| 1 |
On Mon, Jan 23, 2017 at 10:23:35AM +0100, Michał Górny wrote: |
| 2 |
> Hi, everyone. |
| 3 |
> |
| 4 |
> I've written a short proposal that aims to provide basic infrastructure |
| 5 |
> for defining mix-in profiles in Gentoo. I've tried to keep it simple, |
| 6 |
> and backwards compatible. The main goal is to be able to start defining |
| 7 |
> some mix-ins without having to reinvent the whole profile tree. |
| 8 |
> |
| 9 |
> Most important points: |
| 10 |
> |
| 11 |
> 1. Mix-ins are applied on top of base profile (which works the same as |
| 12 |
> before), |
| 13 |
> |
| 14 |
> 2. Mix-ins are supported via 'eselect profile' |
| 15 |
> replacing /etc/portage/make.profile symlink with a directory, without |
| 16 |
> need for Portage patching (this is how Funtoo does it), |
| 17 |
> |
| 18 |
> 3. Most important mix-ins are used to construct base profiles which |
| 19 |
> provides both backwards compatibility and proper targets for repoman |
| 20 |
> (to avoid having to check all possible mix-in combinations). |
| 21 |
|
| 22 |
This is awesome! thanks for working on it, ive wanted it for a while |
| 23 |
now. |
| 24 |
|
| 25 |
The main issue I see with it is ordering. For the hardened and selinux |
| 26 |
profiles, the order matters a lot. eg hardened defaults the jit useflag |
| 27 |
off and the desktop profile defaults on which causes problems with PaX. |
| 28 |
If these two mixins would end up in a kind of random order then we'll |
| 29 |
have issues. See https://bugs.gentoo.org/492312 for a specific issue. |
| 30 |
|
| 31 |
It could be as simple as when putting in the make.profile list, do it in |
| 32 |
the order they are defined in the profiles.mixin file, then we can just |
| 33 |
have hardened and selinux last and problem solved. Or could go with a |
| 34 |
priority field but then again there is the problem of what happens when |
| 35 |
two have the same priority? |
| 36 |
|
| 37 |
Also how will profiles.mixin interact between different overlays? you |
| 38 |
can manually set a parents file with features/desktop::gentoo and |
| 39 |
feature/foo::overlay already. if foo::myoverlay is in the desktop group, |
| 40 |
does that merge together with the desktop group ones in ::gentoo? |
| 41 |
|
| 42 |
-- Jason |
Archives