12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706170717081709171017111712171317141715171617171718171917201721172217231724172517261727172817291730173117321733173417351736173717381739174017411742174317441745174617471748174917501751175217531754175517561757175817591760 |
- /*
- * dpkg - main program for package management
- * archives.c - actions that process archive files, mainly unpack
- *
- * Copyright © 1994,1995 Ian Jackson <ian@chiark.greenend.org.uk>
- * Copyright © 2000 Wichert Akkerman <wakkerma@debian.org>
- * Copyright © 2007-2014 Guillem Jover <guillem@debian.org>
- * Copyright © 2011 Linaro Limited
- * Copyright © 2011 Raphaël Hertzog <hertzog@debian.org>
- *
- * This is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License as published by
- * the Free Software Foundation; either version 2 of the License, or
- * (at your option) any later version.
- *
- * This is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License
- * along with this program. If not, see <https://www.gnu.org/licenses/>.
- */
- #include <config.h>
- #include <compat.h>
- #include <sys/types.h>
- #include <sys/time.h>
- #include <sys/stat.h>
- #include <assert.h>
- #include <errno.h>
- #include <ctype.h>
- #include <string.h>
- #include <time.h>
- #include <fcntl.h>
- #include <unistd.h>
- #include <stdint.h>
- #include <stdlib.h>
- #include <stdio.h>
- #include <obstack.h>
- #define obstack_chunk_alloc m_malloc
- #define obstack_chunk_free free
- #include <dpkg/i18n.h>
- #include <dpkg/dpkg.h>
- #include <dpkg/dpkg-db.h>
- #include <dpkg/pkg.h>
- #include <dpkg/path.h>
- #include <dpkg/fdio.h>
- #include <dpkg/buffer.h>
- #include <dpkg/subproc.h>
- #include <dpkg/command.h>
- #include <dpkg/file.h>
- #include <dpkg/tarfn.h>
- #include <dpkg/options.h>
- #include <dpkg/triglib.h>
- #ifdef WITH_SELINUX
- #include <selinux/selinux.h>
- #include <selinux/avc.h>
- #include <selinux/label.h>
- #endif
- #include "filesdb.h"
- #include "main.h"
- #include "archives.h"
- #include "filters.h"
- #include "infodb.h"
- static inline void
- fd_writeback_init(int fd)
- {
- /* Ignore the return code as it should be considered equivalent to an
- * asynchronous hint for the kernel, we are doing an fsync() later on
- * anyway. */
- #if defined(SYNC_FILE_RANGE_WRITE)
- sync_file_range(fd, 0, 0, SYNC_FILE_RANGE_WRITE);
- #elif defined(HAVE_POSIX_FADVISE)
- posix_fadvise(fd, 0, 0, POSIX_FADV_DONTNEED);
- #endif
- }
- static struct obstack tar_obs;
- static bool tarobs_init = false;
- /**
- * Ensure the obstack is properly initialized.
- */
- static void ensureobstackinit(void) {
- if (!tarobs_init) {
- obstack_init(&tar_obs);
- tarobs_init = true;
- }
- }
- /**
- * Destroy the obstack.
- */
- static void destroyobstack(void) {
- if (tarobs_init) {
- obstack_free(&tar_obs, NULL);
- tarobs_init = false;
- }
- }
- /**
- * Check if a file or directory will save a package from disappearance.
- *
- * A package can only be saved by a file or directory which is part
- * only of itself - it must be neither part of the new package being
- * installed nor part of any 3rd package (this is important so that
- * shared directories don't stop packages from disappearing).
- */
- bool
- filesavespackage(struct fileinlist *file,
- struct pkginfo *pkgtobesaved,
- struct pkginfo *pkgbeinginstalled)
- {
- struct filepackages_iterator *iter;
- struct pkgset *divpkgset;
- struct pkginfo *thirdpkg;
- debug(dbg_eachfiledetail, "filesavespackage file '%s' package %s",
- file->namenode->name, pkg_name(pkgtobesaved, pnaw_always));
- /* If the file is a contended one and it's overridden by either
- * the package we're considering disappearing or the package
- * we're installing then they're not actually the same file, so
- * we can't disappear the package - it is saved by this file. */
- if (file->namenode->divert && file->namenode->divert->useinstead) {
- divpkgset = file->namenode->divert->pkgset;
- if (divpkgset == pkgtobesaved->set || divpkgset == pkgbeinginstalled->set) {
- debug(dbg_eachfiledetail,"filesavespackage ... diverted -- save!");
- return true;
- }
- }
- /* Is the file in the package being installed? If so then it can't save. */
- if (file->namenode->flags & fnnf_new_inarchive) {
- debug(dbg_eachfiledetail,"filesavespackage ... in new archive -- no save");
- return false;
- }
- /* Look for a 3rd package which can take over the file (in case
- * it's a directory which is shared by many packages. */
- iter = filepackages_iter_new(file->namenode);
- while ((thirdpkg = filepackages_iter_next(iter))) {
- debug(dbg_eachfiledetail, "filesavespackage ... also in %s",
- pkg_name(thirdpkg, pnaw_always));
- /* Is this not the package being installed or the one being
- * checked for disappearance? */
- if (thirdpkg == pkgbeinginstalled || thirdpkg == pkgtobesaved)
- continue;
- /* A Multi-Arch: same package can share files and their presence in a
- * third package of the same set is not a sign that we can get rid of
- * it. */
- if (pkgtobesaved->installed.multiarch == PKG_MULTIARCH_SAME &&
- thirdpkg->set == pkgtobesaved->set)
- continue;
- /* If !fileslistvalid then we've already disappeared this one, so
- * we shouldn't try to make it take over this shared directory. */
- debug(dbg_eachfiledetail,"filesavespackage ... is 3rd package");
- if (!thirdpkg->clientdata->fileslistvalid) {
- debug(dbg_eachfiledetail, "process_archive ... already disappeared!");
- continue;
- }
- /* We've found a package that can take this file. */
- debug(dbg_eachfiledetail, "filesavespackage ... taken -- no save");
- filepackages_iter_free(iter);
- return false;
- }
- filepackages_iter_free(iter);
- debug(dbg_eachfiledetail, "filesavespackage ... not taken -- save !");
- return true;
- }
- static void
- md5hash_prev_conffile(struct pkginfo *pkg, char *oldhash, const char *oldname,
- struct filenamenode *namenode)
- {
- struct pkginfo *otherpkg;
- struct conffile *conff;
- debug(dbg_conffdetail, "tarobject looking for shared conffile %s",
- namenode->name);
- for (otherpkg = &pkg->set->pkg; otherpkg; otherpkg = otherpkg->arch_next) {
- if (otherpkg == pkg)
- continue;
- /* The hash in the Conffiles is only meaningful if the package
- * configuration has been at least tried. */
- if (otherpkg->status < stat_unpacked)
- continue;
- /* If we are reinstalling, even if the other package is only unpacked,
- * we can always make use of the Conffiles hash value from an initial
- * installation, if that happened at all. */
- if (otherpkg->status == stat_unpacked &&
- dpkg_version_compare(&otherpkg->installed.version,
- &otherpkg->configversion) != 0)
- continue;
- for (conff = otherpkg->installed.conffiles; conff; conff = conff->next) {
- if (conff->obsolete)
- continue;
- if (strcmp(conff->name, namenode->name) == 0)
- break;
- }
- if (conff) {
- strcpy(oldhash, conff->hash);
- debug(dbg_conffdetail,
- "tarobject found shared conffile, from pkg %s (%s); hash=%s",
- pkg_name(otherpkg, pnaw_always),
- pkg_status_name(otherpkg), oldhash);
- break;
- }
- }
- /* If no package was found with a valid Conffiles field, we make the
- * risky assumption that the hash of the current .dpkg-new file is
- * the one of the previously unpacked package. */
- if (otherpkg == NULL) {
- md5hash(pkg, oldhash, oldname);
- debug(dbg_conffdetail,
- "tarobject found shared conffile, from disk; hash=%s", oldhash);
- }
- }
- void cu_pathname(int argc, void **argv) {
- ensure_pathname_nonexisting((char*)(argv[0]));
- }
- int tarfileread(void *ud, char *buf, int len) {
- struct tarcontext *tc= (struct tarcontext*)ud;
- int r;
- r = fd_read(tc->backendpipe, buf, len);
- if (r < 0)
- ohshite(_("error reading from dpkg-deb pipe"));
- return r;
- }
- static void
- tarobject_skip_padding(struct tarcontext *tc, struct tar_entry *te)
- {
- struct dpkg_error err;
- size_t r;
- r = te->size % TARBLKSZ;
- if (r == 0)
- return;
- if (fd_skip(tc->backendpipe, TARBLKSZ - r, &err) < 0)
- ohshit(_("cannot skip padding for file '%.255s': %s"), te->name, err.str);
- }
- static void
- tarobject_skip_entry(struct tarcontext *tc, struct tar_entry *ti)
- {
- /* We need to advance the tar file to the next object, so read the
- * file data and set it to oblivion. */
- if (ti->type == TAR_FILETYPE_FILE) {
- struct dpkg_error err;
- char fnamebuf[256];
- if (fd_skip(tc->backendpipe, ti->size, &err) < 0)
- ohshit(_("cannot skip file '%.255s' (replaced or excluded?) from pipe: %s"),
- path_quote_filename(fnamebuf, ti->name, 256), err.str);
- tarobject_skip_padding(tc, ti);
- }
- }
- int fnameidlu;
- struct varbuf fnamevb;
- struct varbuf fnametmpvb;
- struct varbuf fnamenewvb;
- struct pkg_deconf_list *deconfigure = NULL;
- static time_t currenttime;
- static int
- does_replace(struct pkginfo *new_pkg, struct pkgbin *new_pkgbin,
- struct pkginfo *old_pkg, struct pkgbin *old_pkgbin)
- {
- struct dependency *dep;
- debug(dbg_depcon,"does_replace new=%s old=%s (%s)",
- pkgbin_name(new_pkg, new_pkgbin, pnaw_always),
- pkgbin_name(old_pkg, old_pkgbin, pnaw_always),
- versiondescribe(&old_pkgbin->version, vdew_always));
- for (dep = new_pkgbin->depends; dep; dep = dep->next) {
- if (dep->type != dep_replaces || dep->list->ed != old_pkg->set)
- continue;
- debug(dbg_depcondetail,"does_replace ... found old, version %s",
- versiondescribe(&dep->list->version,vdew_always));
- if (!versionsatisfied(old_pkgbin, dep->list))
- continue;
- /* The test below can only trigger if dep_replaces start having
- * arch qualifiers different from “any”. */
- if (!archsatisfied(old_pkgbin, dep->list))
- continue;
- debug(dbg_depcon,"does_replace ... yes");
- return true;
- }
- debug(dbg_depcon,"does_replace ... no");
- return false;
- }
- static void
- tarobject_extract(struct tarcontext *tc, struct tar_entry *te,
- const char *path, struct file_stat *st,
- struct filenamenode *namenode)
- {
- static struct varbuf hardlinkfn;
- static int fd;
- struct dpkg_error err;
- struct filenamenode *linknode;
- char fnamebuf[256];
- char fnamenewbuf[256];
- char *newhash;
- switch (te->type) {
- case TAR_FILETYPE_FILE:
- /* We create the file with mode 0 to make sure nobody can do anything with
- * it until we apply the proper mode, which might be a statoverride. */
- fd = open(path, O_CREAT | O_EXCL | O_WRONLY, 0);
- if (fd < 0)
- ohshite(_("unable to create `%.255s' (while processing `%.255s')"),
- path, te->name);
- push_cleanup(cu_closefd, ehflag_bombout, NULL, 0, 1, &fd);
- debug(dbg_eachfiledetail, "tarobject file open size=%jd",
- (intmax_t)te->size);
- newhash = nfmalloc(MD5HASHLEN + 1);
- if (fd_fd_copy_and_md5(tc->backendpipe, fd, newhash, te->size, &err) < 0)
- ohshit(_("cannot copy extracted data for '%.255s' to '%.255s': %s"),
- path_quote_filename(fnamebuf, te->name, 256),
- path_quote_filename(fnamenewbuf, fnamenewvb.buf, 256), err.str);
- namenode->newhash = newhash;
- debug(dbg_eachfiledetail, "tarobject file hash=%s", namenode->newhash);
- tarobject_skip_padding(tc, te);
- fd_writeback_init(fd);
- if (namenode->statoverride)
- debug(dbg_eachfile, "tarobject ... stat override, uid=%d, gid=%d, mode=%04o",
- namenode->statoverride->uid,
- namenode->statoverride->gid,
- namenode->statoverride->mode);
- if (fchown(fd, st->uid, st->gid))
- ohshite(_("error setting ownership of `%.255s'"), te->name);
- if (fchmod(fd, st->mode & ~S_IFMT))
- ohshite(_("error setting permissions of `%.255s'"), te->name);
- /* Postpone the fsync, to try to avoid massive I/O degradation. */
- if (!fc_unsafe_io)
- namenode->flags |= fnnf_deferred_fsync;
- pop_cleanup(ehflag_normaltidy); /* fd = open(path) */
- if (close(fd))
- ohshite(_("error closing/writing `%.255s'"), te->name);
- break;
- case TAR_FILETYPE_FIFO:
- if (mkfifo(path, 0))
- ohshite(_("error creating pipe `%.255s'"), te->name);
- debug(dbg_eachfiledetail, "tarobject fifo");
- break;
- case TAR_FILETYPE_CHARDEV:
- if (mknod(path, S_IFCHR, te->dev))
- ohshite(_("error creating device `%.255s'"), te->name);
- debug(dbg_eachfiledetail, "tarobject chardev");
- break;
- case TAR_FILETYPE_BLOCKDEV:
- if (mknod(path, S_IFBLK, te->dev))
- ohshite(_("error creating device `%.255s'"), te->name);
- debug(dbg_eachfiledetail, "tarobject blockdev");
- break;
- case TAR_FILETYPE_HARDLINK:
- varbuf_reset(&hardlinkfn);
- varbuf_add_str(&hardlinkfn, instdir);
- varbuf_add_char(&hardlinkfn, '/');
- linknode = findnamenode(te->linkname, 0);
- varbuf_add_str(&hardlinkfn,
- namenodetouse(linknode, tc->pkg, &tc->pkg->available)->name);
- if (linknode->flags & (fnnf_deferred_rename | fnnf_new_conff))
- varbuf_add_str(&hardlinkfn, DPKGNEWEXT);
- varbuf_end_str(&hardlinkfn);
- if (link(hardlinkfn.buf, path))
- ohshite(_("error creating hard link `%.255s'"), te->name);
- namenode->newhash = linknode->newhash;
- debug(dbg_eachfiledetail, "tarobject hardlink hash=%s", namenode->newhash);
- break;
- case TAR_FILETYPE_SYMLINK:
- /* We've already checked for an existing directory. */
- if (symlink(te->linkname, path))
- ohshite(_("error creating symbolic link `%.255s'"), te->name);
- debug(dbg_eachfiledetail, "tarobject symlink creating");
- break;
- case TAR_FILETYPE_DIR:
- /* We've already checked for an existing directory. */
- if (mkdir(path, 0))
- ohshite(_("error creating directory `%.255s'"), te->name);
- debug(dbg_eachfiledetail, "tarobject directory creating");
- break;
- default:
- internerr("unknown tar type '%d', but already checked", te->type);
- }
- }
- static void
- tarobject_hash(struct tarcontext *tc, struct tar_entry *te,
- struct filenamenode *namenode)
- {
- if (te->type == TAR_FILETYPE_FILE) {
- struct dpkg_error err;
- char fnamebuf[256];
- char *newhash;
- newhash = nfmalloc(MD5HASHLEN + 1);
- if (fd_md5(tc->backendpipe, newhash, te->size, &err) < 0)
- ohshit(_("cannot compute MD5 hash for tar file '%.255s': %s"),
- path_quote_filename(fnamebuf, te->name, 256), err.str);
- tarobject_skip_padding(tc, te);
- namenode->newhash = newhash;
- debug(dbg_eachfiledetail, "tarobject file hash=%s", namenode->newhash);
- } else if (te->type == TAR_FILETYPE_HARDLINK) {
- struct filenamenode *linknode;
- linknode = findnamenode(te->linkname, 0);
- namenode->newhash = linknode->newhash;
- debug(dbg_eachfiledetail, "tarobject hardlink hash=%s", namenode->newhash);
- }
- }
- static void
- tarobject_set_mtime(struct tar_entry *te, const char *path)
- {
- struct timeval tv[2];
- tv[0].tv_sec = currenttime;
- tv[0].tv_usec = 0;
- tv[1].tv_sec = te->mtime;
- tv[1].tv_usec = 0;
- if (te->type == TAR_FILETYPE_SYMLINK) {
- #ifdef HAVE_LUTIMES
- if (lutimes(path, tv) && errno != ENOSYS)
- ohshite(_("error setting timestamps of `%.255s'"), path);
- #endif
- } else {
- if (utimes(path, tv))
- ohshite(_("error setting timestamps of `%.255s'"), path);
- }
- }
- static void
- tarobject_set_perms(struct tar_entry *te, const char *path, struct file_stat *st)
- {
- if (te->type == TAR_FILETYPE_FILE)
- return; /* Already handled using the file descriptor. */
- if (te->type == TAR_FILETYPE_SYMLINK) {
- if (lchown(path, st->uid, st->gid))
- ohshite(_("error setting ownership of symlink `%.255s'"), path);
- } else {
- if (chown(path, st->uid, st->gid))
- ohshite(_("error setting ownership of `%.255s'"), path);
- if (chmod(path, st->mode & ~S_IFMT))
- ohshite(_("error setting permissions of `%.255s'"), path);
- }
- }
- #ifdef WITH_SELINUX
- static struct selabel_handle *dpkg_sehandle;
- static struct selabel_handle *
- dpkg_selabel_get_handle(void)
- {
- return dpkg_sehandle;
- }
- #endif
- static void
- dpkg_selabel_load(void)
- {
- #ifdef WITH_SELINUX
- static int selinux_enabled = -1;
- if (selinux_enabled < 0) {
- int rc;
- /* Set selinux_enabled if it is not already set (singleton). */
- selinux_enabled = (is_selinux_enabled() > 0);
- if (!selinux_enabled)
- return;
- /* Open the SELinux status notification channel, with fallback enabled
- * for older kernels. */
- rc = selinux_status_open(1);
- if (rc < 0)
- ohshit(_("cannot open security status notification channel"));
- /* XXX: We could use selinux_set_callback() to redirect the errors from
- * the other SELinux calls, but that does not seem worth it right now. */
- } else if (selinux_enabled && selinux_status_updated()) {
- /* The SELinux policy got updated in the kernel, usually after upgrading
- * the package shipping it, we need to reload. */
- selabel_close(dpkg_sehandle);
- } else {
- /* SELinux is either disabled or it does not need a reload. */
- return;
- }
- dpkg_sehandle = selabel_open(SELABEL_CTX_FILE, NULL, 0);
- if (dpkg_sehandle == NULL)
- ohshite(_("cannot get security labeling handle"));
- #endif
- }
- static void
- dpkg_selabel_close(void)
- {
- #ifdef WITH_SELINUX
- if (dpkg_sehandle == NULL)
- return;
- selinux_status_close();
- selabel_close(dpkg_sehandle);
- dpkg_sehandle = NULL;
- #endif
- }
- static void
- tarobject_set_se_context(const char *matchpath, const char *path, mode_t mode)
- {
- #ifdef WITH_SELINUX
- struct selabel_handle *sehandle;
- security_context_t scontext = NULL;
- int ret;
- /* If there's no file type, just give up. */
- if ((mode & S_IFMT) == 0)
- return;
- /* If SELinux is not enabled just do nothing. */
- sehandle = dpkg_selabel_get_handle();
- if (sehandle == NULL)
- return;
- /*
- * We use the _raw function variants here so that no translation happens
- * from computer to human readable forms, to avoid issues when mcstransd
- * has disappeared during the unpack process.
- */
- /* Do nothing if we can't figure out what the context is, or if it has
- * no context; in which case the default context shall be applied. */
- ret = selabel_lookup_raw(sehandle, &scontext, matchpath, mode & S_IFMT);
- if (ret == -1 || (ret == 0 && scontext == NULL))
- return;
- ret = lsetfilecon_raw(path, scontext);
- if (ret < 0 && errno != ENOTSUP)
- ohshite(_("cannot set security context for file object '%s'"), path);
- freecon(scontext);
- #endif /* WITH_SELINUX */
- }
- static void
- tarobject_matches(struct tarcontext *tc,
- const char *fn_old, struct stat *stab, char *oldhash,
- const char *fn_new, struct tar_entry *te,
- struct filenamenode *namenode)
- {
- char *linkname;
- ssize_t linksize;
- debug(dbg_eachfiledetail, "tarobject matches on-disk object?");
- switch (te->type) {
- case TAR_FILETYPE_DIR:
- /* Nothing to check for a new directory. */
- return;
- case TAR_FILETYPE_SYMLINK:
- /* Symlinks to existing dirs have already been dealt with, only
- * reamin real symlinks where we can compare the target. */
- if (!S_ISLNK(stab->st_mode))
- break;
- linkname = m_malloc(stab->st_size + 1);
- linksize = readlink(fn_old, linkname, stab->st_size + 1);
- if (linksize < 0)
- ohshite(_("unable to read link `%.255s'"), fn_old);
- else if (linksize != stab->st_size)
- ohshit(_("symbolic link '%.250s' size has changed from %jd to %zd"),
- fn_old, stab->st_size, linksize);
- linkname[linksize] = '\0';
- if (strcmp(linkname, te->linkname) == 0) {
- free(linkname);
- return;
- } else {
- free(linkname);
- }
- break;
- case TAR_FILETYPE_CHARDEV:
- if (S_ISCHR(stab->st_mode) && stab->st_rdev == te->dev)
- return;
- break;
- case TAR_FILETYPE_BLOCKDEV:
- if (S_ISBLK(stab->st_mode) && stab->st_rdev == te->dev)
- return;
- break;
- case TAR_FILETYPE_FIFO:
- if (S_ISFIFO(stab->st_mode))
- return;
- break;
- case TAR_FILETYPE_HARDLINK:
- /* Fall through. */
- case TAR_FILETYPE_FILE:
- /* Only check metadata for non-conffiles. */
- if (!(namenode->flags & fnnf_new_conff) &&
- !(S_ISREG(stab->st_mode) && te->size == stab->st_size))
- break;
- if (strcmp(oldhash, namenode->newhash) == 0)
- return;
- break;
- default:
- internerr("unknown tar type '%d', but already checked", te->type);
- }
- forcibleerr(fc_overwrite,
- _("trying to overwrite shared '%.250s', which is different "
- "from other instances of package %.250s"),
- namenode->name, pkg_name(tc->pkg, pnaw_nonambig));
- }
- void setupfnamevbs(const char *filename) {
- varbuf_trunc(&fnamevb, fnameidlu);
- varbuf_add_str(&fnamevb, filename);
- varbuf_end_str(&fnamevb);
- varbuf_trunc(&fnametmpvb, fnameidlu);
- varbuf_add_str(&fnametmpvb, filename);
- varbuf_add_str(&fnametmpvb, DPKGTEMPEXT);
- varbuf_end_str(&fnametmpvb);
- varbuf_trunc(&fnamenewvb, fnameidlu);
- varbuf_add_str(&fnamenewvb, filename);
- varbuf_add_str(&fnamenewvb, DPKGNEWEXT);
- varbuf_end_str(&fnamenewvb);
- debug(dbg_eachfiledetail, "setupvnamevbs main='%s' tmp='%s' new='%s'",
- fnamevb.buf, fnametmpvb.buf, fnamenewvb.buf);
- }
- /**
- * Securely remove a pathname.
- *
- * This is a secure version of remove(3) using secure_unlink() instead of
- * unlink(2).
- *
- * @retval 0 On success.
- * @retval -1 On failure, just like unlink(2) & rmdir(2).
- */
- int
- secure_remove(const char *filename)
- {
- int rc, e;
- if (!rmdir(filename)) {
- debug(dbg_eachfiledetail, "secure_remove '%s' rmdir OK", filename);
- return 0;
- }
- if (errno != ENOTDIR) {
- e= errno;
- debug(dbg_eachfiledetail, "secure_remove '%s' rmdir %s", filename,
- strerror(e));
- errno= e; return -1;
- }
- rc = secure_unlink(filename);
- e = errno;
- debug(dbg_eachfiledetail, "secure_remove '%s' unlink %s",
- filename, rc ? strerror(e) : "OK");
- errno = e;
- return rc;
- }
- struct fileinlist *addfiletolist(struct tarcontext *tc,
- struct filenamenode *namenode) {
- struct fileinlist *nifd;
- nifd= obstack_alloc(&tar_obs, sizeof(struct fileinlist));
- nifd->namenode= namenode;
- nifd->next = NULL;
- *tc->newfilesp = nifd;
- tc->newfilesp = &nifd->next;
- return nifd;
- }
- static void
- remove_file_from_list(struct tarcontext *tc, struct tar_entry *ti,
- struct fileinlist **oldnifd,
- struct fileinlist *nifd)
- {
- obstack_free(&tar_obs, nifd);
- tc->newfilesp = oldnifd;
- *oldnifd = NULL;
- }
- static bool
- linktosameexistingdir(const struct tar_entry *ti, const char *fname,
- struct varbuf *symlinkfn)
- {
- struct stat oldstab, newstab;
- int statr;
- const char *lastslash;
- statr= stat(fname, &oldstab);
- if (statr) {
- if (!(errno == ENOENT || errno == ELOOP || errno == ENOTDIR))
- ohshite(_("failed to stat (dereference) existing symlink `%.250s'"),
- fname);
- return false;
- }
- if (!S_ISDIR(oldstab.st_mode))
- return false;
- /* But is it to the same dir? */
- varbuf_reset(symlinkfn);
- if (ti->linkname[0] == '/') {
- varbuf_add_str(symlinkfn, instdir);
- } else {
- lastslash= strrchr(fname, '/');
- assert(lastslash);
- varbuf_add_buf(symlinkfn, fname, (lastslash - fname) + 1);
- }
- varbuf_add_str(symlinkfn, ti->linkname);
- varbuf_end_str(symlinkfn);
- statr= stat(symlinkfn->buf, &newstab);
- if (statr) {
- if (!(errno == ENOENT || errno == ELOOP || errno == ENOTDIR))
- ohshite(_("failed to stat (dereference) proposed new symlink target"
- " `%.250s' for symlink `%.250s'"), symlinkfn->buf, fname);
- return false;
- }
- if (!S_ISDIR(newstab.st_mode))
- return false;
- if (newstab.st_dev != oldstab.st_dev ||
- newstab.st_ino != oldstab.st_ino)
- return false;
- return true;
- }
- int
- tarobject(void *ctx, struct tar_entry *ti)
- {
- static struct varbuf conffderefn, symlinkfn;
- const char *usename;
- struct filenamenode *usenode;
- struct conffile *conff;
- struct tarcontext *tc = ctx;
- bool existingdir, keepexisting;
- bool refcounting;
- char oldhash[MD5HASHLEN + 1];
- int statr;
- ssize_t r;
- struct stat stab, stabtmp;
- struct file_stat *st;
- struct fileinlist *nifd, **oldnifd;
- struct pkgset *divpkgset;
- struct pkginfo *otherpkg;
- ensureobstackinit();
- /* Append to list of files.
- * The trailing ‘/’ put on the end of names in tarfiles has already
- * been stripped by tar_extractor(). */
- oldnifd= tc->newfilesp;
- nifd= addfiletolist(tc, findnamenode(ti->name, 0));
- nifd->namenode->flags |= fnnf_new_inarchive;
- debug(dbg_eachfile,
- "tarobject ti->name='%s' mode=%lo owner=%u:%u type=%d(%c)"
- " ti->linkname='%s' namenode='%s' flags=%o instead='%s'",
- ti->name, (long)ti->stat.mode,
- (unsigned)ti->stat.uid, (unsigned)ti->stat.gid,
- ti->type,
- ti->type >= '0' && ti->type <= '6' ? "-hlcbdp"[ti->type - '0'] : '?',
- ti->linkname,
- nifd->namenode->name, nifd->namenode->flags,
- nifd->namenode->divert && nifd->namenode->divert->useinstead
- ? nifd->namenode->divert->useinstead->name : "<none>");
- if (nifd->namenode->divert && nifd->namenode->divert->camefrom) {
- divpkgset = nifd->namenode->divert->pkgset;
- if (divpkgset) {
- forcibleerr(fc_overwritediverted,
- _("trying to overwrite `%.250s', which is the "
- "diverted version of `%.250s' (package: %.100s)"),
- nifd->namenode->name, nifd->namenode->divert->camefrom->name,
- divpkgset->name);
- } else {
- forcibleerr(fc_overwritediverted,
- _("trying to overwrite `%.250s', which is the "
- "diverted version of `%.250s'"),
- nifd->namenode->name, nifd->namenode->divert->camefrom->name);
- }
- }
- if (nifd->namenode->statoverride)
- st = nifd->namenode->statoverride;
- else
- st = &ti->stat;
- usenode = namenodetouse(nifd->namenode, tc->pkg, &tc->pkg->available);
- usename = usenode->name + 1; /* Skip the leading '/'. */
- trig_file_activate(usenode, tc->pkg);
- if (nifd->namenode->flags & fnnf_new_conff) {
- /* If it's a conffile we have to extract it next to the installed
- * version (i.e. we do the usual link-following). */
- if (conffderef(tc->pkg, &conffderefn, usename))
- usename= conffderefn.buf;
- debug(dbg_conff, "tarobject fnnf_new_conff deref='%s'", usename);
- }
- setupfnamevbs(usename);
- statr= lstat(fnamevb.buf,&stab);
- if (statr) {
- /* The lstat failed. */
- if (errno != ENOENT && errno != ENOTDIR)
- ohshite(_("unable to stat `%.255s' (which I was about to install)"),
- ti->name);
- /* OK, so it doesn't exist.
- * However, it's possible that we were in the middle of some other
- * backup/restore operation and were rudely interrupted.
- * So, we see if we have .dpkg-tmp, and if so we restore it. */
- if (rename(fnametmpvb.buf,fnamevb.buf)) {
- if (errno != ENOENT && errno != ENOTDIR)
- ohshite(_("unable to clean up mess surrounding `%.255s' before "
- "installing another version"), ti->name);
- debug(dbg_eachfiledetail,"tarobject nonexistent");
- } else {
- debug(dbg_eachfiledetail,"tarobject restored tmp to main");
- statr= lstat(fnamevb.buf,&stab);
- if (statr) ohshite(_("unable to stat restored `%.255s' before installing"
- " another version"), ti->name);
- }
- } else {
- debug(dbg_eachfiledetail,"tarobject already exists");
- }
- /* Check to see if it's a directory or link to one and we don't need to
- * do anything. This has to be done now so that we don't die due to
- * a file overwriting conflict. */
- existingdir = false;
- switch (ti->type) {
- case TAR_FILETYPE_SYMLINK:
- /* If it's already an existing directory, do nothing. */
- if (!statr && S_ISDIR(stab.st_mode)) {
- debug(dbg_eachfiledetail, "tarobject symlink exists as directory");
- existingdir = true;
- } else if (!statr && S_ISLNK(stab.st_mode)) {
- if (linktosameexistingdir(ti, fnamevb.buf, &symlinkfn))
- existingdir = true;
- }
- break;
- case TAR_FILETYPE_DIR:
- /* If it's already an existing directory, do nothing. */
- if (!stat(fnamevb.buf,&stabtmp) && S_ISDIR(stabtmp.st_mode)) {
- debug(dbg_eachfiledetail, "tarobject directory exists");
- existingdir = true;
- }
- break;
- case TAR_FILETYPE_FILE:
- case TAR_FILETYPE_CHARDEV:
- case TAR_FILETYPE_BLOCKDEV:
- case TAR_FILETYPE_FIFO:
- case TAR_FILETYPE_HARDLINK:
- break;
- default:
- ohshit(_("archive contained object `%.255s' of unknown type 0x%x"),
- ti->name, ti->type);
- }
- keepexisting = false;
- refcounting = false;
- if (!existingdir) {
- struct filepackages_iterator *iter;
- iter = filepackages_iter_new(nifd->namenode);
- while ((otherpkg = filepackages_iter_next(iter))) {
- if (otherpkg == tc->pkg)
- continue;
- debug(dbg_eachfile, "tarobject ... found in %s",
- pkg_name(otherpkg, pnaw_always));
- /* A pkgset can share files between its instances. Overwriting
- * is allowed when they are not getting in sync, otherwise the
- * file content must match the installed file. */
- if (otherpkg->set == tc->pkg->set &&
- otherpkg->installed.multiarch == PKG_MULTIARCH_SAME &&
- tc->pkg->available.multiarch == PKG_MULTIARCH_SAME) {
- if (statr == 0 && tc->pkgset_getting_in_sync)
- refcounting = true;
- debug(dbg_eachfiledetail, "tarobject ... shared with %s %s (syncing=%d)",
- pkg_name(otherpkg, pnaw_always),
- versiondescribe(&otherpkg->installed.version, vdew_nonambig),
- tc->pkgset_getting_in_sync);
- continue;
- }
- if (nifd->namenode->divert && nifd->namenode->divert->useinstead) {
- /* Right, so we may be diverting this file. This makes the conflict
- * OK iff one of us is the diverting package (we don't need to
- * check for both being the diverting package, obviously). */
- divpkgset = nifd->namenode->divert->pkgset;
- debug(dbg_eachfile, "tarobject ... diverted, divpkgset=%s",
- divpkgset ? divpkgset->name : "<none>");
- if (otherpkg->set == divpkgset || tc->pkg->set == divpkgset)
- continue;
- }
- /* If the new object is a directory and the previous object does
- * not exist assume it's also a directory and skip further checks.
- * XXX: Ideally with more information about the installed files we
- * could perform more clever checks. */
- if (statr != 0 && ti->type == TAR_FILETYPE_DIR) {
- debug(dbg_eachfile, "tarobject ... assuming shared directory");
- continue;
- }
- /* Nope? Hmm, file conflict, perhaps. Check Replaces. */
- switch (otherpkg->clientdata->replacingfilesandsaid) {
- case 2:
- keepexisting = true;
- case 1:
- continue;
- }
- /* Is the package with the conflicting file in the “config files only”
- * state? If so it must be a config file and we can silenty take it
- * over. */
- if (otherpkg->status == stat_configfiles)
- continue;
- /* Perhaps we're removing a conflicting package? */
- if (otherpkg->clientdata->istobe == PKG_ISTOBE_REMOVE)
- continue;
- /* Is the file an obsolete conffile in the other package
- * and a conffile in the new package? */
- if ((nifd->namenode->flags & fnnf_new_conff) &&
- !statr && S_ISREG(stab.st_mode)) {
- for (conff = otherpkg->installed.conffiles;
- conff;
- conff = conff->next) {
- if (!conff->obsolete)
- continue;
- if (stat(conff->name, &stabtmp)) {
- if (errno == ENOENT || errno == ENOTDIR || errno == ELOOP)
- continue;
- else
- ohshite(_("cannot stat file '%s'"), conff->name);
- }
- if (stabtmp.st_dev == stab.st_dev &&
- stabtmp.st_ino == stab.st_ino)
- break;
- }
- if (conff) {
- debug(dbg_eachfiledetail, "tarobject other's obsolete conffile");
- /* process_archive() will have copied its hash already. */
- continue;
- }
- }
- if (does_replace(tc->pkg, &tc->pkg->available,
- otherpkg, &otherpkg->installed)) {
- printf(_("Replacing files in old package %s (%s) ...\n"),
- pkg_name(otherpkg, pnaw_nonambig),
- versiondescribe(&otherpkg->installed.version, vdew_nonambig));
- otherpkg->clientdata->replacingfilesandsaid = 1;
- } else if (does_replace(otherpkg, &otherpkg->installed,
- tc->pkg, &tc->pkg->available)) {
- printf(_("Replaced by files in installed package %s (%s) ...\n"),
- pkg_name(otherpkg, pnaw_nonambig),
- versiondescribe(&otherpkg->installed.version, vdew_nonambig));
- otherpkg->clientdata->replacingfilesandsaid = 2;
- nifd->namenode->flags &= ~fnnf_new_inarchive;
- keepexisting = true;
- } else {
- /* At this point we are replacing something without a Replaces. */
- if (!statr && S_ISDIR(stab.st_mode)) {
- forcibleerr(fc_overwritedir,
- _("trying to overwrite directory '%.250s' "
- "in package %.250s %.250s with nondirectory"),
- nifd->namenode->name, pkg_name(otherpkg, pnaw_nonambig),
- versiondescribe(&otherpkg->installed.version,
- vdew_nonambig));
- } else {
- forcibleerr(fc_overwrite,
- _("trying to overwrite '%.250s', "
- "which is also in package %.250s %.250s"),
- nifd->namenode->name, pkg_name(otherpkg, pnaw_nonambig),
- versiondescribe(&otherpkg->installed.version,
- vdew_nonambig));
- }
- }
- }
- filepackages_iter_free(iter);
- }
- if (keepexisting) {
- if (nifd->namenode->flags & fnnf_new_conff)
- nifd->namenode->flags |= fnnf_obs_conff;
- remove_file_from_list(tc, ti, oldnifd, nifd);
- tarobject_skip_entry(tc, ti);
- return 0;
- }
- if (filter_should_skip(ti)) {
- nifd->namenode->flags &= ~fnnf_new_inarchive;
- nifd->namenode->flags |= fnnf_filtered;
- tarobject_skip_entry(tc, ti);
- return 0;
- }
- if (existingdir)
- return 0;
- /* Compute the hash of the previous object, before we might replace it
- * with the new version on forced overwrites. */
- if (refcounting) {
- debug(dbg_eachfiledetail, "tarobject hashing on-disk file '%s', refcounting",
- fnamevb.buf);
- if (nifd->namenode->flags & fnnf_new_conff) {
- md5hash_prev_conffile(tc->pkg, oldhash, fnamenewvb.buf, nifd->namenode);
- } else if (S_ISREG(stab.st_mode)) {
- md5hash(tc->pkg, oldhash, fnamevb.buf);
- } else {
- strcpy(oldhash, EMPTYHASHFLAG);
- }
- }
- if (refcounting && !fc_overwrite) {
- /* If we are not forced to overwrite the path and are refcounting,
- * just compute the hash w/o extracting the object. */
- tarobject_hash(tc, ti, nifd->namenode);
- } else {
- /* Now, at this stage we want to make sure neither of .dpkg-new and
- * .dpkg-tmp are hanging around. */
- ensure_pathname_nonexisting(fnamenewvb.buf);
- ensure_pathname_nonexisting(fnametmpvb.buf);
- /* Now we start to do things that we need to be able to undo
- * if something goes wrong. Watch out for the CLEANUP comments to
- * keep an eye on what's installed on the disk at each point. */
- push_cleanup(cu_installnew, ~ehflag_normaltidy, NULL, 0, 1, nifd->namenode);
- /*
- * CLEANUP: Now we either have the old file on the disk, or not, in
- * its original filename.
- */
- /* Extract whatever it is as .dpkg-new ... */
- tarobject_extract(tc, ti, fnamenewvb.buf, st, nifd->namenode);
- }
- /* For shared files, check now if the object matches. */
- if (refcounting)
- tarobject_matches(tc, fnamevb.buf, &stab, oldhash,
- fnamenewvb.buf, ti, nifd->namenode);
- /* If we didn't extract anything, there's nothing else to do. */
- if (refcounting && !fc_overwrite)
- return 0;
- tarobject_set_perms(ti, fnamenewvb.buf, st);
- tarobject_set_mtime(ti, fnamenewvb.buf);
- tarobject_set_se_context(fnamevb.buf, fnamenewvb.buf, st->mode);
- /*
- * CLEANUP: Now we have extracted the new object in .dpkg-new (or,
- * if the file already exists as a directory and we were trying to
- * extract a directory or symlink, we returned earlier, so we don't
- * need to worry about that here).
- *
- * The old file is still in the original filename,
- */
- /* First, check to see if it's a conffile. If so we don't install
- * it now - we leave it in .dpkg-new for --configure to take care of. */
- if (nifd->namenode->flags & fnnf_new_conff) {
- debug(dbg_conffdetail,"tarobject conffile extracted");
- nifd->namenode->flags |= fnnf_elide_other_lists;
- return 0;
- }
- /* Now we move the old file out of the way, the backup file will
- * be deleted later. */
- if (statr) {
- /* Don't try to back it up if it didn't exist. */
- debug(dbg_eachfiledetail,"tarobject new - no backup");
- } else {
- if (ti->type == TAR_FILETYPE_DIR || S_ISDIR(stab.st_mode)) {
- /* One of the two is a directory - can't do atomic install. */
- debug(dbg_eachfiledetail,"tarobject directory, nonatomic");
- nifd->namenode->flags |= fnnf_no_atomic_overwrite;
- if (rename(fnamevb.buf,fnametmpvb.buf))
- ohshite(_("unable to move aside `%.255s' to install new version"),
- ti->name);
- } else if (S_ISLNK(stab.st_mode)) {
- /* We can't make a symlink with two hardlinks, so we'll have to
- * copy it. (Pretend that making a copy of a symlink is the same
- * as linking to it.) */
- varbuf_reset(&symlinkfn);
- varbuf_grow(&symlinkfn, stab.st_size + 1);
- r = readlink(fnamevb.buf, symlinkfn.buf, symlinkfn.size);
- if (r < 0)
- ohshite(_("unable to read link `%.255s'"), ti->name);
- else if (r != stab.st_size)
- ohshit(_("symbolic link '%.250s' size has changed from %jd to %zd"),
- fnamevb.buf, stab.st_size, r);
- varbuf_trunc(&symlinkfn, r);
- varbuf_end_str(&symlinkfn);
- if (symlink(symlinkfn.buf,fnametmpvb.buf))
- ohshite(_("unable to make backup symlink for `%.255s'"), ti->name);
- if (lchown(fnametmpvb.buf,stab.st_uid,stab.st_gid))
- ohshite(_("unable to chown backup symlink for `%.255s'"), ti->name);
- tarobject_set_se_context(fnamevb.buf, fnametmpvb.buf, stab.st_mode);
- } else {
- debug(dbg_eachfiledetail, "tarobject nondirectory, 'link' backup");
- if (link(fnamevb.buf,fnametmpvb.buf))
- ohshite(_("unable to make backup link of `%.255s' before installing new version"),
- ti->name);
- }
- }
- /*
- * CLEANUP: Now the old file is in .dpkg-tmp, and the new file is still
- * in .dpkg-new.
- */
- if (ti->type == TAR_FILETYPE_FILE || ti->type == TAR_FILETYPE_HARDLINK ||
- ti->type == TAR_FILETYPE_SYMLINK) {
- nifd->namenode->flags |= fnnf_deferred_rename;
- debug(dbg_eachfiledetail, "tarobject done and installation deferred");
- } else {
- if (rename(fnamenewvb.buf, fnamevb.buf))
- ohshite(_("unable to install new version of `%.255s'"), ti->name);
- /*
- * CLEANUP: Now the new file is in the destination file, and the
- * old file is in .dpkg-tmp to be cleaned up later. We now need
- * to take a different attitude to cleanup, because we need to
- * remove the new file.
- */
- nifd->namenode->flags |= fnnf_placed_on_disk;
- nifd->namenode->flags |= fnnf_elide_other_lists;
- debug(dbg_eachfiledetail, "tarobject done and installed");
- }
- return 0;
- }
- #if defined(SYNC_FILE_RANGE_WAIT_BEFORE)
- static void
- tar_writeback_barrier(struct fileinlist *files, struct pkginfo *pkg)
- {
- struct fileinlist *cfile;
- for (cfile = files; cfile; cfile = cfile->next) {
- struct filenamenode *usenode;
- const char *usename;
- int fd;
- if (!(cfile->namenode->flags & fnnf_deferred_fsync))
- continue;
- usenode = namenodetouse(cfile->namenode, pkg, &pkg->available);
- usename = usenode->name + 1; /* Skip the leading '/'. */
- setupfnamevbs(usename);
- fd = open(fnamenewvb.buf, O_WRONLY);
- if (fd < 0)
- ohshite(_("unable to open '%.255s'"), fnamenewvb.buf);
- /* Ignore the return code as it should be considered equivalent to an
- * asynchronous hint for the kernel, we are doing an fsync() later on
- * anyway. */
- sync_file_range(fd, 0, 0, SYNC_FILE_RANGE_WAIT_BEFORE);
- if (close(fd))
- ohshite(_("error closing/writing `%.255s'"), fnamenewvb.buf);
- }
- }
- #else
- static void
- tar_writeback_barrier(struct fileinlist *files, struct pkginfo *pkg)
- {
- }
- #endif
- void
- tar_deferred_extract(struct fileinlist *files, struct pkginfo *pkg)
- {
- struct fileinlist *cfile;
- struct filenamenode *usenode;
- const char *usename;
- tar_writeback_barrier(files, pkg);
- for (cfile = files; cfile; cfile = cfile->next) {
- debug(dbg_eachfile, "deferred extract of '%.255s'", cfile->namenode->name);
- if (!(cfile->namenode->flags & fnnf_deferred_rename))
- continue;
- usenode = namenodetouse(cfile->namenode, pkg, &pkg->available);
- usename = usenode->name + 1; /* Skip the leading '/'. */
- setupfnamevbs(usename);
- if (cfile->namenode->flags & fnnf_deferred_fsync) {
- int fd;
- debug(dbg_eachfiledetail, "deferred extract needs fsync");
- fd = open(fnamenewvb.buf, O_WRONLY);
- if (fd < 0)
- ohshite(_("unable to open '%.255s'"), fnamenewvb.buf);
- if (fsync(fd))
- ohshite(_("unable to sync file '%.255s'"), fnamenewvb.buf);
- if (close(fd))
- ohshite(_("error closing/writing `%.255s'"), fnamenewvb.buf);
- cfile->namenode->flags &= ~fnnf_deferred_fsync;
- }
- debug(dbg_eachfiledetail, "deferred extract needs rename");
- if (rename(fnamenewvb.buf, fnamevb.buf))
- ohshite(_("unable to install new version of `%.255s'"),
- cfile->namenode->name);
- cfile->namenode->flags &= ~fnnf_deferred_rename;
- /*
- * CLEANUP: Now the new file is in the destination file, and the
- * old file is in .dpkg-tmp to be cleaned up later. We now need
- * to take a different attitude to cleanup, because we need to
- * remove the new file.
- */
- cfile->namenode->flags |= fnnf_placed_on_disk;
- cfile->namenode->flags |= fnnf_elide_other_lists;
- debug(dbg_eachfiledetail, "deferred extract done and installed");
- }
- }
- void
- enqueue_deconfigure(struct pkginfo *pkg, struct pkginfo *pkg_removal)
- {
- struct pkg_deconf_list *newdeconf;
- ensure_package_clientdata(pkg);
- pkg->clientdata->istobe = PKG_ISTOBE_DECONFIGURE;
- newdeconf = m_malloc(sizeof(struct pkg_deconf_list));
- newdeconf->next = deconfigure;
- newdeconf->pkg = pkg;
- newdeconf->pkg_removal = pkg_removal;
- deconfigure = newdeconf;
- }
- void
- clear_deconfigure_queue(void)
- {
- struct pkg_deconf_list *deconf, *deconf_next;
- for (deconf = deconfigure; deconf; deconf = deconf_next) {
- deconf_next = deconf->next;
- free(deconf);
- }
- deconfigure = NULL;
- }
- /**
- * Try if we can deconfigure the package and queue it if so.
- *
- * Also checks whether the pdep is forced, first, according to force_p.
- * force_p may be NULL in which case nothing is considered forced.
- *
- * Action is a string describing the action which causes the
- * deconfiguration:
- *
- * "removal of <package>" (due to Conflicts+Depends; removal != NULL)
- * "installation of <package>" (due to Breaks; removal == NULL)
- *
- * @retval 0 Not possible (why is printed).
- * @retval 1 Deconfiguration queued ok (no message printed).
- * @retval 2 Forced (no deconfiguration needed, why is printed).
- */
- static int
- try_deconfigure_can(bool (*force_p)(struct deppossi *), struct pkginfo *pkg,
- struct deppossi *pdep, const char *action,
- struct pkginfo *removal, const char *why)
- {
- if (force_p && force_p(pdep)) {
- warning(_("ignoring dependency problem with %s:\n%s"), action, why);
- return 2;
- } else if (f_autodeconf) {
- if (pkg->installed.essential) {
- if (fc_removeessential) {
- warning(_("considering deconfiguration of essential\n"
- " package %s, to enable %s"),
- pkg_name(pkg, pnaw_nonambig), action);
- } else {
- notice(_("no, %s is essential, will not deconfigure\n"
- " it in order to enable %s"),
- pkg_name(pkg, pnaw_nonambig), action);
- return 0;
- }
- }
- enqueue_deconfigure(pkg, removal);
- return 1;
- } else {
- notice(_("no, cannot proceed with %s (--auto-deconfigure will help):\n%s"),
- action, why);
- return 0;
- }
- }
- static int try_remove_can(struct deppossi *pdep,
- struct pkginfo *fixbyrm,
- const char *why) {
- char action[512];
- sprintf(action, _("removal of %.250s"), pkg_name(fixbyrm, pnaw_nonambig));
- return try_deconfigure_can(force_depends, pdep->up->up, pdep,
- action, fixbyrm, why);
- }
- void check_breaks(struct dependency *dep, struct pkginfo *pkg,
- const char *pfilename) {
- struct pkginfo *fixbydeconf;
- struct varbuf why = VARBUF_INIT;
- int ok;
- fixbydeconf = NULL;
- if (depisok(dep, &why, &fixbydeconf, NULL, false)) {
- varbuf_destroy(&why);
- return;
- }
- varbuf_end_str(&why);
- if (fixbydeconf && f_autodeconf) {
- char action[512];
- ensure_package_clientdata(fixbydeconf);
- assert(fixbydeconf->clientdata->istobe == PKG_ISTOBE_NORMAL);
- sprintf(action, _("installation of %.250s"),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig));
- notice(_("considering deconfiguration of %s, which would be broken by %s ..."),
- pkg_name(fixbydeconf, pnaw_nonambig), action);
- ok= try_deconfigure_can(force_breaks, fixbydeconf, dep->list,
- action, NULL, why.buf);
- if (ok == 1) {
- notice(_("yes, will deconfigure %s (broken by %s)"),
- pkg_name(fixbydeconf, pnaw_nonambig),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig));
- }
- } else {
- notice(_("regarding %s containing %s:\n%s"), pfilename,
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig), why.buf);
- ok= 0;
- }
- varbuf_destroy(&why);
- if (ok > 0) return;
- if (force_breaks(dep->list)) {
- warning(_("ignoring breakage, may proceed anyway!"));
- return;
- }
- if (fixbydeconf && !f_autodeconf) {
- ohshit(_("installing %.250s would break %.250s, and\n"
- " deconfiguration is not permitted (--auto-deconfigure might help)"),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig),
- pkg_name(fixbydeconf, pnaw_nonambig));
- } else {
- ohshit(_("installing %.250s would break existing software"),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig));
- }
- }
- void check_conflict(struct dependency *dep, struct pkginfo *pkg,
- const char *pfilename) {
- struct pkginfo *fixbyrm;
- struct deppossi *pdep, flagdeppossi;
- struct varbuf conflictwhy = VARBUF_INIT, removalwhy = VARBUF_INIT;
- struct dependency *providecheck;
- fixbyrm = NULL;
- if (depisok(dep, &conflictwhy, &fixbyrm, NULL, false)) {
- varbuf_destroy(&conflictwhy);
- varbuf_destroy(&removalwhy);
- return;
- }
- if (fixbyrm) {
- ensure_package_clientdata(fixbyrm);
- if (fixbyrm->clientdata->istobe == PKG_ISTOBE_INSTALLNEW) {
- fixbyrm= dep->up;
- ensure_package_clientdata(fixbyrm);
- }
- if (((pkg->available.essential && fixbyrm->installed.essential) ||
- (((fixbyrm->want != want_install && fixbyrm->want != want_hold) ||
- does_replace(pkg, &pkg->available, fixbyrm, &fixbyrm->installed)) &&
- (!fixbyrm->installed.essential || fc_removeessential)))) {
- assert(fixbyrm->clientdata->istobe == PKG_ISTOBE_NORMAL ||
- fixbyrm->clientdata->istobe == PKG_ISTOBE_DECONFIGURE);
- fixbyrm->clientdata->istobe = PKG_ISTOBE_REMOVE;
- notice(_("considering removing %s in favour of %s ..."),
- pkg_name(fixbyrm, pnaw_nonambig),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig));
- if (!(fixbyrm->status == stat_installed ||
- fixbyrm->status == stat_triggerspending ||
- fixbyrm->status == stat_triggersawaited)) {
- notice(_("%s is not properly installed; ignoring any dependencies on it"),
- pkg_name(fixbyrm, pnaw_nonambig));
- pdep = NULL;
- } else {
- for (pdep = fixbyrm->set->depended.installed;
- pdep;
- pdep = pdep->rev_next) {
- if (pdep->up->type != dep_depends && pdep->up->type != dep_predepends)
- continue;
- if (depisok(pdep->up, &removalwhy, NULL, NULL, false))
- continue;
- varbuf_end_str(&removalwhy);
- if (!try_remove_can(pdep,fixbyrm,removalwhy.buf))
- break;
- }
- if (!pdep) {
- /* If we haven't found a reason not to yet, let's look some more. */
- for (providecheck= fixbyrm->installed.depends;
- providecheck;
- providecheck= providecheck->next) {
- if (providecheck->type != dep_provides) continue;
- for (pdep = providecheck->list->ed->depended.installed;
- pdep;
- pdep = pdep->rev_next) {
- if (pdep->up->type != dep_depends && pdep->up->type != dep_predepends)
- continue;
- if (depisok(pdep->up, &removalwhy, NULL, NULL, false))
- continue;
- varbuf_end_str(&removalwhy);
- notice(_("may have trouble removing %s, as it provides %s ..."),
- pkg_name(fixbyrm, pnaw_nonambig),
- providecheck->list->ed->name);
- if (!try_remove_can(pdep,fixbyrm,removalwhy.buf))
- goto break_from_both_loops_at_once;
- }
- }
- break_from_both_loops_at_once:;
- }
- }
- if (!pdep && skip_due_to_hold(fixbyrm)) {
- pdep= &flagdeppossi;
- }
- if (!pdep && (fixbyrm->eflag & eflag_reinstreq)) {
- if (fc_removereinstreq) {
- notice(_("package %s requires reinstallation, but will "
- "remove anyway as you requested"),
- pkg_name(fixbyrm, pnaw_nonambig));
- } else {
- notice(_("package %s requires reinstallation, will not remove"),
- pkg_name(fixbyrm, pnaw_nonambig));
- pdep= &flagdeppossi;
- }
- }
- if (!pdep) {
- /* This conflict is OK - we'll remove the conflictor. */
- enqueue_conflictor(fixbyrm);
- varbuf_destroy(&conflictwhy); varbuf_destroy(&removalwhy);
- notice(_("yes, will remove %s in favour of %s"),
- pkg_name(fixbyrm, pnaw_nonambig),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig));
- return;
- }
- /* Put it back. */
- fixbyrm->clientdata->istobe = PKG_ISTOBE_NORMAL;
- }
- }
- varbuf_end_str(&conflictwhy);
- notice(_("regarding %s containing %s:\n%s"), pfilename,
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig), conflictwhy.buf);
- if (!force_conflicts(dep->list))
- ohshit(_("conflicting packages - not installing %.250s"),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig));
- warning(_("ignoring conflict, may proceed anyway!"));
- varbuf_destroy(&conflictwhy);
- return;
- }
- void cu_cidir(int argc, void **argv) {
- char *cidir= (char*)argv[0];
- char *cidirrest= (char*)argv[1];
- cidirrest[-1] = '\0';
- ensure_pathname_nonexisting(cidir);
- }
- void cu_fileslist(int argc, void **argv) {
- destroyobstack();
- }
- int
- archivefiles(const char *const *argv)
- {
- const char *volatile thisarg;
- const char *const *volatile argp;
- jmp_buf ejbuf;
- trigproc_install_hooks();
- modstatdb_open(f_noact ? msdbrw_readonly :
- (cipaction->arg_int == act_avail ? msdbrw_readonly :
- fc_nonroot ? msdbrw_write :
- msdbrw_needsuperuser) |
- msdbrw_available_write);
- checkpath();
- pkg_infodb_upgrade();
- log_message("startup archives %s", cipaction->olong);
- if (f_recursive) {
- int pi[2], nfiles, c, i, rc;
- pid_t pid;
- FILE *pf;
- static struct varbuf findoutput;
- const char **arglist;
- char *p;
- if (!*argv)
- badusage(_("--%s --recursive needs at least one path argument"),cipaction->olong);
- m_pipe(pi);
- pid = subproc_fork();
- if (pid == 0) {
- struct command cmd;
- const char *const *ap;
- m_dup2(pi[1],1); close(pi[0]); close(pi[1]);
- command_init(&cmd, FIND, _("find for dpkg --recursive"));
- command_add_args(&cmd, FIND, "-L", NULL);
- for (ap = argv; *ap; ap++) {
- if (strchr(FIND_EXPRSTARTCHARS,(*ap)[0])) {
- char *a;
- m_asprintf(&a, "./%s", *ap);
- command_add_arg(&cmd, a);
- } else {
- command_add_arg(&cmd, (const char *)*ap);
- }
- }
- command_add_args(&cmd, "-name", "*.deb", "-type", "f", "-print0", NULL);
- command_exec(&cmd);
- }
- close(pi[1]);
- nfiles= 0;
- pf= fdopen(pi[0],"r"); if (!pf) ohshite(_("failed to fdopen find's pipe"));
- varbuf_reset(&findoutput);
- while ((c= fgetc(pf)) != EOF) {
- varbuf_add_char(&findoutput, c);
- if (!c) nfiles++;
- }
- if (ferror(pf)) ohshite(_("error reading find's pipe"));
- if (fclose(pf)) ohshite(_("error closing find's pipe"));
- rc = subproc_wait_check(pid, "find", PROCNOERR);
- if (rc != 0)
- ohshit(_("find for --recursive returned unhandled error %i"), rc);
- if (!nfiles)
- ohshit(_("searched, but found no packages (files matching *.deb)"));
- arglist= m_malloc(sizeof(char*)*(nfiles+1));
- p = findoutput.buf;
- for (i = 0; i < nfiles; i++) {
- arglist[i] = p;
- while (*p++ != '\0') ;
- }
- arglist[i] = NULL;
- argp= arglist;
- } else {
- if (!*argv) badusage(_("--%s needs at least one package archive file argument"),
- cipaction->olong);
- argp= argv;
- }
- currenttime = time(NULL);
- /* Initialize fname variables contents. */
- varbuf_reset(&fnamevb);
- varbuf_reset(&fnametmpvb);
- varbuf_reset(&fnamenewvb);
- varbuf_add_str(&fnamevb, instdir);
- varbuf_add_char(&fnamevb, '/');
- varbuf_add_str(&fnametmpvb, instdir);
- varbuf_add_char(&fnametmpvb, '/');
- varbuf_add_str(&fnamenewvb, instdir);
- varbuf_add_char(&fnamenewvb, '/');
- fnameidlu= fnamevb.used;
- ensure_diversions();
- ensure_statoverrides();
- while ((thisarg = *argp++) != NULL) {
- if (setjmp(ejbuf)) {
- pop_error_context(ehflag_bombout);
- if (abort_processing)
- break;
- continue;
- }
- push_error_context_jump(&ejbuf, print_error_perarchive, thisarg);
- dpkg_selabel_load();
- process_archive(thisarg);
- onerr_abort++;
- m_output(stdout, _("<standard output>"));
- m_output(stderr, _("<standard error>"));
- onerr_abort--;
- pop_error_context(ehflag_normaltidy);
- }
- dpkg_selabel_close();
- switch (cipaction->arg_int) {
- case act_install:
- case act_configure:
- case act_triggers:
- case act_remove:
- case act_purge:
- process_queue();
- case act_unpack:
- case act_avail:
- break;
- default:
- internerr("unknown action '%d'", cipaction->arg_int);
- }
- trigproc_run_deferred();
- modstatdb_shutdown();
- return 0;
- }
- /**
- * Decide whether we want to install a new version of the package.
- *
- * @param pkg The package with the version we might want to install
- *
- * @retval true If the package should be skipped.
- * @retval false If the package should be installed.
- */
- bool
- wanttoinstall(struct pkginfo *pkg)
- {
- int rc;
- if (pkg->want != want_install && pkg->want != want_hold) {
- if (f_alsoselect) {
- printf(_("Selecting previously unselected package %s.\n"),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig));
- return true;
- } else {
- printf(_("Skipping unselected package %s.\n"),
- pkgbin_name(pkg, &pkg->available, pnaw_nonambig));
- return false;
- }
- }
- if (pkg->eflag & eflag_reinstreq)
- return true;
- if (pkg->status < stat_unpacked)
- return true;
- rc = dpkg_version_compare(&pkg->available.version, &pkg->installed.version);
- if (rc > 0) {
- return true;
- } else if (rc == 0) {
- /* Same version fully installed. */
- if (f_skipsame) {
- notice(_("version %.250s of %.250s already installed, skipping"),
- versiondescribe(&pkg->installed.version, vdew_nonambig),
- pkg_name(pkg, pnaw_nonambig));
- return false;
- } else {
- return true;
- }
- } else {
- if (fc_downgrade) {
- warning(_("downgrading %.250s from %.250s to %.250s"),
- pkg_name(pkg, pnaw_nonambig),
- versiondescribe(&pkg->installed.version, vdew_nonambig),
- versiondescribe(&pkg->available.version, vdew_nonambig));
- return true;
- } else {
- notice(_("will not downgrade %.250s from %.250s to %.250s, skipping"),
- pkg_name(pkg, pnaw_nonambig),
- versiondescribe(&pkg->installed.version, vdew_nonambig),
- versiondescribe(&pkg->available.version, vdew_nonambig));
- return false;
- }
- }
- }
- struct fileinlist *newconff_append(struct fileinlist ***newconffileslastp_io,
- struct filenamenode *namenode) {
- struct fileinlist *newconff;
- newconff= m_malloc(sizeof(struct fileinlist));
- newconff->next = NULL;
- newconff->namenode= namenode;
- **newconffileslastp_io= newconff;
- *newconffileslastp_io= &newconff->next;
- return newconff;
- }
|