Re: [gentoo-dev] rfc: improve file system mounting and unmounting in OpenRC
On Mon, 27 Jul 2015 17:26:10 -0500 William Hubbs willi...@gentoo.org wrote: - Currently, we have to skip over certain file systems that we can't unmount during shutdown. With the new approach, if the mount script mounts a file system during boot, it will be able to unmount the same filesystem during shutdown, so that will eliminate more complexity in our mount/unmount handling. What about unmounting during shutdown of things which were mounted by autofs for example? Let us suppose I have samba network and I mount shares automatically using autofs in Windows-like way (cd /net/10.20.30.40/cool_share) and then I reboot after that. Will be this share unmounted well on shutdown with new system? :)
Re: [gentoo-dev] [RFC] check-reqs.eclass: fail check-reqs_memory() for virtual rather than physical RAM
On Wed, 3 Jun 2015 21:32:34 +0100 Ciaran McCreesh ciaran.mccre...@googlemail.com wrote: Swap is horrifically slow. It's better to fail than to use swap for stuff... Is it better to fail when you have already lost several hours in compilations? Or is it better to use some additional parallel swap on a bunch of HDDs or SDDs to FINISH emerge during 30 minutes more? I think the latter is better than fail for no reason. BTW, RAM + swap is better than swap only.
Re: [gentoo-dev] News item review: SquashDelta syncing support
On Fri, 15 May 2015 08:23:27 -0700 Dirkjan Ochtman d...@gentoo.org wrote: On Fri, May 15, 2015 at 7:51 AM, Michał Górny mgo...@gentoo.org wrote: Starting with Portage 2.2.19, a new SquashDelta syncing method has been introduced. It is meant to provide lightweight and efficient solution for stable systems. The whole repository is contained within a single pre-generated SquashFS image file. The daily snapshot of the repository is first fetched from the mirrors, and afterwards updated in-place using deltas (without repacking). This sounds nice, but the news item currently leaves me wondering what sort of improvements I should expect. It says the new method is lightweight and efficient, but it would be nice to quantify this a little bit, or add a link to a page with more details. I think the default sync method in the handbook up to now has always been rsync? A comparison (both in terms of upside and in terms of downside) would be nice. Also, whether we want to make this the new default at some point, and if so, when. Cheers, Dirkjan I've read the pdf article of Michał Górny and from my expirience with emerge-delta-webrsync and app-portage/getdelta in the past this good old new feature looks mostly useful for bad Internet connections (too slow or too expensive ones) and looks mostly useless for syncing relative to rsync method from local mirror like I use http://mirror.yandex.ru/gentoo-distfiles/ from my local region. eix-sync gave me the following statistics (before introducing new portage sync with repos.conf wich has stopped upgrade in the middle atm because =app-portage/layman-2.3.0 haven't been stabilised yet): * Time statistics: 19 seconds for syncing 17 seconds for eix-update 1 seconds for eix-diff 51 seconds total or this one the other day: * Time statistics: 37 seconds for syncing 11 seconds for eix-update 1 seconds for eix-diff 67 seconds total So it takes usually 15-40 seconds for syncing using usual rsync method. This deltas have their own drawbacks like delta is under generation, please wait half an hour or even more or your state is not the same what was while generating delta on the host and lets do additional work with more deltas. )) Although, nice try with experimenting and trying to improve sync mechanism. )
Re: [gentoo-dev] A question to Russian Gentoo Developers Community about import software substitution
On Sat, 09 May 2015 02:05:58 +0600 Vadim A. Misbakh-Soloviov m...@mva.name wrote: I'd also prefer, but it is not that possible as you imagine. There is such thing as certification in Federal Security Service (FSB) and so on. And there is only two such distributions: Alt Linux and Rosa Linux (if not talking about GPL-violating MSVS and Elbrus OS with unknown status of GPL violation (since I'm not ready to pay $5k just to check if sources will be included there)). For secure industrial OS there's one from Kaspersky wich isn't based on Linux kernel at all but was written by their own. And that's what FSB may check and certify if they want. But I don't think that you need to certify Linux Distribution for universities and colleges in FSB.
Re: [gentoo-dev] Becoming a Gentoo developer?
On Wed, 15 Apr 2015 05:33:44 +0200 Yanestra wysi...@seismic.de wrote: Hi, after a talk with some of the persons present here, it appears, Gentoo Linux is actually something like a Freemason lodge. Many secrets, inaugurations, and obviously magic. People, I can only conclude you are not sane. This is absolutely ICK ... YOU ARE ICK !! Disgusting. Let None But Geometers Enter Here. )) (Phrase wich was inscribed above the entrance to the Platonic Academy.) You can just send your patches here: https://github.com/gentoo/gentoo-portage-rsync-mirror P.S. The only way to know is to learn.
Re: [gentoo-dev] Re: Current Gentoo Git setup / man-in-the-middle attacks
On Mon, 30 Mar 2015 11:57:45 +0300 Andrew Savchenko birc...@gentoo.org wrote: The Gentoo tree is not verified anyway: mirrors distribute it via http, rsync and ftp. And using https for that will create a tremendous stress on mirror's CPUs, so this is a bad approach. Not to mention that https itself is very hapless protocol with tons of vulnerabilities (all SSL versions are affected and most TLS implementations). A proper solution will be to use cryptographic verification of downloaded files. We should probably distinguish security of reading from Gentoo mirror and writing to it. But for paranoid ones we probably should add the option to read from https:// or other secured protocols too.
Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks
On Sun, 29 Mar 2015 18:41:33 +0200 Sebastian Pipping sp...@gentoo.org wrote: Hi! For the current Gentoo Git setup I found these methods working for accessing a repository, betagarden in this case: git://anongit.gentoo.org/proj/betagarden.git (git://git.gentoo.org/proj/betagarden.git) (git://git.overlays.gentoo.org/proj/betagarden.git) http://anongit.gentoo.org/git/proj/betagarden.git (http://cgit.gentooexperimental.org/proj/betagarden.git) git+ssh://g...@git.gentoo.org/proj/betagarden.git (git+ssh://g...@git.overlays.gentoo.org/proj/betagarden.git) Those without braces are the ones announced at the repository's page [1]. My concerns about the current set of supported ways of transfer are: * There does not seem to be support for https://. Please add it. * Why do we serve Git over git:// and http:// if those are vulnerable to man-in-the-middle attacks (before having waterproof GPG protection for whole repositories in place)? Especially with ebuilds run by root, we cannot afford MITM. So I would like to propose that * support for Git access through https:// is activated, * Git access through http:// and git:// is deactivated, and * the URLs on gitweb.gentoo.org and the Layman registry are updated accordingly. (Happy to help with the latter.) Thanks for your consideration. Best, Sebastian [1] https://gitweb.gentoo.org/proj/betagarden.git/ Doesn't git:// uses SSH wich is secure? I think that was on github.
Re: [gentoo-dev] Re: Policies for games dirs, new group gamestat for sgid binaries
On Wed, 25 Feb 2015 16:44:28 +0100 hasufell hasuf...@gentoo.org wrote: So if a project ignores the community, the council, the QA team AND violates GLEP39, we allow that, because they still do commits? It looks like I can't edit https://wiki.gentoo.org/wiki/Project:Games/Ebuild_howto, is it a bug? gamesenv function looks outdated there. This function is seems like done by adding RDEPEND=games-misc/games-envd to packages in games category now (according to games.eclass)?
Re: [gentoo-dev] Portage news announcement review
On Tue, 3 Feb 2015 08:36:54 -0800 Brian Dolbec dol...@gentoo.org wrote: 1. Why autosync is disabled by default? This broke current default for emerge --sync. And if users added overlays, they most definitely want them to by synced by default as well. So I propose to set auto-sync=yes by default. YES, due to lots of the sky is falling outcries, I am changing the default to 'yes'. What auto-sync actually stands for? Does it have something to do with emerge --regen? Do we need to change documentation about metadata cache too there? https://wiki.gentoo.org/wiki/Overlay#Metadata_cache Will it be interfere with # Sync all overlays * inside /etc/eix-sync.conf ?
Re: [gentoo-dev] Re: Review: news item and script for CPU_FLAGS_X86
On Fri, 23 Jan 2015 16:45:34 -0600 Ben Kohler bkoh...@gmail.com wrote: I think this should be in an ebuild. You mentioned that it's only needed ONCE, but it's needed ONCE for everytime one install gentoos, along the same lines as mirrorselect. A couple of years from now, do we want users to have to dig through several dozen old news items to get this tool? Maybe it's better to integrate this new tool with eselect tool?
Re: [gentoo-dev] Review: desc/cpu_flags_x86.desc
On Sun, 18 Jan 2015 20:28:27 -0600 Gordon Pettey petteyg...@gmail.com wrote: Because Intel and AMD support it via different cpuinfo feature names. It is popcnt on Intel, and abm on AMD. The description of the flag should also mention that it is included in feature abm on AMD CPUs (and Intel CPUs, but since they list popcnt separately, too, that might be confusing). That's probably not quite correct. I have both of them in /proc/cpuinfo on AMD Phenom II CPU.
Re: [gentoo-dev] Review: desc/cpu_flags_x86.desc
On Sun, 18 Jan 2015 21:44:05 +0100 Michał Górny mgo...@gentoo.org wrote: Hello, I would like to commit the following flags as cpu_flags_x86_desc. The list combines global USE flags with some local USE flags I've been able to find. 3dnow - Use the 3DNow! instruction set 3dnowext - Use the Enhanced 3DNow! instruction set aes-ni - Enable support for Intel's AES instruction set (aes in cpuinfo) avx - Adds support for Advanced Vector Extensions instructions avx2 - Adds support for Advanced Vector Extensions 2 instructions fma - Use the Fused Multiply Add instruction set mmx - Use the MMX instruction set mmxext - Use the Extended MMX instruction set (intersection of Enhanced 3DNow! and SSE instruction sets) (3dnowext or sse in cpuinfo) padlock - Use VIA padlock instructions popcnt - Enable popcnt instruction support sse - Use the SSE instruction set sse2 - Use the SSE2 instruction set sse3 - Use the SSE3 instruction set (pni in cpuinfo) sse4 - Enable SSE4 instruction support sse4_1 - Enable SSE4.1 instruction support sse4_2 - Enable SSE4.2 instruction support sse4a - Enable SSE4a instruction support ssse3 - Use the SSSE3 instruction set There are other cool instructions on modern CPUs too. For example, iommu. There are versions of them in kernel config options. Maybe genkernel should depend on them? IDK, because I configure kernel config by hand.
Re: [gentoo-dev] Review: desc/cpu_flags_x86.desc
On Mon, 19 Jan 2015 08:13:46 +0800 Patrick Lauer patr...@gentoo.org wrote: 3dnow - Use the 3DNow! instruction set 3dnowext - Use the Enhanced 3DNow! instruction set Those are kinda mostly dead (no new CPUs have them anymore) My CPU still has them. mmxext - Use the Extended MMX instruction set (intersection of Enhanced 3DNow! and SSE instruction sets) (3dnowext or sse in cpuinfo) padlock - Use VIA padlock instructions Kinda very dead, even more than 3dnow I still have CPU with this instruction too.
Re: [gentoo-dev] Re: maintainer-needed@ packages need you!
On Sun, 7 Sep 2014 01:16:57 +0400 Andrew Savchenko birc...@gmail.com wrote: It should be noted that at least in Linux skype is much harder to install and use since it requires pulseaudio and I don't use that sh^W stuff. So skype reqires its own LXC container set up which is doable, but costed me a day (with all tight isolation stuff). And I even had not mentione that installation of skype equals to trojan injection into the system (that's why I used all that LXC and separate X server precautions). Can you give any reference about how to isolate Skype properly using LXC?
Re: [gentoo-dev] Gentoo-sources - should we stable?
On Fri, 02 Jan 2015 12:25:56 -0500 Mike Pagano mpag...@gentoo.org wrote: Are there solid arguments for stabilizing any version of gentoo-sources? I think the valid arguments for not stabilizing gentoo-sources can be garnered from the thread about not stabilizing vanilla-sources[1]. This is in no way complaining about how long it takes to stabilize a kernel. It's just a fact that by the time we do stabilizing one, there might be many, many kernel versions released for that 3.X branch that contains security fixes for which the stable version will not have. Kernel versions are coming out 1-2 a week at this point. There's also a problem to upgrade kernel for a user every 1-2 week by hands using make oldconfig and reading smth like kernelnewbies.org/LinuxChanges. Not everyone uses genkernel.
Re: [gentoo-dev] [PATCH 0/3] Remove parallel run support from multilib multibuild
On Sat, 13 Dec 2014 09:44:21 +0100 Michał Górny mgo...@gentoo.org wrote: Dnia 2014-12-11, o godz. 11:36:29 Michał Górny mgo...@gentoo.org napisał(a): Hello, everyone. Following a similar change in distutils-r1, I would like to remove the parallel run support in multilib eclasses, and effectively from multibuild completely. What is parallel run support? Will it affect (the speed of) parallel emerging of packages?
Re: [gentoo-dev] Lastrites: net-im/linpopup, app-office/teapot, net-irc/bitchx, sys-power/cpufrequtils, x11-plugins/gkrellm-cpufreq, media-sound/gnome-alsamixer, sys-devel/ac-archive, net-misc/emirror
On Tue, 09 Dec 2014 11:05:31 +0100 Pacho Ramos pa...@gentoo.org wrote: Regarding the gkrellm-plugins, looks like Fedora is supplying this one: http://pkgs.fedoraproject.org/cgit/gkrellm-freq.git/tree/gkrellm-freq.spec I rewrote ebuild for gkrellm-gkfreq plugin a bit https://github.com/cerebrum/dr/blob/master/x11-plugins/gkrellm-gkfreq/gkrellm-gkfreq-2.3.ebuild And sent this patch upstream https://github.com/cerebrum/dr/blob/master/x11-plugins/gkrellm-gkfreq/files/gkrellm-gkfreq-2.3-make.patch https://sourceforge.net/p/gkrellm-gkfreq/feature-requests/2/ Why do we have a function tc-getCC for CC environment variable and why we don't use CC environment variable automatically? With this patch CFLAGS and LDFLAGS are substituted automatically without garbage in ebuild. Why don't we use the same strategy for CC variable? Sometimes a package will try to use a bizarre compiler, or will need to be told which compiler to use. In these situations, the tc-getCC() function from toolchain-funcs.eclass should be used... Note: It is not correct to use the ${CC} variable for this purpose. https://devmanual.gentoo.org/ebuild-writing/functions/src_compile/building/index.html And why CC variable gives me cc but not x86_64-pc-linux-gnu-gcc as it should be? Am I right that it's a bit strange?
Re: [gentoo-dev] Lastrites: net-im/linpopup, app-office/teapot, net-irc/bitchx, sys-power/cpufrequtils, x11-plugins/gkrellm-cpufreq, media-sound/gnome-alsamixer, sys-devel/ac-archive, net-misc/emirror
On Tue, 09 Dec 2014 11:05:31 +0100 Pacho Ramos pa...@gentoo.org wrote: El lun, 08-12-2014 a las 14:46 -0500, Rich Freeman escribió: On Wed, Dec 3, 2014 at 2:07 PM, Michael Orlitzky m...@gentoo.org wrote: It doesn't look like it's going to work so well without cpufrequtils. There's a new homepage with a few new releases at: Are there any actual issues with cpufrequtils, beyond having a dead upstream? It's explained at: https://bugs.gentoo.org/show_bug.cgi?id=484242#c1 Also, indeed, other distributions killed it long time ago (usually in favor of cpupower, the kernel-tools pointed at http://pkgs.fedoraproject.org/cgit/cpufrequtils.git/tree/dead.package ) Regarding the gkrellm-plugins, looks like Fedora is supplying this one: http://pkgs.fedoraproject.org/cgit/gkrellm-freq.git/tree/gkrellm-freq.spec gkrellm-freq-1.0 was removed from the tree: https://bugs.gentoo.org/show_bug.cgi?id=334907 https://bugs.gentoo.org/show_bug.cgi?id=339908 http://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo-x86/x11-plugins/gkrellm-gkfreq/ChangeLog?view=markup But it looks like there's a new 2.3 version of it: http://sourceforge.net/projects/gkrellm-gkfreq/ I will try to recreate ebuild in my overlay and test it.
Re: [gentoo-dev] Lastrites: net-im/linpopup, app-office/teapot, net-irc/bitchx, sys-power/cpufrequtils, x11-plugins/gkrellm-cpufreq, media-sound/gnome-alsamixer, sys-devel/ac-archive, net-misc/emirror
On Wed, 03 Dec 2014 14:07:24 -0500 Michael Orlitzky m...@gentoo.org wrote: On 12/03/2014 07:28 AM, Diamond wrote: On Mon, 01 Dec 2014 11:38:44 +0100 Pacho Ramos pa...@gentoo.org wrote: # Pacho Ramos pa...@gentoo.org (01 Dec 2014) # Upstream dead for a long time, use sys-power/cpupower # instead. Removal in a month. sys-power/cpufrequtils x11-plugins/gkrellm-cpufreq Give us an alternative before removing x11-plugins/gkrellm-cpufreq. This plugin still works great for me. It doesn't look like it's going to work so well without cpufrequtils. There's a new homepage with a few new releases at: http://chw.populus.org/rub/7 The latest 0.6.4 has an INSTALL file that says it requires cpufrequtils. I also see a cpufreqnextgovernor script that uses binaries from sys-power/cpufrequtils. Glancing at the code, it might still be able to read the current frequency from /proc/cpuinfo or somewhere under /sys without cpufrequtils (can you confirm?), but at best that leaves the plugin half-broken without an update. I did emerge -C sys-power/cpufrequtils and then restarted gkrellm. It looks like this plugin still shows P-states wich is enough for me. But I haven't tried restart it yet. And also haven't tried to remerge x11-plugins/gkrellm-cpufreq. It probably won't wich is sad. I personally don't need user-changing of the governor, kernel default ondemand governor is OK for me. I just need to see P-states in real-time in gkrellm.
Re: [gentoo-dev] Lastrites: net-im/linpopup, app-office/teapot, net-irc/bitchx, sys-power/cpufrequtils, x11-plugins/gkrellm-cpufreq, media-sound/gnome-alsamixer, sys-devel/ac-archive, net-misc/emirror
On Mon, 01 Dec 2014 11:38:44 +0100 Pacho Ramos pa...@gentoo.org wrote: # Pacho Ramos pa...@gentoo.org (01 Dec 2014) # Upstream dead for a long time, use sys-power/cpupower # instead. Removal in a month. sys-power/cpufrequtils x11-plugins/gkrellm-cpufreq Give us an alternative before removing x11-plugins/gkrellm-cpufreq. This plugin still works great for me.
Re: [gentoo-dev] [news item review] bash-completion-2.1-r90, version 2
On Mon, 10 Nov 2014 22:18:01 +0100 Michał Górny mgo...@gentoo.org wrote: Hello, developers. I'm planning to commit this news item before =2.1-r90 goes stable. It's pretty strange, but after the last emerge -1uDN world system update I lost bash-complition. It was removed (app-admin/eselect-bashcomp-1.3.6, app-shells/bash-completion-1.3-r2, app-shells/gentoo-bashcomp-20121024) during emerge --depclean process. I have bash-completion USE-flag in /etc/portage/make.conf and installed bashcomp long time ago. Now it was semi-automatically deleted. May it be relatated to this changes (migration to 2.1-r90)?
Re: [gentoo-dev] My masterplan for git migration (+ looking for infra to test it)
On Thu, 18 Sep 2014 17:04:55 +1200 Kent Fredric kentfred...@gmail.com wrote: What's more, you can in fact do: git mv foo-1.ebuild foo-2.ebuild git commit and you can still easily tell git to show that as a difference in a log. Example script to emulate this and example output: https://gist.github.com/kentfredric/10e93e9aac875e9edb93 ( In fact, you don't even have to use 'git mv', as long as you change the tree state completely, git is smart enough to track most changes ) Lets assume, that I don't want to scrap old ebuild yet. There's no git cp command. git mv is just git rm + git add. That's what does it look like (usual revbump with git add in reality): https://github.com/cerebrum/dr/commit/311df9b04d876f5847416fe5ba699edfab50adb6 I think that git (at least with default config is a pain in the ass for packages at all and we should probably think about better platform for portage).
Re: [gentoo-dev] My masterplan for git migration (+ looking for infra to test it)
On Thu, 18 Sep 2014 16:00:59 -0400 Rich Freeman ri...@gentoo.org wrote: What would you propose? The problem you raise is just as much an issue with cvs. I don't get a continuous history across revbumps in cvs today, so I don't really see a problem with moving to git. I don't know what to propose. I stumbled over this problem when started to use git for packages. At least there are other SCM systems too. Haven't investigated them yet for that issue. Facebook uses even it's own one.
Re: [gentoo-dev] Git copy detection (was: My masterplan for git migration...)
On Thu, 18 Sep 2014 13:08:11 -0700 W. Trevor King wk...@tremily.us wrote: Git can check for copies if you like: $ git clone git://github.com/cerebrum/dr.git $ cd dr/ $ git show --find-copies-harder 311df9b04 … copy from games-strategy/openra/openra-20140608.ebuild copy to games-strategy/openra/openra-20140722.ebuild --find-copies-harder is better but it isn't shown on github in a convenient way for package management.
Re: [gentoo-dev] Git copy detection (was: My masterplan for git migration...)
On Thu, 18 Sep 2014 14:29:41 -0700 W. Trevor King wk...@tremily.us wrote: So Git works great, and GitHub's web UI doesn't support all of Git's bells and whistles, so… switch to a different VCS? Personally, my conclusion is “just use Git from the command line”. It's not like you're abandoning long years of experience using CVSHub with some miracle UI ;). --find-copies-harder For performance reasons, by default, -C option finds copies only if the original file of the copy was modified in the same changeset. This flag makes the command inspect unmodified files as candidates for the source of copy. This is a very expensive operation for large projects, so use it with caution. Giving more than one -C option has the same effect. P.S. As you see from description this option affects git performance. So, we probably can arrive at a conclusion that git itself isn't good at all for package management. Maybe there are better architectural decisions for that.
Re: [gentoo-dev] My masterplan for git migration (+ looking for infra to test it)
On Mon, 15 Sep 2014 14:51:56 -0400 Rich Freeman ri...@gentoo.org wrote: In general you want each commit to represent a single change. That might be a revbump in a single package, or it might be a package move that involves touching 300 packages in a single commit. Is it right that you are going to move portage packages to git/github/..? How are you going to make revbump with git? Especially if you need to see the diff between packagename-0.1-r1 and packagename-0.1-r2 ebuilds? Git doesn't do this by default and it will might be a nightmare to compare such revbumps by hand.
Re: [gentoo-dev] Automated Package Removal and Addition Tracker, for the week ending 2014-07-20 23h59 UTC
On Mon, 21 Jul 2014 00:25:02 + Robin H. Johnson robb...@gentoo.org wrote: Removals: net-misc/curl 2014-07-15 09:29:56 blueness Is this a joke? Isn't curl as basic package as wget?