[pkg-cryptsetup-devel] Bug#945463: closed by Guilhem Moulin <guilhem at debian.org> (Re: Bug#945463: cryptsetup-initramfs: cryptkeyctl initramfs hook fails if /var/tmp is mounted non-executable)

[Vlad]

Thanks for your reply,

but I believe those two things are orthogonal to each other. There 
really is no reason for the keyctl hook to test for EXECUTABILITY of 
decrypt_keyctl, only for PRESENCE, and then the only purpose of that 
hook anyway is to reduce initramfs bloat and install only if needed.

And running mkinitramfs on a non-executable TMPDIR is possible (been 
doing that for long time now), if you know what you're doing and don't 
need it executable. While this particular problem can be easily 
mitigated (via custom hook in /etc/initramfs-tools/hooks/), simply 
altering the unnecessary check for executability would satisfy both 
cases.

Yes, I know, but but mkinitramfs(8)! However this is not a bug report 
against mkinitramfs failing in non-exec TMPDIR, but about unnecessarily 
specific test done by the keyctl hook.

Thanks for considering.



On 2019-11-25 15:09, Debian Bug Tracking System wrote:
> This is an automatic notification regarding your Bug report
> which was filed against the cryptsetup-initramfs package:
> 
> #945463: cryptsetup-initramfs: cryptkeyctl initramfs hook fails if
> /var/tmp is mounted non-executable
> 
> It has been closed by Guilhem Moulin <guilhem at debian.org>.
> 
> Their explanation is attached below along with your original report.
> If this explanation is unsatisfactory and you have not received a
> better one in a separate message then please contact Guilhem Moulin
> <guilhem at debian.org> by
> replying to this email.

-- 
Vlad