core/exec-invoke: don't set $TMPDIR if sandboxing is disabled

author Mike Yuan <me@yhndnzj.com>

Tue, 27 May 2025 20:35:03 +0000 (22:35 +0200)

committer Mike Yuan <me@yhndnzj.com>

Tue, 27 May 2025 20:35:03 +0000 (22:35 +0200)
author Mike Yuan <me@yhndnzj.com>
Tue, 27 May 2025 20:35:03 +0000 (22:35 +0200)
committer Mike Yuan <me@yhndnzj.com>
Tue, 27 May 2025 20:35:03 +0000 (22:35 +0200)
diff --git a/src/core/exec-invoke.c b/src/core/exec-invoke.c

index b27358d8dc96c69dec18a33360caeb6cc9738970..9e946c6cbbd77f35146acd37cd8da870f8ef7285 100644 (file)
--- a/src/core/exec-invoke.c
+++ b/src/core/exec-invoke.c
@@ -2193,7 +2193,7 @@ static int build_environment(
          }
  
          assert(c->private_var_tmp >= 0 && c->private_var_tmp < _PRIVATE_TMP_MAX);
-        if (c->private_tmp != c->private_var_tmp) {
+        if (needs_sandboxing && c->private_tmp != c->private_var_tmp) {
                  assert(c->private_tmp == PRIVATE_TMP_DISCONNECTED);
                  assert(c->private_var_tmp == PRIVATE_TMP_NO);
author	Mike Yuan <me@yhndnzj.com>
	Tue, 27 May 2025 20:35:03 +0000 (22:35 +0200)
committer	Mike Yuan <me@yhndnzj.com>
	Tue, 27 May 2025 20:35:03 +0000 (22:35 +0200)