Drawing lessons from fatal SELinux bug #1054350

Reindl Harald h.reindl at thelounge.net
Fri Jan 24 16:31:56 UTC 2014 


Am 24.01.2014 17:12, schrieb Ralf Corsepius:
> On 01/24/2014 04:57 PM, Reindl Harald wrote:
>> Am 24.01.2014 16:40, schrieb Ralf Corsepius:
>>> On 01/24/2014 04:06 PM, Reindl Harald wrote:
>>>>> a) This would blow away all installed packages, which aren't available in permanently enabled repos
>>>>
>>>> that is not true, try it out
>>> Been there many times
>>
>> no, you did not and you did also not in your example below
>>
>>> Real world example with a package I maintain, which currently has an update pending in updates-testing:
>>>
>>> # yum distro-sync
>>> ...
>>> Downgrading:
>>> gumbo-parser                              x86_64
>>> 1.0-0.2.20131001gitd90ea2b.fc20                               fedora
>>> ...
>>> Removed:
>>>    gumbo-parser.x86_64 0:1.0-0.2.20131204git87b99f2.fc20
>>>
>>> Installed:
>>>    gumbo-parser.x86_64 0:1.0-0.2.20131001gitd90ea2b.fc20
>>
>> nothing is blown away, you only did not read the output
>> because it was *downgraded* and *not* removed
> Rubbish - Stop being childish.

nobody here is childish, except maybe you

>> this is *completly* different than "blown away"
>> this is what distro-sync *is supposed to do*
>> upgrade or downgrade any package which is in whatever current repo
>> but it *does not* blow away packages not in any repo at all
>
> It if the package from updates-testing was fixing a critical bug on your system, your system would be
> malfunctioning afterwards

and exactly *that* was what i said in my first reply while you
stripped *exactly* that part out from your quote, most likely
because you replied with a reflex without read exactly 5 lines
completly

but that is *not* "a) This would blow away all installed packages, which aren't available in
permanently enabled repos" because that would mean *uninstall* any package which is currently
not in a enabled repo - and that is *not* what distro-sync does

below *again* my complete reply which is and was technical correct
while your "would blow away" is not

so before call others childish the next time before you reply to a message
read also the second pararaph to avoid useless discussions

-------- Original-Nachricht --------
Betreff: Re: Drawing lessons from fatal SELinux bug #1054350
Datum: Fri, 24 Jan 2014 16:06:21 +0100
Von: Reindl Harald <h.reindl at thelounge.net>
An: devel at lists.fedoraproject.org

Am 24.01.2014 15:55, schrieb Ralf Corsepius:
> On 01/24/2014 01:39 PM, Kevin Kofler wrote:
>> Adam Williamson wrote:
>>> Even if we can do it on the mirrors, we have no way to 'recall' a
>>> package from systems where it's already been installed (of course in the
>>> current case that wouldn't have worked anyway, but we're discussing the
>>> generic case here).
>>
>> Crazy idea of the day: Maybe our update tools should default to distro-sync
>> rather than update?
> No, for 2 reasons:
>
> a) This would blow away all installed packages, which aren't available in permanently enabled repos

that is not true, try it out

otherwise some packages would be not installed on my machines after a dist-upgrade
namely the ones never came from any repo and installed locally

> Most common such case is having selectively installed packages from updates-testing, because users are facing
> problems with these packages' nominal versions

*that* is the reason not to do so because it would downgrade anything updated
explicitly from updates-testing,kde-testing,koji which would be a bad default

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 246 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20140124/8dbc6c1b/attachment.sig>

More information about the devel mailing list