Re: [arch-general] [arch-dev-public] WARNING: [testing] broken due to openssl and heimdal rebuilds
On 07.04.2010 06:42, Pierre Schmitz wrote:
I just tested what happens if I change pacman depends to "'libarchive>=2.8.3-3' 'libfetch>=2.30-3'".
Maybe start using sodeps to generate those dependencies? libfetch (doesn't have a soname with version btw) would depend on the new openssl libs and pacman should take care of the order. Have you already checked the patch Allan? -- Florian Pritz -- {flo,bluewind}@server-speed.net
On 07/04/10 23:47, Florian Pritz wrote:
On 07.04.2010 06:42, Pierre Schmitz wrote:
I just tested what happens if I change pacman depends to "'libarchive>=2.8.3-3' 'libfetch>=2.30-3'".
Maybe start using sodeps to generate those dependencies? libfetch (doesn't have a soname with version btw) would depend on the new openssl libs and pacman should take care of the order.
This would really not help here. Pacman does not directly link openssl, but does through libarchive and libfetch. Adding versioned libarchive and libfetch to pacman's deps and using sodeps on openssl in those packages would prevent pacman's SyncFirst from working. This is a case of: versioned deps in pacman for lib{archive,fetch} = bad as that pulls in openssl and breaks your system until you do the next update no versioned deps in pacman for lib{archive,fetch} = bad as between the openssl and lib{archive,fetch} updates vercmp is broken and so is install files.
Have you already checked the patch Allan?
Yes... but my comments were never addressed: http://mailman.archlinux.org/pipermail/pacman-dev/2010-February/010406.html (points #1 and #2) http://mailman.archlinux.org/pipermail/pacman-dev/2010-February/010421.html http://mailman.archlinux.org/pipermail/pacman-dev/2010-February/010426.html Allan
On 07.04.2010 16:10, Allan McRae wrote:
This would really not help here. Pacman does not directly link openssl, but does through libarchive and libfetch. Adding versioned libarchive and libfetch to pacman's deps and using sodeps on openssl in those packages would prevent pacman's SyncFirst from working.
Don't add depends=(libfetch.sp libarchive.so) to the pacman PKGBUILD and it won't be a problem. (Also see #2 below)
no versioned deps in pacman for lib{archive,fetch} = bad as between the openssl and lib{archive,fetch} updates vercmp is broken and so is install files.
sodeps would ensure that pacman updates libfetch and libarchive directly after openssl.
Have you already checked the patch Allan?
Yes... but my comments were never addressed:
http://mailman.archlinux.org/pipermail/pacman-dev/2010-February/010446.html Which patch version did you read back then? The one you replied to has all but 1 of those changes. (See below)
http://mailman.archlinux.org/pipermail/pacman-dev/2010-February/010406.html (points #1 and #2)
1) I'm only waiting for someone to implement the change in pacman (I'm not good at C), but the makepkg part is already done. 2) The latest patch does exactly that.
http://mailman.archlinux.org/pipermail/pacman-dev/2010-February/010421.html
I've removed that already.
http://mailman.archlinux.org/pipermail/pacman-dev/2010-February/010426.html
I actually don't worry about it anymore and the current code works so I see no need to change it. -- Florian Pritz -- {flo,bluewind}@server-speed.net
On 08/04/10 00:54, Florian Pritz wrote:
On 07.04.2010 16:10, Allan McRae wrote:
This would really not help here. Pacman does not directly link openssl, but does through libarchive and libfetch. Adding versioned libarchive and libfetch to pacman's deps and using sodeps on openssl in those packages would prevent pacman's SyncFirst from working.
Don't add depends=(libfetch.sp libarchive.so) to the pacman PKGBUILD and it won't be a problem. (Also see #2 below)
Adding those or not is the same as adding versioned deps or not. Both cause bad issues.
no versioned deps in pacman for lib{archive,fetch} = bad as between the openssl and lib{archive,fetch} updates vercmp is broken and so is install files.
sodeps would ensure that pacman updates libfetch and libarchive directly after openssl.
Not directly after, but in the same transaction. That is the same as the current issue we have. Using sodeps is no improvement over versioned deps here.
Have you already checked the patch Allan?
Yes... but my comments were never addressed:
http://mailman.archlinux.org/pipermail/pacman-dev/2010-February/010446.html Which patch version did you read back then? The one you replied to has all but 1 of those changes. (See below)
Sorry, after looking at the patch in more detail, I see you have dealt with these. I will try and give these a full review as soon as I have fixed a couple of bigger issues in makepkg-git. Allan
On Wed, Apr 7, 2010 at 10:16 AM, Allan McRae <allan@archlinux.org> wrote:
On 08/04/10 00:54, Florian Pritz wrote:
On 07.04.2010 16:10, Allan McRae wrote:
This would really not help here. Pacman does not directly link openssl, but does through libarchive and libfetch. Adding versioned libarchive and libfetch to pacman's deps and using sodeps on openssl in those packages would prevent pacman's SyncFirst from working.
Don't add depends=(libfetch.sp libarchive.so) to the pacman PKGBUILD and it won't be a problem. (Also see #2 below)
Adding those or not is the same as adding versioned deps or not. Both cause bad issues.
no versioned deps in pacman for lib{archive,fetch} = bad as between the openssl and lib{archive,fetch} updates vercmp is broken and so is install files.
sodeps would ensure that pacman updates libfetch and libarchive directly after openssl.
Not directly after, but in the same transaction. That is the same as the current issue we have. Using sodeps is no improvement over versioned deps here.
Allan and I talked a bit on IRC and we both came to some idea that a vercmp without any deps would probably be a good solution. We can hack this up for now, file attached to do so. If this goes into the pacman package dir in SVN and we just add a "gcc -O2 -o vercmp vercmp.c" in there and put it in the right place, we can avoid a lot of hassle with everything here. -Dan
participants (3)
-
Allan McRae
-
Dan McGee
-
Florian Pritz