[Buildroot] [PATCH 1/1] openssh: replace individual ssh-keygen calls with a single call
Thomas Petazzoni
thomas.petazzoni at free-electrons.com
Mon Aug 4 08:24:56 UTC 2014
Dear Danomi Manchego,
On Sun, 3 Aug 2014 09:25:13 -0400, Danomi Manchego wrote:
> I think this issue is not limited to openssh - there's other things
> that want to occasionally save stuff to /etc, /var, even /root (e.g.
> gstreamer plugins cache). I suppose that efforts could be made to try
> to patch/configure these locations to all be in one place (/var ?),
> but that still assumes a writable directory. So, unless we direct all
> attempts to save state to a tmpfs, I think it always come back to
> being the user's responsibility.
>
> So for now I'm content to keep openssh as it is, rather than hunt down
> all the places that might try to write to etc (, var, $HOME, ...).
Buildroot is normally supposed to support a read-only root filesystem,
and there are already several things being done to make this possible:
* /etc/resolv.conf is a symbolic link to /tmp/resolv.conf
* Most of the /var/<foo> directories are symbolic links to /tmp.
Only /var/lib is not.
* /tmp is mounted as tmpfs, so that it's read/write even if the rootfs
is read only.
Thomas
--
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com
More information about the buildroot
mailing list