Accepting request 898848 from home:lnussel:usrmove

- Mark /boot, /home, /mnt, /opt, /srv and /usr/local as %ghost and create from lua in case mounted eg from a read-only fs such as NFS. Except for the latter also mark them as 0555 while we are at it (boo#1186894) OBS-URL: https://build.opensuse.org/request/show/898848 OBS-URL: https://build.opensuse.org/package/show/Base:System/filesystem?expand=0&rev=209
2021-07-09 11:44:38 +00:00 · 2021-07-09 11:44:38 +00:00 · c1bab9bb4d
commit c1bab9bb4d
parent 59b78daf64
6 changed files with 98 additions and 75 deletions
--- a/directory.list
+++ b/directory.list
@ -1,4 +1,3 @@
-0755 root root /boot
 0755 root root /dev
 0755 root root /etc
 0755 root root /etc/X11
@ -23,16 +22,10 @@
 0755 root root /etc/opt
 0755 root root /etc/xdg
 0755 root root /etc/xdg/autostart
-0755 root root /home
-0755 root root /mnt
-0755 root root /opt
 0700 root root /root
 0700 root root /root/.gnupg
 0755 root root /root/bin
 0755 root root /run
-0755 root root /srv/www
-0755 root root /srv/www/cgi-bin
-0755 root root /srv/www/htdocs
 1777 root root /tmp
 0755 root root /usr
 0555 root root /usr/bin
@ -69,25 +62,6 @@
 0755 root root /usr/lib/tmpfiles.d
 0755 root root /usr/lib/udev
 0755 root root /usr/lib/udev/rules.d
-0755 root root /usr/local
-0755 root root /usr/local/bin
-0755 root root /usr/local/include
-0755 root root /usr/local/lib
-0755 root root /usr/local/libexec
-0755 root root /usr/local/man
-0755 root root /usr/local/man/man1
-0755 root root /usr/local/man/man2
-0755 root root /usr/local/man/man3
-0755 root root /usr/local/man/man4
-0755 root root /usr/local/man/man5
-0755 root root /usr/local/man/man6
-0755 root root /usr/local/man/man7
-0755 root root /usr/local/man/man8
-0755 root root /usr/local/man/man9
-0755 root root /usr/local/man/mann
-0755 root root /usr/local/sbin
-0755 root root /usr/local/share
-0755 root root /usr/local/src
 0555 root root /usr/sbin
 0555 root root /usr/share
 # TODO make 0555
--- a/directory.list64
+++ b/directory.list64
@ -1,4 +1,3 @@
 0555 root root /usr/lib64
 0555 root root /usr/lib64/pkgconfig
 0755 root root /usr/lib64/browser-plugins
-0755 root root /usr/local/lib64
--- a/filesystem.changes
+++ b/filesystem.changes
@ -1,3 +1,11 @@
+-------------------------------------------------------------------
+Wed Jun  9 15:46:59 UTC 2021 - Ludwig Nussel <lnussel@suse.de>
+
+- Mark /boot, /home, /mnt, /opt, /srv and /usr/local as
+  %ghost and create from lua in case mounted eg from a read-only fs
+  such as NFS. Except for the latter also mark them as 0555 while we
+  are at it (boo#1186894)
+
 -------------------------------------------------------------------
 Wed Jun  9 06:13:42 UTC 2021 - Thorsten Kukuk <kukuk@suse.com>

--- a/filesystem.spec
+++ b/filesystem.spec
@ -43,6 +43,7 @@ Source2:        languages
 Source3:        ghost.list
 Source4:        languages.man
 Source64:       directory.list64
+Source65:       ghost.list64
 Source99:       LICENSE.txt

 %description
@ -53,8 +54,68 @@ the home directories of system users.
 %setup -c -n filesystem -T
 cp %{SOURCE0} .
 cp %{SOURCE1} .
+cp %{SOURCE3} .
+%ifarch s390x %sparc x86_64 ppc64 ppc aarch64 ppc64le riscv64
+cat %{SOURCE65} >> ghost.list
+%endif

 %build
+cat > pretrans.lua <<'EOF'
+os.remove ("/usr/include/X11")
+os.remove ("/usr/lib/X11")
+if not posix.readlink("/var/run") then
+   os.rename("/var/run","/var/run.rpmsave.tmpx")
+end
+if not posix.readlink("/var/lock") then
+   os.rename("/var/lock","/var/lock.rpmsave.tmpx")
+end
+if not posix.stat("/var/run") then
+  posix.symlink("/run","/var/run")
+end
+if not posix.stat("/var/lock") then
+  posix.symlink("/run/lock","/var/lock")
+end
+if posix.stat("/var/run.rpmsave.tmpx") then
+  os.execute("mv /var/run.rpmsave.tmpx/* /var/run")
+  os.remove("/var/run.rpmsave.tmpx")
+end
+if posix.stat("/var/lock.rpmsave.tmpx") then
+  os.execute("mv /var/lock.rpmsave.tmpx/* /var/lock")
+  os.remove("/var/lock.rpmsave.tmpx")
+end
+%if 0%{?usrmerged}
+needmigrate = false
+local dirs = {"/bin",
+  "/sbin",
+%ifarch s390x %sparc x86_64 ppc64 ppc aarch64 ppc64le riscv64
+  "/lib64",
+%endif
+  "/lib" }
+for i in pairs(dirs) do
+  local t = posix.stat(dirs[i], "type")
+  if t == nil then
+    posix.symlink("usr"..dirs[i], dirs[i])
+  elseif t == "directory" then
+    needmigrate = true
+  end
+end
+if needmigrate then
+    assert(os.execute("/usr/libexec/convertfs"))
+end
+%endif
+local ghosts = {
+EOF
+while read MOD OWN GRP NAME ; do
+	[ "$OWN" = root -a "$GRP" = root ]
+	echo "[\"$NAME\"] = $MOD,"
+done < ghost.list >> pretrans.lua 
+cat >> pretrans.lua <<'EOF'
+}
+for i in pairs(ghosts) do
+  posix.mkdir(i)
+  posix.chmod(i, ghosts[i])
+end
+EOF

 %install
 function create_dir () {
@ -117,7 +178,7 @@ while read MOD OWN GRP NAME ; do
    create_dir $MOD $OWN $GRP $NAME
 done < directory.list
 # ghost files next
-cat %{SOURCE3} | while read MOD OWN GRP NAME ; do
+cat ghost.list | while read MOD OWN GRP NAME ; do
    create_dir $MOD $OWN $GRP $NAME "%%ghost "
 done
 # arch specific leftovers
@ -244,53 +305,7 @@ install -m 0644  fs-tmp.conf $RPM_BUILD_ROOT/usr/lib/tmpfiles.d/fs-tmp.conf
 install -m 0644  fs-var.conf $RPM_BUILD_ROOT/usr/lib/tmpfiles.d/fs-var.conf
 install -m 0644  fs-var-tmp.conf $RPM_BUILD_ROOT/usr/lib/tmpfiles.d/fs-var-tmp.conf

-%pretrans -p <lua>
-os.remove ("/usr/include/X11")
-os.remove ("/usr/lib/X11")
-if not posix.readlink("/var/run") then
-   os.rename("/var/run","/var/run.rpmsave.tmpx")
-end
-if not posix.readlink("/var/lock") then
-   os.rename("/var/lock","/var/lock.rpmsave.tmpx")
-end
-if not posix.stat("/var/run") then
-  posix.symlink("/run","/var/run")
-end
-if not posix.stat("/var/lock") then
-  posix.symlink("/run/lock","/var/lock")
-end
-if posix.stat("/var/run.rpmsave.tmpx") then
-  os.execute("mv /var/run.rpmsave.tmpx/* /var/run")
-  os.remove("/var/run.rpmsave.tmpx")
-end
-if posix.stat("/var/lock.rpmsave.tmpx") then
-  os.execute("mv /var/lock.rpmsave.tmpx/* /var/lock")
-  os.remove("/var/lock.rpmsave.tmpx")
-end
-%if 0%{?usrmerged}
-needmigrate = false
-local dirs = {"/bin",
-  "/sbin",
-%ifarch s390x %sparc x86_64 ppc64 ppc aarch64 ppc64le riscv64
-  "/lib64",
-%endif
-  "/lib" }
-for i in pairs(dirs) do
-  local t = posix.stat(dirs[i], "type")
-  if t == nil then
-    posix.symlink("usr"..dirs[i], dirs[i])
-  elseif t == "directory" then
-    needmigrate = true
-  end
-end
-if needmigrate then
-    assert(os.execute("/usr/libexec/convertfs"))
-end
-%endif
-posix.mkdir("/proc")
-posix.chmod("/proc", 0555)
-posix.mkdir("/sys")
-posix.chmod("/sys", 0555)
+%pretrans -p <lua> -f pretrans.lua

 %files -f filesystem.list
 /usr/lib/tmpfiles.d/fs-tmp.conf
--- a/ghost.list
+++ b/ghost.list
@ -1,2 +1,28 @@
+0555 root root /boot
+0555 root root /home
+0555 root root /mnt
+0555 root root /opt
 0555 root root /proc
+0555 root root /srv/www
+0555 root root /srv/www/cgi-bin
+0555 root root /srv/www/htdocs
 0555 root root /sys
+0755 root root /usr/local
+0755 root root /usr/local/bin
+0755 root root /usr/local/include
+0755 root root /usr/local/lib
+0755 root root /usr/local/libexec
+0755 root root /usr/local/man
+0755 root root /usr/local/man/man1
+0755 root root /usr/local/man/man2
+0755 root root /usr/local/man/man3
+0755 root root /usr/local/man/man4
+0755 root root /usr/local/man/man5
+0755 root root /usr/local/man/man6
+0755 root root /usr/local/man/man7
+0755 root root /usr/local/man/man8
+0755 root root /usr/local/man/man9
+0755 root root /usr/local/man/mann
+0755 root root /usr/local/sbin
+0755 root root /usr/local/share
+0755 root root /usr/local/src
--- a/ghost.list64
+++ b/ghost.list64
@ -0,0 +1 @@
+0755 root root /usr/local/lib64