From owner-freebsd-emulation@FreeBSD.ORG Sun Feb 13 19:17:00 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 08D1F16A4CE; Sun, 13 Feb 2005 19:17:00 +0000 (GMT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id C343F43D39; Sun, 13 Feb 2005 19:16:59 +0000 (GMT) (envelope-from sobomax@FreeBSD.org) Received: from freefall.freebsd.org (sobomax@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.1/8.13.1) with ESMTP id j1DJGxit047122; Sun, 13 Feb 2005 19:16:59 GMT (envelope-from sobomax@freefall.freebsd.org) Received: (from sobomax@localhost) by freefall.freebsd.org (8.13.1/8.13.1/Submit) id j1DJGxSV047118; Sun, 13 Feb 2005 19:16:59 GMT (envelope-from sobomax) Date: Sun, 13 Feb 2005 19:16:59 GMT From: Maxim Sobolev Message-Id: <200502131916.j1DJGxSV047118@freefall.freebsd.org> To: avg@icyb.net.ua, sobomax@FreeBSD.org, emulation@FreeBSD.org Subject: Re: kern/72922: linux emulation: suid/sgid threaded applications hang X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Feb 2005 19:17:00 -0000 Synopsis: linux emulation: suid/sgid threaded applications hang State-Changed-From-To: closed->open State-Changed-By: sobomax State-Changed-When: Sun Feb 13 19:12:42 GMT 2005 State-Changed-Why: Sorry, but the solution is not that simple as it appeares. The following explains the complexity: On Fri, 11 Feb 2005, Maxim Sobolev wrote: >>> > Bypassing the SIGTHR checks for setuid processes, just seems like a bad >>> > idea -- that's precisely the sort of internal process functionality that >>> > shouldn't be exposed to potentially malicious attackers. Maybe what's >>> > needed is some new logic that says it's OK for SIGTHR to be used between >>> > processes if they have the same process linux thread leader? > >> >> Isn't SIGTHR(32) just ignored by any usual process out there? So that it >> should't create any new problems, unless process actualy knowingly uses >> this signal in which case it should know what it does. Am I missing >> something? Signals are used in four kinds of ways: - Notification of exceptional error conditions in thread instruction flow, such as divide by zero, floating point problems, illegal instruction, page fault, etc. - Notification of thread/process events for the management of process state, such as asynchronous signals for I/O, timers, pipe errors, thread events. - Notification of system conditions and events, such as exceeding CPU quotas, death of child process, tty state changes, etc. - Inter-process communication, such as SIGQUIT, SIGUSR1, and so on. In general, the first two categories of signals are ones that programs have semantic expectations for -- they're signals they may catch in order to perform error processing, instruction cleanup, user space paging, wakeups, I/O callbacks, etc. And they're ones where you typically don't want them getting delivered in ways that violate program assumptions, as it can result in security vulnerabilities. I.e., it's a odd property of the UNIX signal semantics that they can be delivered from other processes, and they're often handled poorly. The additional protection is provided so that in the event that the implementation of handling the signals is poor when the "signals should never be generated", we try to avoid privilege escalation. SIGTHR is definitely in this category -- if you have a threaded setuid app, you don't want external unprivileged applications messing with its thread state, right? This is the theory under which the other signals are also blocked for setuid processes: you don't want attacking processes to frob the I/O state, and so on. Robert N M Watson On Sun, 13 Feb 2005, Maxim Sobolev wrote: >> I see. I've just committed a change which solves this problem by >> allowing emulation layers to bypass FreeBSD-specific security checks >> during signal delivery. This makes sense since emulation layers can have >> different meanings for signals and/or different security restrictions. I agree that the problem needs fixing, but I think this was entirely the wrong solution. Even if Linux processes expect the signal to have one set of semantics on the target, changing how it affects all processes isn't the right solution. Disabling a broad range of protections wasn't even necessary to accomplish this fix. I think enough information is present to do this check properly, and we should therefore do it properly. I would be happy to help review further patches to correct this problem. I also object to the name pedantic: we're not the only operating system to enforce these protections, and there have been specific vulnerabilities in the past of precisely this sort of protection are intended to address. Robert N M Watson On Sun, 13 Feb 2005, Maxim Sobolev wrote: >> Split out kill(2) syscall service routine into user-level and kernel part, the >> former is callable from user space and the latter from the kernel one. Make >> kernel version take additional argument which tells if the respective call >> should check for additional restrictions for sending signals to suid/sugid >> applications or not. Read: allow emulated binaries to bypass security checks. >> Make all emulation layers using non-checked version, since signal numbers in >> emulation layers can have different meaning that in native mode and such >> protection can cause misbehaviour. This is inaccurate. You've not only bypassed a broad range of desired security checks for linux processes against other linux processes, but you've also bypassed security checks from linux processes to any native FreeBSD process, essentially disabling the checks. I.e., if a machine is running with the linux ABI code, you've entirely disabled the checks for the system since an attacker will simply attack using the linux ABI if they want to attack using these signals. >> As a result remove LIBTHR from the signals allowed to be delivered to a >> suid/sugid application. s/LIBTHR/SIGTHR/ >> Requested (sorta) by: rwatson Not requested by: rwatson Was there a problem with the suggestion I made of adding an additional check in p_cansignal() beside the same check that says "if this is the same process, allow the signal" that understands linux thread leaders, that would permit the SIGTHR signal if two processes are in the linux thread group? The difference between p_cansignal() and cr_cansignal() is that cr_cansignal() authorized solely based on the subject credential, so can be used with cached subjects, and that p_cansignal() takes into account additional subject process and thread state to allow "special" signal cases permitted by virtue of that state. I.e., "processes can always signal themselves" and "SIGCONT is always permitted in the same session". Using this model you could specifically authorize use for linuxthreads and also threaded linux binaries, and avoid the remaining issues entirely. Please back out this change. Robert N M Watson http://www.freebsd.org/cgi/query-pr.cgi?pr=72922 From owner-freebsd-emulation@FreeBSD.ORG Mon Feb 14 11:01:45 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 65B0716A4EC for ; Mon, 14 Feb 2005 11:01:45 +0000 (GMT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2C94343D2F for ; Mon, 14 Feb 2005 11:01:45 +0000 (GMT) (envelope-from owner-bugmaster@freebsd.org) Received: from freefall.freebsd.org (peter@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.1/8.13.1) with ESMTP id j1EB1jn0015013 for ; Mon, 14 Feb 2005 11:01:45 GMT (envelope-from owner-bugmaster@freebsd.org) Received: (from peter@localhost) by freefall.freebsd.org (8.13.1/8.13.1/Submit) id j1EB1i4l015006 for emulation@freebsd.org; Mon, 14 Feb 2005 11:01:44 GMT (envelope-from owner-bugmaster@freebsd.org) Date: Mon, 14 Feb 2005 11:01:44 GMT Message-Id: <200502141101.j1EB1i4l015006@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: peter set sender to owner-bugmaster@freebsd.org using -f From: FreeBSD bugmaster To: emulation@FreeBSD.org Subject: Current problem reports assigned to you X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Feb 2005 11:01:45 -0000 Current FreeBSD problem reports Critical problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- o [2003/06/28] kern/53874 emulation /usr/ports/emulators/linux_base isn't wor 1 problem total. Serious problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- o [2000/09/22] kern/21463 emulation Linux compatability mode should not allow o [2000/11/13] kern/22826 emulation Memory limits have no effect in linux com o [2001/03/28] kern/26171 emulation not work Linux-emulator, but hi is work i p [2002/04/16] kern/37161 emulation ext2 linux file system, error handling la o [2002/11/07] kern/45023 emulation flexlm does not run with linux-base-7, st o [2003/09/24] kern/57192 emulation linux-ibm-java1.4 freeze f [2004/03/04] ports/63747 emulation vmmon is not performing o [2004/06/20] kern/68131 emulation java/linux-ibm-jdk14: linux ibm jdk 1.4.1 o [2004/06/22] ports/68202 emulation [patch] Make vmware2 compile on -current o [2004/06/24] ports/68265 emulation [patch] Make rtc compile on -current (nee o [2004/10/20] kern/72922 emulation linux emulation: suid/sgid threaded appli o [2005/01/25] ports/76644 emulation FreeBSD 5.3 will freeze or crash when run 12 problems total. Non-critical problems S Submitted Tracker Resp. Description ------------------------------------------------------------------------------- o [1999/04/16] i386/11165 emulation IBCS2 don't work correctly with PID_MAX 9 o [2000/12/15] kern/23561 emulation Linux compatibility mode does not support o [2001/08/14] kern/29698 emulation linux ipcs doesn'work o [2002/06/12] kern/39201 emulation ptrace(2) and rfork(RFLINUXTHPN) confuse o [2002/08/11] kern/41543 emulation Easier wine/w23 support p [2002/09/04] kern/42404 emulation TIOCSCTTY not implemented in linuxulator s [2002/09/06] kern/42466 emulation linux: 'ipc' typ=258 not implemented p [2003/01/22] kern/47349 emulation Fake a sound ioctl (plus linux hook) o [2003/08/21] kern/55835 emulation Linux IPC emulation missing SETALL syscal f [2004/06/30] ports/68532 emulation Add support for multiple VMWare instances o [2004/09/09] ports/71536 emulation emulators/rtc: kernel msg "rtc: [number] o [2004/10/19] ports/72865 emulation emulators/vmware3 crashes on 5.3-STABLE o [2004/10/20] kern/72920 emulation linux emulation : path "prefixing" is not o [2004/10/26] kern/73165 emulation [patch] getting rid of COMPAT_43 dependan o [2004/11/10] kern/73777 emulation [patch] linux emulation: root dir special o [2004/11/23] kern/74302 emulation [PATCH] Our Linux binary support does not 16 problems total. From owner-freebsd-emulation@FreeBSD.ORG Tue Feb 15 05:34:29 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 083BF16A4CE for ; Tue, 15 Feb 2005 05:34:29 +0000 (GMT) Received: from smtp2.mailblocks.com (smtp2.mailblocks.com [140.174.9.91]) by mx1.FreeBSD.org (Postfix) with SMTP id A846343D2F for ; Tue, 15 Feb 2005 05:34:28 +0000 (GMT) (envelope-from "") Received: (qmail 25046 invoked from network); 15 Feb 2005 05:34:28 -0000 Received: from 10.10.0.70 (HELO mailblocks.com) (10.10.0.70) by 10.10.0.9 with SMTP; 15 Feb 2005 05:34:28 -0000 Date: Mon, 14 Feb 2005 21:34:28 -0800 From: "Ivan (ivan[at]ivan.com)" References: <200502150021640.SM01068@ivan.com> received: (Mailblocks challenge generated); Mon, 14 Feb 2005 21:34:28 -0800 received: from 10.10.0.93 by app21.mailblocks.com (192.168.225.70) with SMTP for ivan@ivan.com; Mon, 14 Feb 2005 21:34:28 -0800 received: (qmail 21035 invoked from network); 15 Feb 2005 05:34:27 -0000 received: from 206.67.55.251 (HELO spock2.media3.net) (206.67.55.251) by 140.174.9.93 with SMTP; 15 Feb 2005 05:34:27 -0000 received: from SMTP32-FWD by ivan.com (SMTP32) id A86C802D200B84058; Tue, 15 Feb 2005 00:22:08 -0500 received: from ivan.com [212.154.165.102] by spock2.media3.net with ESMTP (SMTPD32-8.13) id A6D12D200B8; Tue, 15 Feb 2005 00:21:21 -0500 X-MB-Message-Source: MailblocksSystem To: freebsd-emulation@freebsd.org X-MB-Message-Type: ChallengeSpiderAuthorize In-Reply-To: <200502150021640.SM01068@ivan.com> Content-Type: multipart/mixed; boundary="--------MailBlocks_8C48AED7B53B000_CEC_1" Message-Id: <8C6E13726F3F539-770-2B71B1@app21.mailblocks.com> MIME-Version: 1.0 X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: Re: Failure (ivan@ivan.com) [Authorize] X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 15 Feb 2005 05:34:29 -0000 This is a multi-part message in MIME format. ----------MailBlocks_8C48AED7B53B000_CEC_1 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Hi, You just sent an email to my ivan@ivan.com account, which is now being managed by my Mailblocks spam-free email service. (If you didnt recently send a message to me, please see the Note below*.) Because this is the first time you have sent to this email account, please confirm yourself so you'll be recognized when you send to me in the future. It's simple. To prove your message comes from a human and not a computer, go to: http://app21.mailblocks.com/confirm2.aspx?ck=BWl2YW4xDm1haWxibG9ja3MuY29tHWZyZWVic2QtZW11bGF0aW9uQGZyZWVic2Qub3JnLoKGJQ**&a=1 This is the email message you have sent that is in my Pending folder waiting for your quick authentication: Subject: Failure (ivan@ivan.com) Sent: Feb 14, 9:34 PM If you have not confirmed within several days, your message will automatically be deleted. *Note: If you did not send the above message to me, and you would like to report this email as unwanted, please notify Mailblocks by going to: http://app21.mailblocks.com/didnotsend.aspx?ck=BWl2YW4xDm1haWxibG9ja3MuY29tHWZyZWVic2QtZW11bGF0aW9uQGZyZWVic2Qub3JnLoKGJQ**&a=1 We will ensure that you do not receive any further notification regarding the above message. Mailblocks investigates all reports made using this link. ----- Email for Humans... Mailblocks Try Mailblocks web-based personal email -- faster, cleaner interface, more storage, bigger attachments, and 100% spam-free. http://about.mailblocks.com/?src=emailauthorize (c) 2003-2004 Mailblocks Inc. All rights reserved. ----------MailBlocks_8C48AED7B53B000_CEC_1-- From owner-freebsd-emulation@FreeBSD.ORG Wed Feb 16 08:10:54 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F0A6516A4CE for ; Wed, 16 Feb 2005 08:10:54 +0000 (GMT) Received: from dragon.nuxi.com (trang.nuxi.com [66.93.134.19]) by mx1.FreeBSD.org (Postfix) with ESMTP id AA8D143D45 for ; Wed, 16 Feb 2005 08:10:54 +0000 (GMT) (envelope-from obrien@NUXI.com) Received: from dragon.nuxi.com (obrien@localhost [127.0.0.1]) by dragon.nuxi.com (8.13.1/8.13.1) with ESMTP id j1G8Aret034395 for ; Wed, 16 Feb 2005 00:10:53 -0800 (PST) (envelope-from obrien@dragon.nuxi.com) Received: (from obrien@localhost) by dragon.nuxi.com (8.13.1/8.13.1/Submit) id j1G8Arwm034394 for freebsd-emulation@freebsd.org; Wed, 16 Feb 2005 00:10:53 -0800 (PST) (envelope-from obrien) Date: Wed, 16 Feb 2005 00:10:53 -0800 From: "David O'Brien" To: freebsd-emulation@freebsd.org Message-ID: <20050216081053.GA34221@dragon.nuxi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.1i X-Operating-System: FreeBSD 6.0-CURRENT Organization: The NUXI BSD Group X-Pgp-Rsa-Fingerprint: B7 4D 3E E9 11 39 5F A3 90 76 5D 69 58 D9 98 7A X-Pgp-Rsa-Keyid: 1024/34F9F9D5 Subject: Old linux_base version for linux-gtk X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: obrien@freebsd.org List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Feb 2005 08:10:55 -0000 'ports/x11-toolkits/linux-gtk/Makefile' has: # Set the version of linux_base BASEVERSION?= 7.1 Is there a known reason why we cannot bump this to [Red Hat] 8.0? -- -- David (obrien@FreeBSD.org) From owner-freebsd-emulation@FreeBSD.ORG Wed Feb 16 08:12:37 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D310C16A4CE for ; Wed, 16 Feb 2005 08:12:37 +0000 (GMT) Received: from dragon.nuxi.com (trang.nuxi.com [66.93.134.19]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8F10443D45 for ; Wed, 16 Feb 2005 08:12:37 +0000 (GMT) (envelope-from obrien@NUXI.com) Received: from dragon.nuxi.com (obrien@localhost [127.0.0.1]) by dragon.nuxi.com (8.13.1/8.13.1) with ESMTP id j1G8CaM1034676 for ; Wed, 16 Feb 2005 00:12:37 -0800 (PST) (envelope-from obrien@dragon.nuxi.com) Received: (from obrien@localhost) by dragon.nuxi.com (8.13.1/8.13.1/Submit) id j1G8Ca7B034675 for freebsd-emulation@freebsd.org; Wed, 16 Feb 2005 00:12:36 -0800 (PST) (envelope-from obrien) Date: Wed, 16 Feb 2005 00:12:36 -0800 From: "David O'Brien" To: freebsd-emulation@freebsd.org Message-ID: <20050216081236.GA34471@dragon.nuxi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.1i X-Operating-System: FreeBSD 6.0-CURRENT Organization: The NUXI BSD Group X-Pgp-Rsa-Fingerprint: B7 4D 3E E9 11 39 5F A3 90 76 5D 69 58 D9 98 7A X-Pgp-Rsa-Keyid: 1024/34F9F9D5 Subject: AMD64 patch for 'ports/x11-toolkits/linux-gtk' X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: obrien@freebsd.org List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Feb 2005 08:12:38 -0000 Any have a problem with this patch? 1. fix ordering to better follow Mk/bsd.port.mk guidelines 2. allow "ARCH" to be over-ridable. -- -- David (obrien@FreeBSD.org) Index: Makefile =================================================================== RCS file: /home/ncvs/ports/x11-toolkits/linux-gtk/Makefile,v retrieving revision 1.28 diff -u -r1.28 Makefile --- Makefile 31 Dec 2004 18:24:09 -0000 1.28 +++ Makefile 16 Feb 2005 08:09:19 -0000 @@ -21,10 +21,17 @@ BUILD_DEPENDS+= rpm:${PORTSDIR}/archivers/rpm RUN_DEPENDS?= ${LINUXBASE}/usr/X11R6/lib/libX11.so.6:${PORTSDIR}/x11/linux-XFree86-libs +ONLY_FOR_ARCHS?= i386 alpha amd64 + +.include + +.if (${ARCH} == "amd64") +ARCH= i386 +RPMFLAGS+= --ignorearch +.endif + USE_LINUX_PREFIX= yes USE_LINUX= yes - -ONLY_FOR_ARCHS?= i386 alpha DIST_SUBDIR?= rpm EXTRACT_ONLY= NO_BUILD= yes @@ -66,4 +73,4 @@ ${FIND} -d * -type d | ${SED} -e 's:^:@dirrm :' \ >> ${PLIST}.new -.include +.include From owner-freebsd-emulation@FreeBSD.ORG Wed Feb 16 08:31:19 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EA10916A4CE for ; Wed, 16 Feb 2005 08:31:19 +0000 (GMT) Received: from dragon.nuxi.com (trang.nuxi.com [66.93.134.19]) by mx1.FreeBSD.org (Postfix) with ESMTP id 693B143D48 for ; Wed, 16 Feb 2005 08:31:19 +0000 (GMT) (envelope-from obrien@NUXI.com) Received: from dragon.nuxi.com (obrien@localhost [127.0.0.1]) by dragon.nuxi.com (8.13.1/8.13.1) with ESMTP id j1G8VIxN037542 for ; Wed, 16 Feb 2005 00:31:19 -0800 (PST) (envelope-from obrien@dragon.nuxi.com) Received: (from obrien@localhost) by dragon.nuxi.com (8.13.1/8.13.1/Submit) id j1G8VIvf037541 for freebsd-emulation@freebsd.org; Wed, 16 Feb 2005 00:31:18 -0800 (PST) (envelope-from obrien) Date: Wed, 16 Feb 2005 00:31:18 -0800 From: "David O'Brien" To: freebsd-emulation@freebsd.org Message-ID: <20050216083118.GA37339@dragon.nuxi.com> References: <20050216081236.GA34471@dragon.nuxi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20050216081236.GA34471@dragon.nuxi.com> User-Agent: Mutt/1.4.1i X-Operating-System: FreeBSD 6.0-CURRENT Organization: The NUXI BSD Group X-Pgp-Rsa-Fingerprint: B7 4D 3E E9 11 39 5F A3 90 76 5D 69 58 D9 98 7A X-Pgp-Rsa-Keyid: 1024/34F9F9D5 Subject: Re: AMD64 patch for 'ports/x11-toolkits/linux-gtk' X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: obrien@freebsd.org List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Feb 2005 08:31:20 -0000 On Wed, Feb 16, 2005 at 12:12:36AM -0800, David O'Brien wrote: Any have a problem with this updated patch? 1. uses "ARCH" instead of "MACHINE_ARCH" 2. allow "ARCH" to be over-ridable. 3. fix ordering to better follow Mk/bsd.port.mk guidelines -- -- David (obrien@FreeBSD.org) Index: x11-toolkits/linux-gtk/Makefile =================================================================== RCS file: /home/ncvs/ports/x11-toolkits/linux-gtk/Makefile,v retrieving revision 1.28 diff -u -r1.28 Makefile --- x11-toolkits/linux-gtk/Makefile 31 Dec 2004 18:24:09 -0000 1.28 +++ x11-toolkits/linux-gtk/Makefile 16 Feb 2005 08:26:15 -0000 @@ -21,16 +21,23 @@ BUILD_DEPENDS+= rpm:${PORTSDIR}/archivers/rpm RUN_DEPENDS?= ${LINUXBASE}/usr/X11R6/lib/libX11.so.6:${PORTSDIR}/x11/linux-XFree86-libs +ONLY_FOR_ARCHS?= i386 alpha amd64 + USE_LINUX_PREFIX= yes -USE_LINUX= yes -ONLY_FOR_ARCHS?= i386 alpha +.include + +.if (${ARCH} == "amd64") +ARCH= i386 +RPMFLAGS+= --ignorearch +.endif +USE_LINUX= yes DIST_SUBDIR?= rpm EXTRACT_ONLY= NO_BUILD= yes NO_FILTER_SHLIBS= yes -PLIST?= ${PKGDIR}/pkg-plist.${MACHINE_ARCH} -MD5_FILE?= ${MASTERDIR}/distinfo.${MACHINE_ARCH} +PLIST?= ${PKGDIR}/pkg-plist.${ARCH} +MD5_FILE?= ${MASTERDIR}/distinfo.${ARCH} # Let's avoid hardcoding 'en' as the language. LANG= en @@ -47,7 +54,7 @@ RPM_SET?= gtk+-1.2.9-4.${MACHINE_ARCH}.rpm .endif DBPATH= /var/lib/rpm -RPMFLAGS= --ignoreos --root ${PREFIX} --dbpath ${DBPATH} \ +RPMFLAGS+= --ignoreos --root ${PREFIX} --dbpath ${DBPATH} \ --nodeps --replacepkgs RPMDIR= ${DISTDIR}/${DIST_SUBDIR} @@ -66,4 +73,4 @@ ${FIND} -d * -type d | ${SED} -e 's:^:@dirrm :' \ >> ${PLIST}.new -.include +.include Index: x11-fonts/linux-fontconfig/Makefile =================================================================== RCS file: /home/ncvs/ports/x11-fonts/linux-fontconfig/Makefile,v retrieving revision 1.8 diff -u -r1.8 Makefile --- x11-fonts/linux-fontconfig/Makefile 6 Feb 2005 00:41:17 -0000 1.8 +++ x11-fonts/linux-fontconfig/Makefile 16 Feb 2005 08:27:41 -0000 @@ -41,6 +41,7 @@ ${FIND} * -type f -o -type l > ${PLIST}; \ ${FIND} -d * -type d | ${GREP} font | \ ${SED} -e 's:^:@dirrm :' >> ${PLIST} + @${MKDIR} ${PREFIX}/etc/fonts post-install: @${INSTALL_DATA} ${WRKSRC}/tmp/etc/fonts/fonts.conf ${PREFIX}/etc/fonts/ From owner-freebsd-emulation@FreeBSD.ORG Wed Feb 16 10:54:51 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 008A916A4CE; Wed, 16 Feb 2005 10:54:51 +0000 (GMT) Received: from mailout04.sul.t-online.com (mailout04.sul.t-online.com [194.25.134.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9135243D2F; Wed, 16 Feb 2005 10:54:50 +0000 (GMT) (envelope-from Alexander@Leidinger.net) Received: from fwd11.aul.t-online.de by mailout04.sul.t-online.com with smtp id 1D1MpV-00042c-00; Wed, 16 Feb 2005 11:54:49 +0100 Received: from Andro-Beta.Leidinger.net (T-S+c0ZB8eFWzhmBuz0tHld9jGnEURi4J7HcpvgKUrG2m-GvcQup0Z@[84.128.198.180]) by fmrl11.sul.t-online.com with esmtp id 1D1Mp6-1yjrSi0; Wed, 16 Feb 2005 11:54:24 +0100 Received: from localhost (localhost [127.0.0.1])j1GArq38056571; Wed, 16 Feb 2005 11:53:52 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from 141.113.101.32 ([141.113.101.32]) by netchild.homeip.net (Horde) with HTTP for ; Wed, 16 Feb 2005 11:53:52 +0100 Message-ID: <20050216115352.iuw5qn60cowsokso@netchild.homeip.net> X-Priority: 3 (Normal) Date: Wed, 16 Feb 2005 11:53:52 +0100 From: Alexander Leidinger To: obrien@freebsd.org References: <20050216081236.GA34471@dragon.nuxi.com> <20050216083118.GA37339@dragon.nuxi.com> In-Reply-To: <20050216083118.GA37339@dragon.nuxi.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-15; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) H3 (4.0.2) / FreeBSD-4.11 X-ID: T-S+c0ZB8eFWzhmBuz0tHld9jGnEURi4J7HcpvgKUrG2m-GvcQup0Z@t-dialin.net X-TOI-MSGID: 67e65704-8526-4aa3-9aab-09e7fa90cac7 cc: freebsd-emulation@freebsd.org Subject: Re: AMD64 patch for 'ports/x11-toolkits/linux-gtk' X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Feb 2005 10:54:51 -0000 David O'Brien wrote: > On Wed, Feb 16, 2005 at 12:12:36AM -0800, David O'Brien wrote: > Any have a problem with this updated patch? > > 1. uses "ARCH" instead of "MACHINE_ARCH" What's the content of those variables on pc98? Will this port still work on those systems? You haven't replaced every instance of MACHINE_ARCH. Are you sure this also works after "make distclean"? > 2. allow "ARCH" to be over-ridable. > 3. fix ordering to better follow Mk/bsd.port.mk guidelines Looks ok ("s:ARCH:ONLY_FOR_ARCH:" in 2.). I suggest to investigate the linux-fontconfig part on your system instead of patching it in the ports tree. The directory is created just fine here (on i386). Bye, Alexander. -- http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137 The Golden Rule of Arts and Sciences: He who has the gold makes the rules. From owner-freebsd-emulation@FreeBSD.ORG Wed Feb 16 11:08:14 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BA33416A4CE; Wed, 16 Feb 2005 11:08:14 +0000 (GMT) Received: from mailout10.sul.t-online.com (mailout10.sul.t-online.com [194.25.134.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 678BF43D1D; Wed, 16 Feb 2005 11:08:14 +0000 (GMT) (envelope-from Alexander@Leidinger.net) Received: from fwd07.aul.t-online.de by mailout10.sul.t-online.com with smtp id 1D1N2T-0001nK-00; Wed, 16 Feb 2005 12:08:13 +0100 Received: from Andro-Beta.Leidinger.net (JJJpScZJYekYUgeRbt7qzmVhzmq1-ihC1lcxTkYyQ+2X55H9kUwD4Y@[84.128.198.180]) by fmrl07.sul.t-online.com with esmtp id 1D1N20-1Hapgu0; Wed, 16 Feb 2005 12:07:44 +0100 Received: from localhost (localhost [127.0.0.1])j1GB7Bjq058551; Wed, 16 Feb 2005 12:07:11 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from 141.113.101.32 ([141.113.101.32]) by netchild.homeip.net (Horde) with HTTP for ; Wed, 16 Feb 2005 12:07:11 +0100 Message-ID: <20050216120711.3hn0uevncwws4ss8@netchild.homeip.net> X-Priority: 3 (Normal) Date: Wed, 16 Feb 2005 12:07:11 +0100 From: Alexander Leidinger To: obrien@freebsd.org References: <20050216081053.GA34221@dragon.nuxi.com> In-Reply-To: <20050216081053.GA34221@dragon.nuxi.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-15; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) H3 (4.0.2) / FreeBSD-4.11 X-ID: JJJpScZJYekYUgeRbt7qzmVhzmq1-ihC1lcxTkYyQ+2X55H9kUwD4Y@t-dialin.net X-TOI-MSGID: 2bed6f55-83ee-41f2-a34d-a9fbe80e9c19 cc: freebsd-emulation@freebsd.org Subject: Re: Old linux_base version for linux-gtk X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Feb 2005 11:08:14 -0000 David O'Brien wrote: > 'ports/x11-toolkits/linux-gtk/Makefile' has: > > # Set the version of linux_base > BASEVERSION?= 7.1 > > Is there a known reason why we cannot bump this to [Red Hat] 8.0? It's used by several ports. If every "slave" port overrides the BASEVERSION, there's no reason why we can't bump this. I've just started the following, but haven't seen the result yet: grep BASEVERSION $(grep -R x11-toolkits/linux-gtk/Makefile /usr/ports | cut -d : -f 1) This smells like an experimental ports build run candidate. Bye, Alexander. -- http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137 It is so soon that I am done for, I wonder what I was begun for. -- Epitaph, Cheltenham Churchyard From owner-freebsd-emulation@FreeBSD.ORG Wed Feb 16 17:49:28 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C576B16A4CE for ; Wed, 16 Feb 2005 17:49:28 +0000 (GMT) Received: from dragon.nuxi.com (trang.nuxi.com [66.93.134.19]) by mx1.FreeBSD.org (Postfix) with ESMTP id 69AE343D31 for ; Wed, 16 Feb 2005 17:49:28 +0000 (GMT) (envelope-from obrien@NUXI.com) Received: from dragon.nuxi.com (obrien@localhost [127.0.0.1]) by dragon.nuxi.com (8.13.1/8.13.1) with ESMTP id j1GHnRjn083503; Wed, 16 Feb 2005 09:49:27 -0800 (PST) (envelope-from obrien@dragon.nuxi.com) Received: (from obrien@localhost) by dragon.nuxi.com (8.13.1/8.13.1/Submit) id j1GHnRDs083502; Wed, 16 Feb 2005 09:49:27 -0800 (PST) (envelope-from obrien) Date: Wed, 16 Feb 2005 09:49:27 -0800 From: "David O'Brien" To: Alexander Leidinger Message-ID: <20050216174927.GE82895@dragon.nuxi.com> References: <20050216081236.GA34471@dragon.nuxi.com> <20050216083118.GA37339@dragon.nuxi.com> <20050216115352.iuw5qn60cowsokso@netchild.homeip.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20050216115352.iuw5qn60cowsokso@netchild.homeip.net> User-Agent: Mutt/1.4.1i X-Operating-System: FreeBSD 6.0-CURRENT Organization: The NUXI BSD Group X-Pgp-Rsa-Fingerprint: B7 4D 3E E9 11 39 5F A3 90 76 5D 69 58 D9 98 7A X-Pgp-Rsa-Keyid: 1024/34F9F9D5 cc: freebsd-emulation@freebsd.org Subject: Re: AMD64 patch for 'ports/x11-toolkits/linux-gtk' X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: obrien@freebsd.org List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 16 Feb 2005 17:49:28 -0000 On Wed, Feb 16, 2005 at 11:53:52AM +0100, Alexander Leidinger wrote: > David O'Brien wrote: > > >On Wed, Feb 16, 2005 at 12:12:36AM -0800, David O'Brien wrote: > >Any have a problem with this updated patch? > > > >1. uses "ARCH" instead of "MACHINE_ARCH" > > What's the content of those variables on pc98? Will this port still work on > those systems? from ports/Mk/bsd.port.mk: # ARCH - The architecture of the target machine, such as would be # returned by "uname -p". (Note: Ports should test against # ARCH, and not the host machine's architecture which is # MACHINE_ARCH, to enable ports to be cross-built.) Oh, sorry I missed some s/MACHINE_ARCH/ARCH/. For pc98 this will work. Ports don't make a distinction in the kernel architecture (the place you see the difference between i386 and pc98. -- -- David (obrien@FreeBSD.org) From owner-freebsd-emulation@FreeBSD.ORG Thu Feb 17 10:41:30 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 64AA316A4CE; Thu, 17 Feb 2005 10:41:30 +0000 (GMT) Received: from mailout10.sul.t-online.com (mailout10.sul.t-online.com [194.25.134.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0FAC043D49; Thu, 17 Feb 2005 10:41:30 +0000 (GMT) (envelope-from Alexander@Leidinger.net) Received: from fwd05.aul.t-online.de by mailout10.sul.t-online.com with smtp id 1D1j69-0002aV-00; Thu, 17 Feb 2005 11:41:29 +0100 Received: from Andro-Beta.Leidinger.net (TvXaKZZcQebQB78P8XEx06K512VTA4fr5eQQCxDwqfIjhM6Oj3zQ8C@[217.229.219.127]) by fmrl05.sul.t-online.com with esmtp id 1D1j5l-0hpvOq0; Thu, 17 Feb 2005 11:41:05 +0100 Received: from localhost (localhost [127.0.0.1])j1HAeVwl059826; Thu, 17 Feb 2005 11:40:31 +0100 (CET) (envelope-from Alexander@Leidinger.net) Received: from 141.113.101.32 ([141.113.101.32]) by netchild.homeip.net (Horde) with HTTP for ; Thu, 17 Feb 2005 11:40:31 +0100 Message-ID: <20050217114031.pkkjz8pmo480wkc8@netchild.homeip.net> X-Priority: 3 (Normal) Date: Thu, 17 Feb 2005 11:40:31 +0100 From: Alexander Leidinger To: obrien@freebsd.org References: <20050216081236.GA34471@dragon.nuxi.com> <20050216083118.GA37339@dragon.nuxi.com> <20050216115352.iuw5qn60cowsokso@netchild.homeip.net> <20050216174927.GE82895@dragon.nuxi.com> In-Reply-To: <20050216174927.GE82895@dragon.nuxi.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-15; format="flowed" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) H3 (4.0.2) / FreeBSD-4.11 X-ID: TvXaKZZcQebQB78P8XEx06K512VTA4fr5eQQCxDwqfIjhM6Oj3zQ8C@t-dialin.net X-TOI-MSGID: 14d13297-9677-444a-b1cf-58e8e6f983ea cc: freebsd-emulation@freebsd.org Subject: Re: AMD64 patch for 'ports/x11-toolkits/linux-gtk' X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Feb 2005 10:41:30 -0000 David O'Brien wrote: > Oh, sorry I missed some s/MACHINE_ARCH/ARCH/. For pc98 this will work. > Ports don't make a distinction in the kernel architecture (the place you > see the difference between i386 and pc98. I don't know what pc98 display when running "uname -p". So if you say it DTRT, then go ahead. Bye, Alexander. -- http://www.Leidinger.net Alexander @ Leidinger.net: PGP ID = B0063FE7 http://www.FreeBSD.org netchild @ FreeBSD.org : PGP ID = 72077137 Worth seeing? Yes, but not worth going to see. From owner-freebsd-emulation@FreeBSD.ORG Sat Feb 19 01:27:08 2005 Return-Path: Delivered-To: freebsd-emulation@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9B94316A4CE for ; Sat, 19 Feb 2005 01:27:08 +0000 (GMT) Received: from smtp.ade.swiftdsl.com.au (smtp.ade.swiftdsl.com.au [218.214.228.98]) by mx1.FreeBSD.org (Postfix) with SMTP id A1C2343D39 for ; Sat, 19 Feb 2005 01:27:07 +0000 (GMT) (envelope-from no-spam@swiftdsl.com.au) Received: (qmail 31212 invoked from network); 19 Feb 2005 01:27:08 -0000 Received: from unknown (HELO daemon.foo.lan) (218.214.176.70) by smtp.ade.swiftdsl.com.au with SMTP; 19 Feb 2005 01:27:08 -0000 From: Ian Moore To: freebsd-emulation@FreeBSD.org Date: Sat, 19 Feb 2005 11:56:59 +1030 User-Agent: KMail/1.7.2 MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1322377.rZN2ZnTiyU"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200502191157.06108.no-spam@swiftdsl.com.au> Subject: linux-tiff port update X-BeenThere: freebsd-emulation@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Development of Emulators of other operating systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 19 Feb 2005 01:27:08 -0000 --nextPart1322377.rZN2ZnTiyU Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Hi, The linux-tiff port seems to have a security vunerablility for quite some t= ime=20 now. Is a new version due sometime soon, or has it perhaps been made=20 redundant somehow in the recent re-organisation of the linux emulation port= =20 or something? Cheers, =2D-=20 Ian GPG Key: http://home.swiftdsl.com.au/~imoore/no-spam.asc --nextPart1322377.rZN2ZnTiyU Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQBCFpXqPUlnmbKkJ6ARAhpuAJ4vwYlIQz7UcMjRBy9jlesgGZHLKgCglHE2 GZCMZh4D7NfI3JO2JFWuVKs= =0QIs -----END PGP SIGNATURE----- --nextPart1322377.rZN2ZnTiyU--