| Summary: | Config protection does not work when emerging with ROOT set | ||
|---|---|---|---|
| Product: | Gentoo Linux | Reporter: | Martin von Gagern <Martin.vGagern> |
| Component: | [OLD] Core system | Assignee: | Portage team <dev-portage> |
| Status: | RESOLVED DUPLICATE | ||
| Severity: | major | CC: | meyerm, radek |
| Priority: | High | ||
| Version: | unspecified | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Package list: | Runtime testing required: | --- | |
I can confirm that this is also happening to me. I wondered why I wasn't getting any etc-update requests. This is a pretty serious bug and this bug report is months old, please fix it!! |
When emerging something with ROOT set to some other dir, files that should be config protected get overwritten without warning. Reproducible: Always Steps to Reproduce: 1. ROOT=/mirror emerge -K gradm 2. nano /mirror/etc/policy 3. ROOT=/mirror emerge -K gradm >>> Merging sys-apps/gradm-2.1.0 to /mirror/ >>> /mirror/sbin/gradm >>> /mirror/etc/grsec/policy >>> Safely unmerging already-installed instance... --- !mtime obj /mirror/sbin/gradm --- cfgpro obj /mirror/etc/grsec/policy file gets overwritten 4. ROOT=/mirror emerge -C gradm file protected and kept 5. nano /mirror/etc/policy 6. ROOT=/mirror CONFIG_PROTECT=/mirror/etc emerge -K gradm file still gets overwritten Actual Results: File gets overwritten at 3. Expected Results: File protected at 3., changes saved to salternate filename Or file deleted in 4. as well and protected in 6., so config protection is consistently relative to / and not to ${ROOT} Portage 2.0.51-r15 (hardened/x86/2.6, gcc-3.3.5, glibc-2.3.4.20040808-r1, 2.6.10-gentoo-r5 i686) ================================================================= System uname: 2.6.10-gentoo-r5 i686 Intel(R) Xeon(TM) CPU 2.40GHz Gentoo Base System version 1.4.16 Python: dev-lang/python-2.3.4-r1 [2.3.4 (#1, Feb 22 2005, 11:11:32)] dev-lang/python: 2.3.4-r1 ACCEPT_KEYWORDS="x86" AUTOCLEAN="yes" CONFIG_PROTECT="/etc /usr/X11R6/lib/X11/xkb /usr/kde/2/share/config /usr/kde/3.2/share/config /usr/kde/3.3/env /usr/kde/3.3/share/config /usr/kde/3.3/shutdown /usr/kde/3/share/config /usr/lib/mozilla/defaults/pref /usr/local/kde/3.2/share/config /usr/local/share/config /usr/share/config /usr/share/texmf/dvipdfm/config/ /usr/share/texmf/dvips/config/ /usr/share/texmf/tex/generic/config/ /usr/share/texmf/tex/platex/config/ /usr/share/texmf/xdvi/ /var/bind /var/qmail/control" CONFIG_PROTECT_MASK="/etc/afs/C /etc/afs/afsws /etc/gconf /etc/terminfo /etc/env.d" FEATURES="autoaddcvs autoconfig buildpkg ccache distlocks sandbox" USE="acl afs apache2 berkdb caps crypt dlloader gdbm hardened hardenedphp innodb ipv6 jpeg ldap libwww memlimit mysql ncurses nls oci8 odbc pam pdflib perl pic pie png postgres python readline ssl tcpd tiff unicode x86 xml2 zlib linguas_de" Unset: ASFLAGS, CBUILD, CTARGET, LANG, LC_ALL, LDFLAGS