Re: Follow up....Re: Updating for the FreeBSD Security Advisory FreeBSD-SA-12:01.openssl

2012-05-03 Thread andrew clarke
On Thu 2012-05-03 20:48:17 UTC+0200, Leslie Jensen (les...@eskk.nu) wrote:

> > Short answer: The patch level (-p3) displayed by uname -r after a
> > reboot will not change if freebsd-update has not touched the kernel.

...

> I have read similar answers and was partly aware of this.
> 
> But I was just curious to why.
> 
> I'll accept it and let a kernel rebuild be a part of my updates.

If you're running the GENERIC kernel then you're only creating extra
work for yourself by rebuilding it for the sole purpose of having
uname -r show the "correct" patchlevel...

On the other hand if you're running a custom kernel then you only need
to rebuild the kernel when freebsd-update touches the kernel sources.
I don't recall the kernel was touched at all with the most recently
-p7 patch (openssl), for example, so there's absolutely no need to
rebuild it.

Apologies if this was already obvious.

Regards
Andrew
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"


Re: Follow up....Re: Updating for the FreeBSD Security Advisory FreeBSD-SA-12:01.openssl

2012-05-03 Thread Leslie Jensen



2012-05-03 20:35, andrew clarke skrev:

On Thu 2012-05-03 19:17:05 UTC+0200, Leslie Jensen (les...@eskk.nu) wrote:


After a reboot my system now has the following label

FreeBSD 8.2-RELEASE-p3 #0

How come it downgrades the label from p6 to p3 when upgrading to p7.


This is a FAQ.  There's a thread about it here:

http://lists.freebsd.org/pipermail/freebsd-questions/2010-June/217031.html

Short answer: The patch level (-p3) displayed by uname -r after a
reboot will not change if freebsd-update has not touched the kernel.

As far as I know there haven't been any patches to the 8.2-REL kernel
since -p3.

/usr/src/sys/conf/newvers.sh is always updated by freebsd-update when
there is an update. (Although now that I think about it that might not
be true if you don't have the kernel sources installed?)

Not exactly intuitive.

Several Linux distros have a file named /etc/issue that shows the
distro name and version. Perhaps this or something similar could be
provided in future FreeBSD releases and updated by freebsd-update.

$ cat /etc/issue
Ubuntu 12.04 LTS \n \l

Regards
Andrew
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"



Thank you :-)

I have read similar answers and was partly aware of this.

But I was just curious to why.

I'll accept it and let a kernel rebuild be a part of my updates.

/Leslie


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"


Re: Follow up....Re: Updating for the FreeBSD Security Advisory FreeBSD-SA-12:01.openssl

2012-05-03 Thread andrew clarke
On Thu 2012-05-03 19:17:05 UTC+0200, Leslie Jensen (les...@eskk.nu) wrote:

> After a reboot my system now has the following label
> 
> FreeBSD 8.2-RELEASE-p3 #0
> 
> How come it downgrades the label from p6 to p3 when upgrading to p7.

This is a FAQ.  There's a thread about it here:

http://lists.freebsd.org/pipermail/freebsd-questions/2010-June/217031.html

Short answer: The patch level (-p3) displayed by uname -r after a
reboot will not change if freebsd-update has not touched the kernel.

As far as I know there haven't been any patches to the 8.2-REL kernel
since -p3.

/usr/src/sys/conf/newvers.sh is always updated by freebsd-update when
there is an update. (Although now that I think about it that might not
be true if you don't have the kernel sources installed?)

Not exactly intuitive.

Several Linux distros have a file named /etc/issue that shows the
distro name and version. Perhaps this or something similar could be
provided in future FreeBSD releases and updated by freebsd-update.

$ cat /etc/issue
Ubuntu 12.04 LTS \n \l

Regards
Andrew
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"


Follow up....Re: Updating for the FreeBSD Security Advisory FreeBSD-SA-12:01.openssl

2012-05-03 Thread Leslie Jensen



2012-05-03 19:04, Leslie Jensen skrev:


The following message appears when I do

freebsd-update install


The following files will be added as part of updating to 8.2-RELEASE-p7:
/usr/src/lib/libc/gen/libc_dlopen.c

The following files will be updated as part of updating to 8.2-RELEASE-p7:
/boot/kernel/kernel
/lib/libcrypto.so.6
/usr/bin/openssl
/usr/include/openssl/ssl.h
/usr/include/openssl/ssl3.h
/usr/lib/libcrypto.a
/usr/lib/libssl.a
/usr/lib/libssl.so.6
/usr/lib32/libcrypto.a
/usr/lib32/libcrypto.so.6
/usr/lib32/libcrypto_p.a
/usr/lib32/libssl.a
/usr/lib32/libssl.so.6
/usr/lib32/libssl_p.a
/usr/src/sys/conf/newvers.sh
/var/db/mergemaster.mtree

WARNING: FreeBSD 8.2-RELEASE-p6 is approaching its End-of-Life date.
It is strongly recommended that you upgrade to a newer
release within the next 2 months.

root@bljbsd01~:freebsd-update install
Installing updates...install: ///usr/src/lib/libc/gen/libc_dlopen.c: No
such file or directory
done.



Should I worry about the libc_dlopen.c, or is it ok?


Thanks

/Leslie


___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"freebsd-questions-unsubscr...@freebsd.org"



After a reboot my system now has the following label

FreeBSD 8.2-RELEASE-p3 #0

How come it downgrades the label from p6 to p3 when upgrading to p7.

I'm aware that I can rebuild the kernel but I just wanted to know.

/Leslie

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"