From owner-freebsd-questions@FreeBSD.ORG Wed Apr 17 08:58:30 2013 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 4F554B8F for ; Wed, 17 Apr 2013 08:58:30 +0000 (UTC) (envelope-from axelbsd@ymail.com) Received: from nm40-vm7.bullet.mail.bf1.yahoo.com (nm40-vm7.bullet.mail.bf1.yahoo.com [72.30.239.215]) by mx1.freebsd.org (Postfix) with ESMTP id C052967B for ; Wed, 17 Apr 2013 08:58:29 +0000 (UTC) Received: from [98.139.215.143] by nm40.bullet.mail.bf1.yahoo.com with NNFMP; 17 Apr 2013 08:55:24 -0000 Received: from [98.139.213.7] by tm14.bullet.mail.bf1.yahoo.com with NNFMP; 17 Apr 2013 08:55:24 -0000 Received: from [127.0.0.1] by smtp107.mail.bf1.yahoo.com with NNFMP; 17 Apr 2013 08:55:24 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ymail.com; s=s1024; t=1366188924; bh=vCEj7H3q2x3kIvQwKecc5mkcSF9pgGJL8A0cPfbpqXE=; h=X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:X-Rocket-Received:Received:X-Google-DKIM-Signature:X-Received:MIME-Version:Received:In-Reply-To:References:From:Date:Message-ID:Subject:To:Cc:Content-Type; b=4qDch82Ku7zNT/0L2AUpz9hmS3RRiKYkzJknBJERkcwX+RoQxnhyqqDz/iW7Qr2MxBTuVX8ejjBaiKrCDMbrikviQiBc+agZ11teZwCtI64LzVdJvzht1gLihplExJSw7BQwo5DpnVp5QlnTyMbPEVNFfbGckTTc6zV7YuTp1uc= X-Yahoo-Newman-Id: 490197.72502.bm@smtp107.mail.bf1.yahoo.com X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: dXOGkZQVM1kKKq9AtjDxTMxoAJxTVwWTzCuABmlFiRox814 OaoctWYAHQRdrboGp91JEoTIbNuIORiH7_tVvv99lPr96R.CrAjSIUOIYqQA Q.4FdbVHALivVseDAZV9.RWTApGTeFsko.2VboCxmzpqcpd50oBZ1TVQb8Z4 uldwa7gbdiWyVfzSymZ2Ktv6jd2MdG1LEbT9PaSWYnUqyhU_MdPM8fnZKSY6 san9DmBCLq3gvr_qq_pr7wH8VBC3I5ImWT4X4D2Z25ZFT9_BIDdZ15A7AU11 cd5F0BP00nB8izX1X7THYq9GHowm90HpkdqIkgVjUHu9XImVRS9t_vDlSSL5 VGRcre58t5tqFEcrY9SbWkflKAK2W.hUgzuzrPExyWpHQ9T8et9X_ukaf5Xx 8k369zX3AFNqdowj5FtF_Jbvss2Y7XZK9_3vElbyxY.KAijkovSc- X-Yahoo-SMTP: S65s63SswBDjU54Gjqw2GSWlZmfgiEU_X3tN1_9u X-Rocket-Received: from mail-ve0-f170.google.com (axelbsd@209.85.128.170 with ) by smtp107.mail.bf1.yahoo.com with SMTP; 17 Apr 2013 01:55:24 -0700 PDT Received: by mail-ve0-f170.google.com with SMTP id 14so1235239vea.1 for ; Wed, 17 Apr 2013 01:55:23 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=x-received:mime-version:in-reply-to:references:from:date:message-id :subject:to:cc:content-type; bh=vCEj7H3q2x3kIvQwKecc5mkcSF9pgGJL8A0cPfbpqXE=; b=mxmpZvFBrlm9fSHEgPoiTIZlAiEINskG+QIVis+vjYRNmF/EAJbluMadADPKkvctLY W2jFxk+DU1iUlOcMeQk3IHSvQYpBA6REZ3XnZEucXL97LddcdTSsC5LfC2HV+g4GcrZC C5xKoUOLIs3+6bEfBLwG3Q2vczLENixHOSNOovXW4Gs8IwwiQa+is6NEZXOxJ+QZfHPH ty/jONC/f9dOoAP3xvtXK9mbFjWm/Dlwae2Leg1LnfGyMhhQjHv5APK/XWVv1zM1+xuZ nBWIIccCZj6yHb5M3RzW0V4TUPHd/Wo3BYPBHTIa1ve39rQd+lqC74Ob6Mudge1hPc78 t9rQ== X-Received: by 10.58.181.201 with SMTP id dy9mr4167344vec.34.1366188923859; Wed, 17 Apr 2013 01:55:23 -0700 (PDT) MIME-Version: 1.0 Received: by 10.58.146.6 with HTTP; Wed, 17 Apr 2013 01:55:03 -0700 (PDT) In-Reply-To: <20130416221851.5d898701.freebsd@edvax.de> References: <516DA8A8.5040305@gmail.com> <20130416221851.5d898701.freebsd@edvax.de> From: Alexandre Date: Wed, 17 Apr 2013 10:55:03 +0200 Message-ID: Subject: Re: Keeping FreeBSD with custom kernel up to date: freebsd-update no option? To: Polytropon Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 Cc: FreeBSD Questions Mailing List , andreas scherrer X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Apr 2013 08:58:30 -0000 Hi Andreas and Polytropon, In the case your are tracking -RELEASE branch, you can use freebsd-update tool to apply binary security patches on your system and upgrade versions (e.g. 9.0 to 9.1 or 9.x to 10.0 when available). Freebsd-update tool apply binary updates to your system and GENERIC kernel. Furthermore, this tool syncs sources (by default). So if you are using custom kernel, you just have to rebuild and install your custom kernel. It is recommended to not use SVN to update your system sources if you are using freebsd-update tool to avoid troubles. Regards, Alexandre On Tue, Apr 16, 2013 at 10:18 PM, Polytropon wrote: > On Tue, 16 Apr 2013 21:38:16 +0200, andreas scherrer wrote: > > Dear FreeBSD savvies > > > > I am (still) struggling to understand how to keep my FreeBSD system up > > to date ("world"/system, not ports). I want to "track" RELEASE (not a > > development branch) and I want to receive security related updates. And > > I want to run a custom kernel. > > Without actually havint tested it, it seems that if you want > to use freebsd-update (binary updating), you should note this: > > In /etc/freebsd-update.conf, you should have the line for what > to update as "Components src world". > > This should prevent overwriting of the kernel, but you need to > compile your kernel and install it. The component "src" will > make sure you have the proper kernel sources. I assume a custom > kernel configuration file in /usr/src/sys/{i386|amd64}/conf/ > is _not_ being overwritten by freebsd-update. > > Use the -r option of freebsd-update to specify the correct > release if required. It should follow -RELEASE-p for the > currentl patchlevel N (which you intend to follow) normally. > > > > > From what I understand I cannot use "freebsd-update" in this case > > because it will invariably either overwrite my custom kernel (if I have > > "Components kernel" in the config file) or not update the kernel sources > > in /usr/src/sys (when I do not have "Components kernel" in the config > > file). See [1]. > > As far as I read from "man freebsd-update.conf", the "src" component > will not exclude kernel sources; "kernel" refers to the kernel and > the modules as binary stuff. > > This is the relevant text passage: > > The components are ``src'' > (source code), ``world'' (non-kernel binaries), > and ``kernel''; the sub-components are the indi- > vidual distribution sets generated as part of > the release process (e.g., ``src/base'', > ``src/sys'', ``world/base'', ``world/catpages'', > ``kernel/smp''). Note that prior to > FreeBSD 6.1, the ``kernel'' component was dis- > tributed as part of ``world/base''. > > So "src" will include "src/sys" which is the kernel sources you > will need to build your custom kernel. > > > > > This leaves me with the only possibility to use SVN to update /usr/src, > > right? > > No, but it might be the "more advanced" alternative, and it should > work. Note that in _this_ case, you will also have to rebuild the > world, so kernel and world are in sync after an update. Refer to > the comment header of /usr/src/Makefile for the whole process that > has to be performed after updating (or see in the Handbook: the > section about updating by source). > > > > > I have a copy of the SVN sources (for the outdated RELEASE-9.0.0 > > but that's a different story), see below for "svn info"). As I > > understand [2] I cannot mix freebsd-update and SVN, right? > > It could cause trouble. Deciding for _one_ way should be better. > > > > > So I can run "svn update" in /usr/src whenever I like. But what then? Do > > I need to rebuild the world and my custom kernel every time I run "svn > > update" (and there are some updates)? > > Yes, or better: As soon as it is required. This depends on _what_ > has been part of the update. For example, kernel updates _can_ > require updates of userland programs or libraries, but it's also > possible that it's not the case. To be sure, rebuild. > > > > > I'm on a low powered consumer > > device and it takes considerable amount of time to build the world and > > kernel (plus I still don't feel comfortable doing such tasks remotely). > > In this case, use freebsd-update as explained at the beginning of > my message: Update components "world" and "src", leave out "kernel", > the rebuild the kernel by source and install it. Then reboot. > > > > > Is this really "the way to do it" or am I missing something? > > There are _several_ ways to do it. :-) > > > > > There are quite some posts, websites and threads out there (see [3] or > > [4] for example) about this topic but (surprisingly?) I could not (yet) > > find a conclusive answer. > > This is because the answer depends on what you actually want to do > (follow RELEASE, STABLE, CURRENT), and how you want to do it (binary, > by source). > > > > > -- > Polytropon > Magdeburg, Germany > Happy FreeBSD user since 4.0 > Andra moi ennepe, Mousa, ... > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" >