On Mon, Nov 14, 2022 at 03:15:53PM -0700, Theo de Raadt wrote:
> Readonly /usr is not a supported or recomended configuration.
>
> This is adding a lot of scripting that we don't everyone to run.
>
> I disagree strongly with this direction of OpenBSD having undocumented
> (undocumentable?) little behaviours that allow root to configure their
> machine in novel non-default ways and it will still work because there
> piles of of trashy shell scripts which cope with the weird situations,
> which under 1% of users will use.
>
> I disagree with this flexiblity being a strength, I think it is very
> fragile when we encourage users to do bizzare things to their machines
> which they (also) will not include in future bug reports.
Reading /etc/rc I was under the impression that read-only /usr is indeed
a scenario we support, since reorder_libs() already does what I propose,
only in a more complicated way:
revision 1.481
date: 2016/05/26 14:59:48; author: rpe; state: Exp; lines: +32 -7;
- rename rebuildlibs() to reorder_libs()
- move the info message inside the function
- skip reordering if /usr/lib is on a nfs mounted filesystem
- temporarily remount rw if /usr/lib is on a ro ffs file-system
OK deraadt
Did OpenBSD's stance on read-only /usr change between then and now?
Or does the earlier running /etc/rc take care of some read-only /usr
scenario (I am not aware of) which is not relevant for reorder_kernel?
