7:40 a.m.
hi everybody,
in recent fedora releases I can see we have /etc/sysctl.d/
but does it really get evaluated
eg. let's put in /etc/sysctl.d/00-ojuba-enabled-sysrq.conf
kernel.sysrq = 1
and keep it 0 in /etc/sysctl.conf
kernel.sysrq = 0
then reboot then type
sysctl kernel.sysrq
it was reported that this would yield 0 (maybe when no wifi and no
network at all)
7:47 a.m.
On Fri, 16.03.12 14:40, Muayyad AlSadi (alsadi(a)gmail.com) wrote:
hi everybody,
in recent fedora releases I can see we have /etc/sysctl.d/
but does it really get evaluated
eg. let's put in /etc/sysctl.d/00-ojuba-enabled-sysrq.conf
kernel.sysrq = 1
and keep it 0 in /etc/sysctl.conf
kernel.sysrq = 0
then reboot then type
sysctl kernel.sysrq
it was reported that this would yield 0 (maybe when no wifi and no
network at all)
/etc/sysctl.conf is interpreted after /etc/sysctl.d is. The former hence
overrides settings in the latter.
Lennart
--
Lennart Poettering - Red Hat, Inc.
7:54 a.m.
but this does not make sense
the idea behind all .d is to allow packages to provide default (either
kernel defaults or distro defaults)
because the other choice is to use %post and sed
eg. let's say I made a firewall package that needs to enable
forwarding, it would put it in a sysctl.d
what do you think ?
what is the added value of having .conf overrides .d ?
On Fri, Mar 16, 2012 at 2:47 PM, Lennart Poettering
<mzerqung(a)0pointer.de> wrote:
On Fri, 16.03.12 14:40, Muayyad AlSadi (alsadi(a)gmail.com) wrote:
> hi everybody,
>
> in recent fedora releases I can see we have /etc/sysctl.d/
>
> but does it really get evaluated
>
> eg. let's put in /etc/sysctl.d/00-ojuba-enabled-sysrq.conf
>
> kernel.sysrq = 1
>
> and keep it 0 in /etc/sysctl.conf
>
> kernel.sysrq = 0
>
> then reboot then type
>
> sysctl kernel.sysrq
>
> it was reported that this would yield 0 (maybe when no wifi and no
> network at all)
/etc/sysctl.conf is interpreted after /etc/sysctl.d is. The former hence
overrides settings in the latter.
Lennart
--
Lennart Poettering - Red Hat, Inc.
--
devel mailing list
devel(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
8:28 a.m.
On Fri, 16.03.12 14:54, Muayyad AlSadi (alsadi(a)gmail.com) wrote:
but this does not make sense
the idea behind all .d is to allow packages to provide default (either
kernel defaults or distro defaults)
because the other choice is to use %post and sed
eg. let's say I made a firewall package that needs to enable
forwarding, it would put it in a sysctl.d
If a package places a sysctl file in /etc/sysctl.d/ then you can
override it with /etc/sysctl.conf, hence everything is as it should, no?
This whole logic is designed so that the admin's configuration always
takes precedence over vendor configuration. Which is the right thing to
do.
That said, note that it's probably a good idea if packages stick their
sysctl files in /usr/lib/sysctl.d instead, so that that users can use
/etc/sysctl.d/ to override that. /etc/sysctl.conf is read mostly for
compatibility reasons only.
Lennart
--
Lennart Poettering - Red Hat, Inc.
8:40 a.m.
On 03/16/2012 02:28 PM, Lennart Poettering wrote:
On Fri, 16.03.12 14:54, Muayyad AlSadi (alsadi(a)gmail.com) wrote:
> but this does not make sense
>
> the idea behind all .d is to allow packages to provide default (either
> kernel defaults or distro defaults)
> because the other choice is to use %post and sed
> eg. let's say I made a firewall package that needs to enable
> forwarding, it would put it in a sysctl.d
If a package places a sysctl file in /etc/sysctl.d/ then you can
override it with /etc/sysctl.conf, hence everything is as it should, no?
This whole logic is designed so that the admin's configuration always
takes precedence over vendor configuration. Which is the right thing to
do.
That said, note that it's probably a good idea if packages stick their
sysctl files in /usr/lib/sysctl.d instead, so that that users can use
/etc/sysctl.d/ to override that. /etc/sysctl.conf is read mostly for
compatibility reasons only.
As I understand it, Muayyad has different problem. Right now, the
/etc/sysctl.conf we ship is not empty. It has several values set, one of
them is sysrq=0 he used in his example. No one set this is value, it's
just default value and yet, no package can change it by placing its file
in /etc/sysctl.d This would work only if sysctl.conf is empty and all
default configuration is moved to /etc/sysctl.d/00-systemdefault.conf
Michal
9:13 a.m.
As I understand it, Muayyad has different problem. Right now, the
/etc/sysctl.conf we ship is not empty. It has several values set, one of
them is sysrq=0 he used in his example. No one set this is value, it's just
default value and yet, no package can change it by placing its file in
/etc/sysctl.d This would work only if sysctl.conf is empty and all default
configuration is moved to /etc/sysctl.d/00-systemdefault.conf
yes exactly this is the case,
we have sysrq=0 in /etc/sysctl.conf
> If a package places a sysctl file in /etc/sysctl.d/ then you can
> override it with /etc/sysctl.conf, hence everything is as it should, no?
> This whole logic is designed so that the admin's configuration always
> takes precedence over vendor configuration. Which is the right thing to
> do.
the admin can have higher number like 99-local.conf
or move every thing in /etc/sysctl.conf to /etc/sysctl.d/00-defaults.conf
and have a single line in /etc/sysctl.conf saying
# you can override /etc/sysctl.d/*.conf here possible values and their
defaults are found in /etc/sysctl.d/00-defaults.conf
10:16 a.m.
On Fri, Mar 16, 2012 at 04:13:31PM +0200, Muayyad AlSadi wrote:
>
> As I understand it, Muayyad has different problem. Right now, the
> /etc/sysctl.conf we ship is not empty. It has several values set, one of
> them is sysrq=0 he used in his example. No one set this is value, it's just
> default value and yet, no package can change it by placing its file in
> /etc/sysctl.d This would work only if sysctl.conf is empty and all default
> configuration is moved to /etc/sysctl.d/00-systemdefault.conf
yes exactly this is the case,
we have sysrq=0 in /etc/sysctl.conf
No package should be automatically changing the sysrq policy.
--
Matthew Garrett | mjg59(a)srcf.ucam.org
10:50 a.m.
On Fri, 2012-03-16 at 15:16 +0000, Matthew Garrett wrote:
On Fri, Mar 16, 2012 at 04:13:31PM +0200, Muayyad AlSadi wrote:
> >
> > As I understand it, Muayyad has different problem. Right now, the
> > /etc/sysctl.conf we ship is not empty. It has several values set, one of
> > them is sysrq=0 he used in his example. No one set this is value, it's
just
> > default value and yet, no package can change it by placing its file in
> > /etc/sysctl.d This would work only if sysctl.conf is empty and all default
> > configuration is moved to /etc/sysctl.d/00-systemdefault.conf
>
> yes exactly this is the case,
> we have sysrq=0 in /etc/sysctl.conf
No package should be automatically changing the sysrq policy.
No Fedora package should do that. However I can imagine situation when
sysadmin wants his own package to do it. I have to second the request to
be the default /etc/sysctl.conf empty and moving the Fedora defaults to
sysctl.d/00-systemdefault.conf.
--
Tomas Mraz
No matter how far down the wrong road you've gone, turn back.
Turkish proverb
10:57 a.m.
Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
No package should be automatically changing the sysrq policy.
Why not?
For example, I use a commercial backup program that makes extensive use
of IPC and needs the msgmni and msgmnb limits raised beyond the default
values. Why shouldn't they be able to include that change in their RPM?
If not, what's the point of /etc/sysctl.d?
--
Chris Adams <cmadams(a)hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
12:06 p.m.
On Fri, Mar 16, 2012 at 10:57:13AM -0500, Chris Adams wrote:
Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
> No package should be automatically changing the sysrq policy.
Why not?
For example, I use a commercial backup program that makes extensive use
of IPC and needs the msgmni and msgmnb limits raised beyond the default
values. Why shouldn't they be able to include that change in their RPM?
What happens if two packages want to set a sysctl to different values ?
Dave
1:54 p.m.
Once upon a time, Dave Jones <davej(a)redhat.com> said:
On Fri, Mar 16, 2012 at 10:57:13AM -0500, Chris Adams wrote:
> Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
> > No package should be automatically changing the sysrq policy.
>
> Why not?
>
> For example, I use a commercial backup program that makes extensive use
> of IPC and needs the msgmni and msgmnb limits raised beyond the default
> values. Why shouldn't they be able to include that change in their RPM?
What happens if two packages want to set a sysctl to different values ?
Well, that's already a possibility with lots of the ".d" type solutions,
so I don't see why sysctl.d is any different.
--
Chris Adams <cmadams(a)hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
1:15 p.m.
On Fri, Mar 16, 2012 at 10:57:13AM -0500, Chris Adams wrote:
Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
> No package should be automatically changing the sysrq policy.
Why not?
For example, I use a commercial backup program that makes extensive use
of IPC and needs the msgmni and msgmnb limits raised beyond the default
values. Why shouldn't they be able to include that change in their RPM?
Where did I say they shouldn't?
--
Matthew Garrett | mjg59(a)srcf.ucam.org
1:18 p.m.
Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
On Fri, Mar 16, 2012 at 10:57:13AM -0500, Chris Adams wrote:
> Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
> > No package should be automatically changing the sysrq policy.
>
> Why not?
>
> For example, I use a commercial backup program that makes extensive use
> of IPC and needs the msgmni and msgmnb limits raised beyond the default
> values. Why shouldn't they be able to include that change in their RPM?
Where did I say they shouldn't?
You mean other than the quoted line?
--
Chris Adams <cmadams(a)hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
1:56 p.m.
Once upon a time, Chris Adams <cmadams(a)hiwaay.net> said:
Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
> On Fri, Mar 16, 2012 at 10:57:13AM -0500, Chris Adams wrote:
> > Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
> > > No package should be automatically changing the sysrq policy.
> >
> > Why not?
> >
> > For example, I use a commercial backup program that makes extensive use
> > of IPC and needs the msgmni and msgmnb limits raised beyond the default
> > values. Why shouldn't they be able to include that change in their RPM?
>
> Where did I say they shouldn't?
You mean other than the quoted line?
My appologies; I misread "sysrq" as "sysctl".
--
Chris Adams <cmadams(a)hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
2:42 p.m.
What happens if two packages want to set a sysctl to different values
?
that's why they are prefixed with numbers, the higher number will take
effect
eg. 99-foobar.conf
sometimes we have conventions for number ranges like this
http://fedoraproject.org/wiki/Fontconfig_packaging_tips#Choosing_a_rulese...
50 User overrides
51 Local system overrides
...
On Fri, Mar 16, 2012 at 8:56 PM, Chris Adams <cmadams(a)hiwaay.net> wrote:
Once upon a time, Chris Adams <cmadams(a)hiwaay.net> said:
> Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
> > On Fri, Mar 16, 2012 at 10:57:13AM -0500, Chris Adams wrote:
> > > Once upon a time, Matthew Garrett <mjg59(a)srcf.ucam.org> said:
> > > > No package should be automatically changing the sysrq policy.
> > >
> > > Why not?
> > >
> > > For example, I use a commercial backup program that makes extensive
use
> > > of IPC and needs the msgmni and msgmnb limits raised beyond the
default
> > > values. Why shouldn't they be able to include that change in their
RPM?
> >
> > Where did I say they shouldn't?
>
> You mean other than the quoted line?
My appologies; I misread "sysrq" as "sysctl".
--
Chris Adams <cmadams(a)hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
--
devel mailing list
devel(a)lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
3:16 p.m.
On Fri, Mar 16, 2012 at 09:42:50PM +0200, Muayyad AlSadi wrote:
> What happens if two packages want to set a sysctl to different
values ?
that's why they are prefixed with numbers, the higher number will take
effect
eg. 99-foobar.conf
sometimes we have conventions for number ranges like this
http://fedoraproject.org/wiki/Fontconfig_packaging_tips#Choosing_a_rulese...
50 User overrides
51 Local system overrides
...
But for a system wide change, that's insufficient.
If 00-foo sets something to value A, and 99-bar sets it to B,
and B < A, foo may not function correctly.
This isn't an ordering problem, it's an exclusivity problem, because
sysctls are system-wide, not per-package.
Dave
4:48 p.m.
If 00-foo sets something to value A, and 99-bar sets it to B,
and B < A, foo may not function correctly.
This isn't an ordering problem, it's an exclusivity problem, because
sysctls are system-wide, not per-package.
this applies to every thing,
if 00-foo sets foo as the best font for "Arial" and 01-monkey set's a
monkey as the best font for "Arial" then only one will be chosen
same for /etc/profile.d/ if we have 00-ps1.sh and 01-ps1.sh both set
$PS1, of course one of them would work
4:23 a.m.
Le Ven 16 mars 2012 21:16, Dave Jones a écrit :
This isn't an ordering problem, it's an exclusivity problem,
because
sysctls are system-wide, not per-package.
Fontconfig is system-wide too and fontconfig rules have many inter-rule
interactions.
There is no way a .d setup can handle conflicts, other that making
crystal-clear what the ordering of config files is, and stating that the file
with the highest order wins
(and actually this is no different from a single monolithic config file since
the same directive can occur multiple times there too and only one of those
instances will be taken into account)
--
Nicolas Mailhot
9:21 a.m.
Dne 16.3.2012 14:40, Michal Hlavinka napsal:
As I understand it, Muayyad has different problem. Right now, the
/etc/sysctl.conf we ship is not empty. It has several values set, one of
them is sysrq=0 he used in his example. No one set this is value, it's
just default value and yet, no package can change it by placing its file
in /etc/sysctl.d This would work only if sysctl.conf is empty and all
default configuration is moved to /etc/sysctl.d/00-systemdefault.conf
See a related bug:
https://bugzilla.redhat.com/show_bug.cgi?id=760254
Michal
9:30 a.m.
New subject: does /etc/sysctl.d/ really obeyed and does really override /etc/sysctl.conf
Am 16.03.2012 15:21, schrieb Michal Schmidt:
Dne 16.3.2012 14:40, Michal Hlavinka napsal:
> As I understand it, Muayyad has different problem. Right now, the
> /etc/sysctl.conf we ship is not empty. It has several values set, one of
> them is sysrq=0 he used in his example. No one set this is value, it's
> just default value and yet, no package can change it by placing its file
> in /etc/sysctl.d This would work only if sysctl.conf is empty and all
> default configuration is moved to /etc/sysctl.d/00-systemdefault.conf
See a related bug:
https://bugzilla.redhat.com/show_bug.cgi?id=760254
yes, but the really bug is that "sysctl.conf" is not shipped empty
it should be the global place where the admin can override ANY setting
from any other file/package and so it is correct to apply systcl.conf
as last item - as said only if it would be shipped empty
_________________
example:
some package enables "net.ipv4.ip_forward"
if i say as admin "net.ipv4.ip_forward = 1" in sysctl.conf this
has usually a very good reason and no other random config
file has to override this or force me to deal with hopefully
high enough numbers in needed "/etc/sysctl.d/XX.config"
if "sysctl.conf" ould be empty as default we would have
excatly this behavior, and yes i am speaking from the
view of a sysadmin maintaining a lot of virtual servers
where "/etc/sysctl.conf" is distributed from a admin
machine to all other guest systems
5:30 p.m.
Reindl Harald wrote:
yes, but the really bug is that "sysctl.conf" is not
shipped empty
it should be the global place where the admin can override ANY setting
from any other file/package and so it is correct to apply systcl.conf
as last item - as said only if it would be shipped empty
+1, Kay Sievers also says that:
https://bugzilla.redhat.com/show_bug.cgi?id=760254#c2
so can we get that implemented?
Kevin Kofler
6:19 p.m.
On Fri, 16.03.12 14:40, Michal Hlavinka (mhlavink(a)redhat.com) wrote:
On 03/16/2012 02:28 PM, Lennart Poettering wrote:
>On Fri, 16.03.12 14:54, Muayyad AlSadi (alsadi(a)gmail.com) wrote:
>
>>but this does not make sense
>>
>>the idea behind all .d is to allow packages to provide default (either
>>kernel defaults or distro defaults)
>>because the other choice is to use %post and sed
>
>>eg. let's say I made a firewall package that needs to enable
>>forwarding, it would put it in a sysctl.d
>
>If a package places a sysctl file in /etc/sysctl.d/ then you can
>override it with /etc/sysctl.conf, hence everything is as it should, no?
>This whole logic is designed so that the admin's configuration always
>takes precedence over vendor configuration. Which is the right thing to
>do.
>
>That said, note that it's probably a good idea if packages stick their
>sysctl files in /usr/lib/sysctl.d instead, so that that users can use
>/etc/sysctl.d/ to override that. /etc/sysctl.conf is read mostly for
>compatibility reasons only.
As I understand it, Muayyad has different problem. Right now, the
/etc/sysctl.conf we ship is not empty. It has several values set,
one of them is sysrq=0 he used in his example. No one set this is
value, it's just default value and yet, no package can change it by
placing its file in /etc/sysctl.d This would work only if
sysctl.conf is empty and all default configuration is moved to
/etc/sysctl.d/00-systemdefault.conf
Ah, hmm, I wasn't aware of that.
I think ideally we'd just change the defaults in our kernel so that we
ship with no default sysctl.conf file. Reconfiguring the kernel defaults
all the time out-of-the-box sounds pretty suboptimal to me.
(That said, if that's really not possible, and we need to keep the file,
we should probaly name it /usr/lib/sysctl.d/00-systemd-default.conf or so)
Lennart
--
Lennart Poettering - Red Hat, Inc.
1:24 a.m.
Once upon a time, Lennart Poettering <mzerqung(a)0pointer.de> said:
I think ideally we'd just change the defaults in our kernel so
that we
ship with no default sysctl.conf file. Reconfiguring the kernel defaults
all the time out-of-the-box sounds pretty suboptimal to me.
It would be better to keep upstream kernel defaults, especially so that
someone building their own kernel wouldn't get different settings
without any obvious documentation. I don't see a problem with Fedora
deciding on different defaults, but it is much more obvious to a system
admin if they're in a config file rather than the kernel source.
(That said, if that's really not possible, and we need to keep
the file,
we should probaly name it /usr/lib/sysctl.d/00-systemd-default.conf or so)
The default file should probably then not be marked as a config file in
the RPM (and should be commented as such). There should still be an
/etc/sysctl.conf with just comments pointing to the various places.
--
Chris Adams <cmadams(a)hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
12:31 p.m.
On Fri, Mar 16, 2012 at 2:47 PM, Lennart Poettering wrote:
> /etc/sysctl.conf is interpreted after /etc/sysctl.d is. The
former hence
> overrides settings in the latter.
and Muayyad AlSadi responded:
but this does not make sense
the idea behind all .d is to allow packages to provide default (either
kernel defaults or distro defaults)
because the other choice is to use %post and sed
The setup of conf/oneBigFile + conf.d/manySmallFiles is so common (see
the list of them on my system, below) that maybe there should be a
convention on which one overrides which. Most of the packages using this
configuration method are configured by reading oneBigFile, which then
explicitly loads conf.d/*. In other cases, both configuration methods
seem to be compiled in, and it is not clear which one is done first and
thus possibly overridden.
The override order is determined by whether the changes are before or
after the conf.d/* invocation. If the conf.d/* load is in the beginning
of oneBigFile's contents, the settings from the conf.d/* files are
overridden. This is how sysctl.conf behaves.
It makes more sense to me that files in conf.d override the main file,
e.g. because they are loaded at the end of the oneBigFile. I prefer this
behavior because the individual files in conf.d/ directory can be
provided by optional components, which, in this scheme, don't have to
touch the main config file.
/etc/httpd/conf.d
/etc/php.d
/etc/dracut.conf.d
/etc/ld.so.conf.d
/etc/prelink.conf.d
/etc/reader.conf.d
/etc/X11/xorg.conf.d
/etc/dracut.conf.d/01-dist.conf
/etc/fonts/conf.d
/etc/polkit-1/localauthority.conf.d
/etc/polkit-1/nullbackend.conf.d
/etc/reader.conf.d
/etc/revisor/conf.d
/etc/revisor-unity/conf.d
/etc/yum/pluginconf.d
/usr/share/X11/xorg.conf.d
/usr/share/alsa/alsa.conf.d
/usr/share/ghostscript/conf.d
4425
days inactive
4428
days old
23 comments
12 participants
participants (12)
-
Chris Adams -
Dave Jones -
Kevin Kofler -
Lennart Poettering -
Matthew Garrett -
Michal Hlavinka -
Michal Schmidt -
Muayyad AlSadi -
Nicolas Mailhot -
Przemek Klosowski -
Reindl Harald -
Tomas Mraz