On Mon, Oct 17, 2011 at 11:57:19PM +0200, Ruediger Oertel wrote:
On Monday, October 17, 2011 12:06:48 PM Greg KH wrote:
Ah, just realized the error message told me who to email about this.
Ruediger, any ideas about the error below? looks like /var/crash has different permissions between /etc/permissions.local and /etc/permissions.secure (or similar for other permissions.*). This leads to issues when you want to verify the package via "rpm -V $packagename".
Yes, but why is this working in Factory and 12.1, but not in 11.4? What changed in the core somewhere?
So we have to take the file permissions out of the normal verification of rpm and to plug the now opened problem that the permissions for these files/directories would not be checked at all, we have to add measures so that the permissions are checked according to the permission policy in place at the time when the "rpm -V ..." is called.
So in the filelist, you can use "%verify(not mode) $filename" and to plug the hole, use --- %verifyscript %verify_permissions -e $filename --- (note that this is not part of %post or any of these but %verifyscript is a section/script by itself).
Okay, last step: we want to make sure this file/directory permission does already match the current permission policy after installing the package: in the %post section, we add something like this: ------------------- %post %if 0%{?suse_version} > 1130 %set_permissions $filename %else %run_permissions %endif ------------------- (after 11.3, Ludwig reworked the macros, so that the permissions of this file are set directly instead of the older %run_permissions which actually just called the SuSEconfig.permissions module).
To complete the story, please add a "PreReq: permissions" (or for those preferring the newer syntax: "Requires(post): permissions".
Shouldn't that go into the package in Base:System then, so it continues to build on all distros? thanks, greg k-h -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org