From owner-freebsd-hackers@FreeBSD.ORG Tue Aug 19 20:26:36 2008 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 08E22106566C for ; Tue, 19 Aug 2008 20:26:36 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from cyrus.watson.org (cyrus.watson.org [209.31.154.42]) by mx1.freebsd.org (Postfix) with ESMTP id D160E8FC18 for ; Tue, 19 Aug 2008 20:26:35 +0000 (UTC) (envelope-from rwatson@FreeBSD.org) Received: from fledge.watson.org (fledge.watson.org [209.31.154.41]) by cyrus.watson.org (Postfix) with ESMTP id E271146C20; Tue, 19 Aug 2008 16:26:34 -0400 (EDT) Date: Tue, 19 Aug 2008 21:26:34 +0100 (BST) From: Robert Watson X-X-Sender: robert@fledge.watson.org To: Jerry Toung In-Reply-To: <86068e730808191315k2997c99bvbbc586e1173858f6@mail.gmail.com> Message-ID: References: <86068e730808191315k2997c99bvbbc586e1173858f6@mail.gmail.com> User-Agent: Alpine 1.10 (BSF 962 2008-03-14) MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="621616949-365493622-1219177594=:62454" Cc: freebsd-hackers@freebsd.org Subject: Re: pkg_add on 64bits kernel w/ options MAC X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 Aug 2008 20:26:36 -0000 This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. --621616949-365493622-1219177594=:62454 Content-Type: TEXT/PLAIN; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8BIT On Tue, 19 Aug 2008, Jerry Toung wrote: > I am running into a weird issue. On a 6.2 stable, 32bits built with options > MAC, I can run pkg_add of anything. But a 6.2 stable, 64bits built with MAC > won't let me do pkg_add. If anybody has an input, please advise. Below is > the output on the 64 bits machine: Sounds like a bug of some sort. Could you send the output of "sysctl security.mac"? Also, if you could use ktrace to confirm which system calls are returning EACCES/EPERM leading to the warnings, that would also be helpful. Robert N M Watson Computer Laboratory University of Cambridge > > net3# pkg_add test.tbz > +CONTENTS: Can't update time for +CONTENTS: Operation not permitted > pkg_add: tar extract of /wr/home/webmgr/test.tbz failed! > pkg_add: unable to extract table of contents file from > '/wr/home/webmgr/test.tbz' - not a package? > net3# > > net3# tar xvf test.tbz > x +CONTENTS: Can't update time for +CONTENTS: Operation not permitted > x +COMMENT: Can't update time for +COMMENT: Operation not permitted > x +DESC: Can't update time for +DESC: Operation not permitted > x +DISPLAY: Can't update time for +DISPLAY: Operation not permitted > x usr/local/bin/sudo: Can't update time for usr/local/bin/sudo: Operation > not permitted > x usr/local/man/man8/sudo.8: Can't update time for > usr/local/man/man8/sudo.8: Operation not permitted > x usr/local/man/man8/visudo.8: Can't update time for > usr/local/man/man8/visudo.8: Operation not permitted > x usr/local/man/man5/sudoers.5 > x usr/local/sbin/visudo: Can't update time for usr/local/sbin/visudo: > Operation not permitted > x usr/local/libexec/sudo_noexec.so: Can't update time for > usr/local/libexec/sudo_noexec.so: Operation not permitted > x usr/local/libexec/sudo_noexec.la: Can't update time for > usr/local/libexec/sudo_noexec.la: Operation not permitted > x etc/sudoers: Can't update time for etc/sudoers: Operation not permitted > > net3# uname -a > FreeBSD net3 6.2-STABLE FreeBSD 6.2-STABLE #1: Tue Aug  5 15:10:45 PDT > 2008     root@test:/usr/obj/usr/src/sys/MYBD  amd64 > > thanks, > Jerry > > --621616949-365493622-1219177594=:62454--