Re: freebsd-update "No changes have been downloaded" "files have been modified locally"
Date: Mon, 19 Aug 2024 23:48:20 UTC
On 2024-08-19 13:50, Gary Aitken wrote: > Upgrading from 13.2 to 13.3, wanted to install 13.2 security patches first. > Not sure if that's necessary or not. > > freebsd-update fetch > ... > The following files are affected by updates. No changes have > been downloaded, however, because the files have been modified > locally: > /etc/ssh/sshd_config > > Looking at > https://github.com/freebsd/freebsd-src/tree/releng/13.2/etc > there is not even a /etc/ssh director > > Since these are updates to 13.2-RELEASE, I can see why the updated > file wouldn't be in the releng tree, but shouldn't the original be > there? > Where are the sources for the updates, i.e. > Where is the source for the file it wants to install? For Cold War legacy[1] reasons[2], the in-tree copy of sshd_config lives at: src/crypto/openssh/sshd_config 1: https://en.wikipedia.org/wiki/Export_of_cryptography_from_the_United_States 2: https://cgit.freebsd.org/src/tree/crypto/README > I think I don't understand what the releng tree is showing, as it > also lists subdirs root and sendmail which aren't present in 13.2 /etc. > > If I look in > /var/db/etcupdate/current/etc/ssh > I see an sshd_config > > What, exactly, is in the "current" tree? Are these the files prior to > performing an update, so it can be rolled back? /var/db/etcupdate/current contains the most recent reference tree extracted from /usr/src by etcupdate(8). etcupdate uses it to update /etc and a few other bits as part of a source upgrade. It isn't used by freebsd-update, so won't necessarily be correct for the installed OS.