From owner-freebsd-ports@FreeBSD.ORG Sat Jun 3 20:59:34 2006 Return-Path: X-Original-To: freebsd-ports@freebsd.org Delivered-To: freebsd-ports@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C106016A520 for ; Sat, 3 Jun 2006 20:59:34 +0000 (UTC) (envelope-from kris@obsecurity.org) Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1F15E43D5A for ; Sat, 3 Jun 2006 20:59:31 +0000 (GMT) (envelope-from kris@obsecurity.org) Received: from obsecurity.dyndns.org (elvis.mu.org [192.203.228.196]) by elvis.mu.org (Postfix) with ESMTP id 07E331A3C30; Sat, 3 Jun 2006 13:59:31 -0700 (PDT) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id AAF3B51559; Sat, 3 Jun 2006 16:59:28 -0400 (EDT) Date: Sat, 3 Jun 2006 16:59:28 -0400 From: Kris Kennaway To: PauAmma Message-ID: <20060603205927.GA4758@xor.obsecurity.org> References: <20060602204523.GA6184@roadrunner.buck.local> <20060603193141.GA3544@xor.obsecurity.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="wRRV7LY7NUeQGEoC" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.2.1i Cc: freebsd-ports@freebsd.org, Kris Kennaway Subject: Re: PR ports/76915 fell through the cracks? X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 03 Jun 2006 20:59:34 -0000 --wRRV7LY7NUeQGEoC Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Jun 03, 2006 at 03:49:42PM -0500, PauAmma wrote: > On Sat, 3 Jun 2006, Kris Kennaway wrote: >=20 > >On Fri, Jun 02, 2006 at 10:45:23PM +0200, Ulrich Spoerlein wrote: > >>PauAmma wrote: > >>> > >>>(http://www.freebsd.org/cgi/query-pr.cgi?pr=3D76915 for details) > >> > >>I didn't read the patch (yet) and I'm not familiar with the code, but if > >>we would enforce all pkg-install/deinstall scripts to be sh(1) scripts, > >>then it's simply a matter of replacing ./foo with 'sh foo', right? >=20 > That would require changes to pkg_delete and related utilities, which=20 > may actually be a good idea (see below). >=20 > >And potentially many other similar changes. The full scope of the > >changes required to fully support a noexec /var is clearly enormous, > >which is one reason why I don't want to add partial support for this > >nonstandard and rarely-used configuration. >=20 > IMO this wouldn't be supporting it strictly speaking, more along the line= s=20 > of not trying to and failing messily. That said, I'm beginning to think= =20 > that if this specific problem should be fixed at all, the fix needs to go= =20 > in pkg_delete and friends, not the ports system itself: >=20 > 1- This would address the performance concerns Sergey Matveychuk raised. >=20 > 2- The same problem happens when using pkg_delete -f directly. >=20 > Considering the above, and so I don't embark onto something else that onl= y=20 > I care about, where would you suggest I ask before I start? >=20 > (Oh, and since this is no longer ports-related, you can probably close th= e=20 > PR unless you think someone may want to revisit it later.) Personally I don't think it is worth attempting to handle, as I mentioned previously. Kris --wRRV7LY7NUeQGEoC Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (FreeBSD) iD8DBQFEgfgvWry0BWjoQKURAsT3AJ45dBssmDebyNYscgZ7/fhPj5pc6gCgtf72 LqC1BhTfHCGoRXfFjeG9Nh8= =l4A1 -----END PGP SIGNATURE----- --wRRV7LY7NUeQGEoC--