Our long term goal for security is to be able to operate distrobuilder inside an unprivileged LXD container, though even there we still have quite a few issues, especially around mounting iso, squashfs, ext4 filesystems. We can do some of that through FUSE, but once we’re dealing with code coming from the distro we’re building, it gets harder to go and alter their code to use FUSE rather than a straight mount.
Would be great to consider an interface for creating/managing block nodes, and setting up containers as described, but until we have those, and with vetting done, +1 from me.
What needs to happen next? Looks like we got +1 above but there’s no store hint in place yet that I can tell, need anyone else to review before @jdstrand or someone from store can action?
Btw, +1 from me as well ; your requirements make sense for use of classic in a build tool which is expected to have access to a many aspects of the system as you very clearly described. My only comment would be that maybe you don’t need classic for unpacking iso images; in the old checkbox project we obviated the need for root permissions by using isoinfo (from genisoimage package) to extract some or all files from an iso image. But it needs some extra elbow grease; if you’ll get classic anyway, doing so via a mount might be easier.
Note, classic requirements gathering and vetting does not require a vote or a waiting period.
As per previous responses, the requirements are understood and the publisher vetting. Granting use of classic. This is now live. Your next upload should pass automated review.
Also, thank you for the clear and detailed request.
