From: Michael Cummings <mcummings@gentoo.org>
To: gentoo-dev@robin.gentoo.org
Subject: [gentoo-dev] Pre-emptive apology for perl snafu this afternoon
Date: Fri, 11 Mar 2005 17:44:52 -0500 [thread overview]
Message-ID: <1110581092.24853.18.camel@nomad.datanode.net> (raw)
[-- Attachment #1: Type: text/plain, Size: 2362 bytes --]
I posted a tested ebuild for perl this afternoon to address an rmtree
vulnerability in File::Path. This ebuild was tested on 3 arches and 6
boxes total without an issue - the patch was to the .pm file, code that
isn't touched by perl until you invoke it with your own perl code (ie,
not compiled code that might be swayed by arch differences, gcc
differences, what have you).
Turns out, though, there was a flaw in my ordering of the patch. The
patched File::Path invokes Errno.pm, which typically isn't created until
after File::Path is built into your perl during the make phase. Because
Errno.pm didn't exist yet in the chroot, it was pulling it from folks'
installed perl. One of the first things in this particular module is to
check that the kernel and platform hardcoded in it at perl build time
match what was used during the original install of your current perl
according to Config.pm. No problem - unless you've changed kernel
versions. Because during the make process the file is sourced by perl,
and during that sourcing (ok, not the right word, but I'm talking to
you, the masses) it attempted to require, or pull in, the Errno.pm, and
failing to find a new one in the unpacked source, it pulled the one on
the main system. And therein began the mess. Two values that would
normally never appear to perl to be out of sync were suddenly horribly
wrong on any box that had had a kernel upgrade since the last perl
install.
This is now fixed by moving the patch to post install in image, but
prior to the install on your filesystem. I have to give thanks to jat, a
user on irc who talked me down a few times and inadvertently gave me the
inspiration to move the patch (rather than the messy solutions I was
considering), and to seemant, who without question or hesitation offered
me root on a broken box so I could properly work this out so quickly.
Without either of them I wouldn't have gotten it so soon.
So for those of you who sync'd this afternoon, please re-sync. If you
tried to emerge perl and got a weird message about kernel versions
mismatching, and want to add your gripes in bug 84868, that's fine, but
sync again and you will be all set.
I have to say, this is the first time in almost two years that I've
managed to break perl. Gotta count for something that its been so long
:)
-Michael
[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
next reply other threads:[~2005-03-11 22:48 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-03-11 22:44 Michael Cummings [this message]
2005-03-11 23:21 ` [gentoo-dev] Pre-emptive apology for perl snafu this afternoon Martin Schlemmer
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1110581092.24853.18.camel@nomad.datanode.net \
--to=mcummings@gentoo.org \
--cc=gentoo-dev@gentoo.org \
--cc=gentoo-dev@robin.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox