${N2_COLOR}${jailskeldir}${N0_COLOR}"
-			cd ${jailskeldir} && /usr/bin/find -E ${jailskeldir} \( -type f -or -type d -or -type l \) -print |/usr/bin/sed s:${jailskeldir}:./:g |/usr/bin/cpio -pdmu ${data} > /dev/null 2>&1
+			cd ${jailskeldir} && /usr/bin/find -E ${jailskeldir} \( -type f -or -type d -or -type l \) -print | /usr/bin/sed s:${jailskeldir}:./:g | /usr/bin/cpio -pdmu ${data} > /dev/null 2>&1
 		else
 			${ECHO} "${N1_COLOR}Skel dir template not found: ${N2_COLOR}${jailskeldir}${N0_COLOR}"
 		fi
@@ -73,6 +71,9 @@ populate_freebsd_world()
 
 		[ ! -f "${data}/etc/localtime" -a -f /etc/localtime ] && /bin/cp -a /etc/localtime ${data}/etc
 	fi
+
+	# always set root:wheel
+	/usr/sbin/chown root:wheel ${data}
 }
 
 

jailctl/jcreate

@@ -250,6 +250,7 @@ fi
 ## MD backend
 
 create_fs ${data}
+
 [ $? -ne 0 ] && err 1 "${N1_COLOR}create_fs failed${N0_COLOR}"
 [ ! -d "${data}" ] && err 1 "Can't create datadir ${data}"