From 84c61aea0fa067ddd5d7f2ef09c249964e41fda4 Mon Sep 17 00:00:00 2001
From: Lennart Poettering <lennart@poettering.net>
Date: Tue, 16 May 2023 11:44:27 +0200
Subject: base-filesystem: mention why we don't carry an entry for /tmp/ for
 now

---
 src/shared/base-filesystem.c | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'src')

diff --git a/src/shared/base-filesystem.c b/src/shared/base-filesystem.c
index 2d91e80ad6..0244c92c79 100644
--- a/src/shared/base-filesystem.c
+++ b/src/shared/base-filesystem.c
@@ -41,6 +41,10 @@ static const BaseFilesystem table[] = {
         { "sys",   0555, NULL,                         NULL, true },
         { "dev",   0555, NULL,                         NULL, true },
         { "run",   0555, NULL,                         NULL, true },
+        /* We don't add /tmp/ here for now (even though it's necessary for regular operation), because we
+         * want to support both cases where /tmp/ is a mount of its own (in which case we probably should set
+         * the mode to 1555, to indicate that noone should write to it, not even root) and when it's part of
+         * the rootfs (in which case we should set mode 1777), and we simply don't know what's right. */
 
         /* Various architecture ABIs define the path to the dynamic loader via the /lib64/ subdirectory of
          * the root directory. When booting from an otherwise empty root file system (where only /usr/ has
-- 
cgit v1.2.1