New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Debian 9 (Stretch) _apt user + _STRICT_BIN_PERMISSIONS errors #1352
Comments
The other way to fix this could be just:
But it needs testing. |
Good idea. That fixed the permissions errors when executing apt-key as the _apt user, but apt-get update as root fails with the same errors as originally linked. |
It fails when you run it manually but BOA adds extra flags as a workaround, so upgrades via barracuda work just fine. It’s not really BOA specific issue, but would be good to find and fix the actual culprit. |
Reopening. |
I'm just reporting in on this one. I'm hitting the exact same issue with with a box which was originally setup with stretch where two other boxes which were updated from jessie (and earlier) do not have this same issue. I hit the issue because apticron stopped sending out reports. Don't know if it's related yet, but when I jumped into the box and ran apticron manually I got this.
|
After reading through the full thread, and despite _apt already being part of the users group and permissions being valid on /tmp I found that the box which was working had this.
After adding the config file to the newer stretch box, and running the following
I got a successful update. |
Yes, that is why barracuda uses this file to disable this problematic Apple-like sandboxing during upgrades, which obviously will affect also apticron, because the file is normally deleted after the barracuda upgrade. We couldn't figure out all introduced dependencies affecting upgrades so finally decided to turn it off during upgrades. It's a major PITA, honestly. |
We have made it permanent to avoid confusion: 4698689 |
I ran square into this issue -- https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1577926 -- on a new BOA 4.0 HEAD install under Debian 9. Initial BOA install completed just fine but subsequent system upgrades (and even just apt-get update) had keyring problems.
Initial state: https://gist.github.com/pricejn2/47ad14118b03dfaadf7a35146410dde3#file-boa_issue_1352
After testing a number of additions to _BACKEND_ITEMS apt-get update is working again. This is the final list:
The launchpad bug references another workaround
echo 'APT::Sandbox::User "root";' >/etc/apt/apt.conf.d/00temp
though I did not test this.The text was updated successfully, but these errors were encountered: