Your message dated Sat, 17 Oct 2020 11:11:20 +1100
with message-id
<caly8cw6dpcgtzz6kq0x84nw_pqh8jkb16d-evga1oyxzy19...@mail.gmail.com>
and subject line Re: Bug#972348: procps: [sysctl] /etc/sysctl.d should
supersede /lib and /usr/lib
has caused the Debian Bug report #972348,
regarding procps: [sysctl] /etc/sysctl.d should supersede /lib and /usr/lib
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
972348: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972348
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: procps
Version: 2:3.3.16-5
Severity: normal
My normal expectation with most things unix/linux is that
administrator-controlled files in /etc supersede package-shipped files in
/lib and /usr/lib.
However, the documented (and AFAICT actual) order of loading sysctl .conf
files is:
/run/sysctl.d/*.conf
/etc/sysctl.d/*.conf
/usr/local/lib/sysctl.d/*.conf
/usr/lib/sysctl.d/*.conf
/lib/sysctl.d/*.conf
/etc/sysctl.conf
This makes it super annoying/frustrating to ensure proper configuration as
the settings in the files in /etc/sysctl.d/ can be overridden by almost
everything else.
It seems from the documentation that the intent is to allow the
/etc/sysctl.d/ _files_ to override files of the same name in later
directories, but this is rather confusing and frustrating. If I want to
ensure some limit-style setting is raised to a high enough level, I have to
make sure I know every package-provided file that might adjust that setting,
and manually maintain a copy of every other setting that package provides,
except the limit I want to raise.
-- System Information:
Debian Release: bullseye/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'stable-updates'), (500, 'stable'), (490,
'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 5.8.0-2-amd64 (SMP w/8 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages procps depends on:
ii init-system-helpers 1.58
ii libc6 2.31-3
ii libncurses6 6.2+20200918-1
ii libncursesw6 6.2+20200918-1
ii libprocps8 2:3.3.16-5
ii libtinfo6 6.2+20200918-1
ii lsb-base 11.1.0
Versions of packages procps recommends:
ii psmisc 23.3-1
procps suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
On Sat, 17 Oct 2020 at 02:51, Matthew Gabeler-Lee <[email protected]>
wrote:
> My normal expectation with most things unix/linux is that
> administrator-controlled files in /etc supersede package-shipped files in
> /lib and /usr/lib.
>
> However, the documented (and AFAICT actual) order of loading sysctl .conf
> files is:
>
It is the same as systemd-sysctl or will be once this patch[1] makes it
through.
And it is doing that. if the system ships with foo.conf and you make
/etc/sysctl.d/foo.conf then yours wins.
ensure some limit-style setting is raised to a high enough level, I have to
> make sure I know every package-provided file that might adjust that
> setting,
> and manually maintain a copy of every other setting that package provides,
> except the limit I want to raise.
>
This is different. The requirement has changed from "override this file"
to "override any file".
You can either:
1) Make your file appear "later" in the listing. So something like
999-must-happen.conf; or
2) Put those parameters in the /etc/sysctl.conf file
This way is better. So if you want to override whatever is only in file
foo.conf, you make a /etc/sysctl.d/foo.conf
Alternatively, if you just want this setting no matter who or what is
changing it, do one of the two suggestions above.
- Craig
1:
https://gitlab.com/procps-ng/procps/-/commit/24a1574f0acbe636c98ab13b439c93f7b91de697
--- End Message ---
