From f0d68bb2a52bd7a00b30dba599b41cb177091848 Mon Sep 17 00:00:00 2001 From: Mike Gilbert Date: Mon, 23 Sep 2024 10:51:31 -0400 Subject: [PATCH] quickpkg: enable include-unmodified-config by default If the user has not modified an installed config file, there should be no risk of exposing secret information by including the file. This makes quickpkg behave more reasonably with FEATURES="config-protect-if-modified", which has been enabled by default since 304dfb0fb09b799eec526d0703c44fc6a92ef13d. Bug: https://bugs.gentoo.org/939896 Signed-off-by: Mike Gilbert --- bin/quickpkg | 4 ++-- man/quickpkg.1 | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/bin/quickpkg b/bin/quickpkg index 520b9bc35e..9ee394c0b8 100755 --- a/bin/quickpkg +++ b/bin/quickpkg @@ -420,9 +420,9 @@ if __name__ == "__main__": parser.add_argument( "--include-unmodified-config", choices=["y", "n"], - default="n", + default="y", metavar="", - help="include files protected by CONFIG_PROTECT that have not been modified since installation (as a security precaution, default is 'n')", + help="include files protected by CONFIG_PROTECT that have not been modified since installation", ) options, args = parser.parse_known_args(sys.argv[1:]) if not options.ignore_default_opts: diff --git a/man/quickpkg.1 b/man/quickpkg.1 index 5f3797a049..b164c39f8f 100644 --- a/man/quickpkg.1 +++ b/man/quickpkg.1 @@ -38,7 +38,7 @@ default is 'n'). .TP .BR "\-\-include\-unmodified\-config < y | n >" Include files protected by CONFIG_PROTECT that have not been modified -since installation (as a security precaution, default is 'n'). +since installation. .TP .BR \-\-umask=UMASK The umask used during package creation (default is 0077).