Hi Andreas, On 10-06-2019 03:42, Andreas Henriksson wrote: > On Sat, Jun 08, 2019 at 09:00:52PM +0200, Paul Gevers wrote: >> While rebuilding all packages in buster for CVE-2018-17846 / >> CVE-2018-17847 / CVE-2018-17848 in golang-golang-x-net-dev, >> mender-client fails to build from source on all architectures where it >> was tried. > > You say building in buster, yet the build log is clearly from sid:
Yes, sorry about that. In sid, *for* buster. > If we put buster aside and focus on sid, I see two obvious ways to fix > the build problem. The first would be to upload the updated > mender-client packages sitting in git, the second to revert the > mender-artifact package to previous version. As the second already seems > to have happened, then as I see it the correct approach would be to just > close this bug report. > > (I forsee if you do builds in sid that you aim to migrate to buster, > there might be problems that the newly (re)built mender-client package > will have a Built-Using field pointing to the new fugly "foo+reallybar" > version of mender-artifact. I'm confident you know better than me how to > handle that situation, just thought I'd mention it.) > > Either way it seems this bug report should be closed, thus doing so. > (Adressing/CCing me or Lluis directly would also most likely be useful.) > > If there are any remaining issues, please share what those are. Indeed, everything is in place already. If you're interested, see bug 928227 for any background (long bug). Paul
signature.asc
Description: OpenPGP digital signature