1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
|
#!/bin/sh
set -e
export LC_ALL=C
type=$1
preversion=$2
linux_compare_versions () {
verA=$(($(echo "$1" | sed 's/^\([0-9]*\.[0-9]*\)\([^.0-9]\|$\)/\1.0\2/; s/\([0-9]*\)\.\([0-9]*\)\.\([0-9]*\).*/\1 \* 10000 + \2 \* 100 + \3/')))
verB=$(($(echo "$3" | sed 's/^\([0-9]*\.[0-9]*\)\([^.0-9]\|$\)/\1.0\2/; s/\([0-9]*\)\.\([0-9]*\)\.\([0-9]*\).*/\1 \* 10000 + \2 \* 100 + \3/')))
test $verA -$2 $verB
}
kfreebsd_compare_versions () {
verA=$(($(echo "$1" | sed 's/\([0-9]*\)\.\([0-9]*\).*/\1 \* 100 + \2/')))
verB=$(($(echo "$3" | sed 's/\([0-9]*\)\.\([0-9]*\).*/\1 \* 100 + \2/')))
test $verA -$2 $verB
}
# Sanity check.
# If there are versions of glibc outside of the normal installation
# location (/lib, /lib64, etc.) then things may break very badly
# as soon as ld.so is replaced by a new version. This check is not
# foolproof, but it's pretty accurate. This script ignores libraries
# with different sonames, and libraries incompatible with the
# to-be-installed ld.so.
check_dir () {
msg=$1
dir=$2
# Follow symlinks
dir=$(readlink -e $dir || true)
# Ignore inexistent directories
if ! test -d "$dir" ; then
return
fi
# Detect possible candidates
files=$(ls $dir | egrep '^(ld|lib(d|c|m|pthread|rt|dl))-2.*.so' 2>/dev/null || true)
if test -z "$files" ; then
return
fi
for file in $files ; do
lib=$dir/$file
# Skip if it is a symlink (as installed by lsb-core)
if test -L "$lib" ; then
continue
fi
# Skip if it is the currently dynamic loader
if test "$lib" = "$ldfile" ; then
continue
fi
# See if the found libraries are compatible with the system ld.so;
# if they aren't, they'll be ignored. Check e_ident, e_type (which
# will just be ET_DYN), and e_machine. If a match is found, there
# is a risk of breakage.
libbytes=`head -c 20 $lib | od -c`
if test "$ldbytes" != "$libbytes" ; then
continue
fi
# Binaries owned packages are considered to do the right thing
# First try a quick lookup which should catch all cases on a
# normal system
if echo $libcfiles | grep -q "[ ^]$lib[ $]" ; then
continue
fi
# Slower lookup to confirm
if dpkg-query -S "$lib" >/dev/null 2>&1 ; then
continue
fi
# Output an error message and exit
echo
echo "A copy of the C library was found $msg:"
echo " '$lib'"
echo "It is not safe to upgrade the C library in this situation;"
echo "please remove that copy of the C library or get it out of"
echo "'$dir' and try again."
echo
exit 1
done
}
if [ "$type" != abort-upgrade ]
then
# Load debconf module if available
if [ -f /usr/share/debconf/confmodule ] ; then
. /usr/share/debconf/confmodule
fi
# See if LD_LIBRARY_PATH contains the traditional /lib, but not the
# multiarch path
dirs=$(echo $LD_LIBRARY_PATH | sed 's/:/ /g')
for dir in $dirs ; do
dir=$(readlink -e $dir || true)
case "$dir" in
/lib)
seen_traditional=1
;;
SLIBDIR)
seen_multiarch=1
;;
esac
done
if test -n "$seen_traditional" && test -z "$seen_multiarch" ; then
echo
echo "LD_LIBRARY_PATH contains the traditional /lib directory,"
echo "but not the multiarch directory SLIBDIR."
echo "It is not safe to upgrade the C library in this situation;"
echo "please remove the /lib/directory from LD_LIBRARY_PATH and"
echo "try again."
echo
exit 1
fi
# glibc kernel version check
system=`uname -s`
if [ "$system" = "Linux" ]
then
# Test to make sure z < 255, in x.y.z-n form of kernel version
# Also make sure we don't trip on x.y.zFOO-n form
kernel_rev=$(uname -r | sed 's/\([0-9]*\.\)\{1,2\}\([0-9]*\)\(.*\)/\2/')
if [ "$kernel_rev" -ge 255 ]
then
echo "ERROR: Your kernel version indicates a revision number"
echo "of 255 or greater. Glibc has a number of built in"
echo "assumptions that this revision number is less than 255."
echo "If you\'ve built your own kernel, please make sure that any"
echo "custom version numbers are appended to the upstream"
echo "kernel number with a dash or some other delimiter."
echo
exit 1
fi
# sanity checking for the appropriate kernel on each architecture.
kernel_ver=`uname -r`
case ${DPKG_MAINTSCRIPT_ARCH:-$(dpkg --print-architecture)} in
*)
# The GNU libc requires a >= 3.2 kernel, found in wheezy
kernel_ver_min=3.2
kernel_ver_rec=3.2
;;
esac
if linux_compare_versions "$kernel_ver" lt $kernel_ver_min
then
if [ -f /usr/share/debconf/confmodule ]
then
db_version 2.0
db_fset glibc/kernel-too-old seen false
db_reset glibc/kernel-too-old
db_subst glibc/kernel-too-old kernel_ver $kernel_ver_rec
db_input critical glibc/kernel-too-old || true
db_go
db_stop
else
echo "ERROR: This version of the GNU libc requires kernel version"
echo "$kernel_ver_rec or later. Please upgrade your kernel before installing"
echo "glibc."
echo
fi
exit 1
fi
if linux_compare_versions "$kernel_ver" lt $kernel_ver_rec
then
if [ -f /usr/share/debconf/confmodule ]
then
db_version 2.0
db_fset glibc/kernel-not-supported seen false
db_reset glibc/kernel-not-supported
db_subst glibc/kernel-not-supported kernel_ver $kernel_ver_rec
db_input critical glibc/kernel-not-supported || true
db_go
db_stop
else
echo "WARNING: This version of the GNU libc requires kernel version"
echo "$kernel_ver_rec or later. Older versions might work but are not officially"
echo "supported. Please consider upgrading your kernel."
echo
fi
fi
elif [ $system = "GNU/kFreeBSD" ]
then
kernel_ver=`uname -r`
kernel_ver_min=8.3
if kfreebsd_compare_versions "$kernel_ver" lt $kernel_ver_min
then
if [ -f /usr/share/debconf/confmodule ]
then
db_version 2.0
db_version 2.0
db_fset glibc/kernel-too-old seen false
db_reset glibc/kernel-too-old
db_subst glibc/kernel-too-old kernel_ver $kernel_ver_min
db_input critical glibc/kernel-too-old || true
db_go
db_stop
else
echo "ERROR: This version of the GNU libc requires kernel version"
echo "$kernel_ver_min or later. Please upgrade your kernel before installing"
echo "glibc."
echo
fi
exit 1
fi
fi
fi
if [ "$type" = upgrade ]
then
# Try to detect copies of the libc library in the various places
# the dynamic linker uses.
ldfile=$(readlink -m RTLD_SO)
if test -f "$file"; then
ldbytes=$(head -c 20 RTLD_SO | od -c)
else
# If the symlink to the dynamic linker is dangling or missing, set
# ldbytes to an empty string, the test below will fail and all the
# libraries found will be ignored.
ldbytes=""
fi
libcfiles=$(dpkg-query -L ${DPKG_MAINTSCRIPT_PACKAGE}:${DPKG_MAINTSCRIPT_ARCH} 2>/dev/null)
dirs="SLIBDIR /lib /lib/tls /lib32 /lib64 /usr/local/lib /usr/local/lib32 /usr/local/lib64"
for dir in $dirs ; do
check_dir "in an unexpected directory" $dir
done
if test -n "$LD_LIBRARY_PATH"; then
dirs=$(echo $LD_LIBRARY_PATH | sed 's/:/ /g')
for dir in $dirs ; do
check_dir "via LD_LIBRARY_PATH" $dir
done
fi
if test -e /etc/ld.so.conf; then
dirs=$(echo $(cat /etc/ld.so.conf))
if test -n "$dirs" ; then
for dir in $dirs ; do
check_dir "via /etc/ld.so.conf" $dir
done
fi
fi
if [ -e /lib/tls/i686/cmov/libc.so.6 ] || [ -e /lib/i686/cmov/libc.so.6 ] ; then
status_i686=$(dpkg -s libc6-i686 2>/dev/null | grep ^Status: | sed -e 's/^Status: \(.*\) \(.*\) \(.*\)/\3/g')
status_xen=$(dpkg -s libc6-xen 2>/dev/null | grep ^Status: | sed -e 's/^Status: \(.*\) \(.*\) \(.*\)/\3/g')
if ([ -z "$status_i686" ] || [ "$status_i686" = "not-installed" ] || [ "$status_i686" = "config-files" ]) && \
([ -z "$status_xen" ] || [ "$status_xen" = "not-installed" ] || [ "$status_xen" = "config-files" ]); then
echo
echo "A non-dpkg owned copy of the libc6-i686 package was found."
echo "It is not safe to upgrade the C library in this situation;"
echo "please remove that copy of the C library and try again."
echo
exit 1
fi
fi
if [ -n "$preversion" ] && [ -x "$(which ischroot)" ] && ! ischroot; then
# NSS authentication trouble guard
if dpkg --compare-versions "$preversion" lt GLIBC_VERSION; then
if pidof xscreensaver xlockmore >/dev/null; then
if [ -f /usr/share/debconf/confmodule ] ; then
db_version 2.0
db_reset glibc/disable-screensaver
db_input critical glibc/disable-screensaver || true
db_go || true
else
echo "xscreensaver and xlockmore must be restarted before upgrading"
echo
echo "One or more running instances of xscreensaver or xlockmore have been"
echo "detected on this system. Because of incompatible library changes, the"
echo "upgrade of the GNU C library will leave you unable to authenticate to"
echo "these programs. You should arrange for these programs to be restarted"
echo "or stopped before continuing this upgrade, to avoid locking your users"
echo "out of their current sessions."
echo
frontend=`echo "$DEBIAN_FRONTEND" | tr '[:upper:]' '[:lower:]'`
if [ "$frontend" = noninteractive ]; then
echo "Non-interactive mode, upgrade glibc forcibly"
else
echo -n "Press a key to continue"
read answer
fi
echo
fi
fi
check="kdm postgresql xdm"
# NSS services check:
__NSS_CHECK__
if [ -n "$services" ]; then
if [ -f /usr/share/debconf/confmodule ] ; then
db_version 2.0
db_reset glibc/upgrade
db_subst glibc/upgrade services $services
db_input critical glibc/upgrade || true
db_go || true
db_get glibc/upgrade
answer=$RET
else
echo "Do you want to upgrade glibc now?"
echo
echo "Running services and programs that are using NSS need to be restarted,"
echo "otherwise they might not be able to do lookup or authentication any more."
echo "The installation process is able to restart some services (such as ssh or"
echo "telnetd), but other programs cannot be restarted automatically. One such"
echo "program that needs manual stopping and restart after the glibc upgrade by"
echo "yourself is xdm - because automatic restart might disconnect your active"
echo "X11 sessions."
echo
echo "This script detected the following installed services which must be"
echo "stopped before the upgrade: $services"
echo
echo "If you want to interrupt the upgrade now and continue later, please"
echo "answer No to the question below."
echo
frontend=`echo "$DEBIAN_FRONTEND" | tr '[:upper:]' '[:lower:]'`
if [ "$frontend" = noninteractive ]; then
echo "Non-interactive mode, upgrade glibc forcibly"
answer=true
else
echo -n "Do you want to upgrade glibc now? [Y/n] "
read answer
case $answer in
Y*|y*) answer=true ;;
N*|n*) answer=false ;;
*) answer=true ;;
esac
fi
echo
fi
if [ "x$answer" != "xtrue" ]; then
echo "Stopped glibc upgrade. Please retry the upgrade after you have"
echo "checked or stopped services by hand."
exit 1
fi
fi
fi # end upgrading and $preversion lt GLIBC_VERSION
fi # Upgrading
# This will keep us from using hwcap libs (optimized) during an
# upgrade.
touch /etc/ld.so.nohwcap
fi
#DEBHELPER#
if [ -n "$preversion" ]; then
if dpkg --compare-versions "$preversion" lt GLIBC_VERSION; then
# unconditionally wipe ld.so.cache on major version upgrades; this
# makes those upgrades a bit slower, but is less error-prone than
# hoping we notice every time the cache format is changed upstream
rm -f /etc/ld.so.cache
rm -f /var/cache/ldconfig/aux-cache
fi
fi
exit 0
|
