Difference between revisions of "Gentoo: System update"
From Luky-Wiki
Lukas Dzunko (talk | contribs) |
Lukas Dzunko (talk | contribs) |
||
| Line 2: | Line 2: | ||
== System Update == | == System Update == | ||
| − | ===== | + | ===== Update local repository ===== |
eix-sync | eix-sync | ||
| Line 11: | Line 11: | ||
eix-update | eix-update | ||
| − | ===== | + | ===== Clean logs from previous update ===== |
find /var/log/portage -maxdepth 1 -type f -ls -delete | find /var/log/portage -maxdepth 1 -type f -ls -delete | ||
| − | ===== | + | ===== Clean distfiles and package directory ===== |
eclean-dist -d ; eclean-pkg -d | eclean-dist -d ; eclean-pkg -d | ||
| − | ===== | + | ===== Update system including build dependencies ===== |
| − | ====== | + | ====== on "build" system ====== |
emerge --ask --update --deep --newuse --with-bdeps=y @world | emerge --ask --update --deep --newuse --with-bdeps=y @world | ||
| − | ====== | + | ====== on "prod" system ====== |
emerge --ask --update --deep --newuse --with-bdeps=y --binpkg-changed-deps=n @world | emerge --ask --update --deep --newuse --with-bdeps=y --binpkg-changed-deps=n @world | ||
| − | ===== | + | ===== Commit or reject configuration changes in "/etc" ===== |
etc-update | etc-update | ||
| − | ===== | + | ===== Review messages from packages ===== |
elogv | elogv | ||
| − | ===== | + | ===== Clean packages with no dependency on "world" package set ===== |
emerge --ask --depclean | emerge --ask --depclean | ||
| − | ===== | + | ===== Scan for broken dependencies ===== |
* python: | * python: | ||
python-updater --pretend | python-updater --pretend | ||
| Line 47: | Line 47: | ||
revdep-rebuild.sh --ignore --pretend | revdep-rebuild.sh --ignore --pretend | ||
| − | ===== | + | ===== If previous commands result in package rebuild then review again logs and possible configuration changes ===== |
elogv | elogv | ||
etc-update | etc-update | ||
| − | ===== | + | ===== Verify / validate dependency starting from "world" fileset ===== |
emerge --pretend --verbose --update --deep --newuse --with-bdeps=y @world | emerge --pretend --verbose --update --deep --newuse --with-bdeps=y @world | ||
| − | ===== | + | ===== Check for possible updates by each package separately (watch versions in slots) ===== |
eix --upgrade | eix --upgrade | ||
| − | ===== | + | ===== Search for possible obsolete portage configuration and installed packages ===== |
eix-test-obsolete | eix-test-obsolete | ||
| − | ===== | + | ===== Check installed packages agains GLSA (Gentoo Linux Security Advisories) ===== |
glsa-check --test --nocolor --verbose all | glsa-check --test --nocolor --verbose all | ||
| − | ===== | + | ===== Rebuild X11 drivers and linked packages ===== |
emerge --ask @x11-module-rebuild | emerge --ask @x11-module-rebuild | ||
Revision as of 15:29, 9 May 2017
Warning! Warning! Warning! ... This article is my cookbook. It is designed for binary type update (two stages deployment) and only as reference. You can use it but it may not be suitable for all configurations. Use common sense and add / modify / repeat commands if necessary. I am doing same during update. Some of commands have --pretend just to see actions before they are applied. I normally review them and rerun command without --pretend option.
Contents
- 1 System Update
- 1.1 Update local repository
- 1.2 Clean logs from previous update
- 1.3 Clean distfiles and package directory
- 1.4 Update system including build dependencies
- 1.5 Commit or reject configuration changes in "/etc"
- 1.6 Review messages from packages
- 1.7 Clean packages with no dependency on "world" package set
- 1.8 Scan for broken dependencies
- 1.9 If previous commands result in package rebuild then review again logs and possible configuration changes
- 1.10 Verify / validate dependency starting from "world" fileset
- 1.11 Check for possible updates by each package separately (watch versions in slots)
- 1.12 Search for possible obsolete portage configuration and installed packages
- 1.13 Check installed packages agains GLSA (Gentoo Linux Security Advisories)
- 1.14 Rebuild X11 drivers and linked packages
- 2 Binhost checks
System Update
Update local repository
eix-sync
or
emerge --sync
or (if repository is synced)
eix-update
Clean logs from previous update
find /var/log/portage -maxdepth 1 -type f -ls -delete
Clean distfiles and package directory
eclean-dist -d ; eclean-pkg -d
Update system including build dependencies
on "build" system
emerge --ask --update --deep --newuse --with-bdeps=y @world
on "prod" system
emerge --ask --update --deep --newuse --with-bdeps=y --binpkg-changed-deps=n @world
Commit or reject configuration changes in "/etc"
etc-update
Review messages from packages
elogv
Clean packages with no dependency on "world" package set
emerge --ask --depclean
Scan for broken dependencies
- python:
python-updater --pretend
- perl:
perl-cleaner --all --pretend
- libraries detected by system:
emerge -ask @preserved-rebuild
- libraries not detected by portage:
revdep-rebuild --ignore --pretend
revdep-rebuild.sh --ignore --pretend
If previous commands result in package rebuild then review again logs and possible configuration changes
elogv
etc-update
Verify / validate dependency starting from "world" fileset
emerge --pretend --verbose --update --deep --newuse --with-bdeps=y @world
Check for possible updates by each package separately (watch versions in slots)
eix --upgrade
Search for possible obsolete portage configuration and installed packages
eix-test-obsolete
Check installed packages agains GLSA (Gentoo Linux Security Advisories)
glsa-check --test --nocolor --verbose all
Rebuild X11 drivers and linked packages
emerge --ask @x11-module-rebuild
emerge --ask app-crypt/hashcat app-crypt/johntheripper
Note: binary packages needs to be disabled on prod system:
export FEATURES="-buildpkg -getbinpkg" export CFLAGS="-O2 -march=native -mfpmath=sse -fomit-frame-pointer -pipe"
