Re: [gentoo-dev] mozilla{-bin}/gecko-sdk masking
* Ned Ludd [EMAIL PROTECTED] schrieb: Hi, Lack of time is fully understandable. It's a big package and takes a long time to compile and debug. Yeah, IMHO the whole mozilla stuff has been grown too big. nspr already should be fall apart into several packages, the XUL core another one, each XUL toolkit for each own, etc, etc. This would make developing much, much easier and most of the patches don't have to be ported across several branches (ie. moz vs. ff), since these branched package would be quite small, but sitting on top of several libs. But this of course is an upstream issue ... cu -- - Enrico Weigelt== metux IT service - http://www.metux.de/ - Please visit the OpenSource QM Taskforce: http://wiki.metux.de/public/OpenSource_QM_Taskforce Patches / Fixes for a lot dozens of packages in dozens of versions: http://patches.metux.de/ - -- gentoo-dev@gentoo.org mailing list
Re: [gentoo-dev] mozilla{-bin}/gecko-sdk masking
On Fri, 2006-06-30 at 22:30 -0500, Jory A. Pratt wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Ned Ludd wrote: On Fri, 2006-06-30 at 19:39 -0500, Jory A. Pratt wrote: As many are aware by now mozilla{-bin} are full of security issues. I will be p.masking them tonight along with gecko-sdk. This is gonna cause some issues with stable tree I am aware of this. As packages break please reference bug http://bugs.gentoo.org/show_bug.cgi?id=137665 If you are able to provide a patch or diff against problem please provide and I or the dev/herd that maintaines will test and apply it as soon as possible. I was left with no option as packages are still being updated in the tree without being ported to seamonkey/firefox. Sorry for any inconvience this may cause you the user, but devs should be held responsible as they have had plenty of time to work out the problems. I've been using seamonkey for a few weeks now without problems and am pleased with it but I don't believe a word you say about having no choice or devs having the option to fix stuff. You always had the option of porting patches. You always have options! You have held back taking the seadonkey out of p.masking till the very last min then forced an un-smooth upgrade path on everybody. Please don't shift the blame on others.. We have ~arch and blockers for stuff like this... Please don't take this as a personal attack... I'm just calling shit as I see it. If this is how ya feel back port the damn patches. I do not have time to back port patches for every security issues that remains. I have fought to keep security from masking it before now. Maybe you would feel better taking over mozilla/seamonkey/gecko-sdk? If all the bug mail over the last week is not enough to move the tree to were it should be already for seamonkey as I have requested, then the responsibility does fall on package maintainer. For those who are unaware just follow all the blockers you will end up at security were there has been comments about back porting patches but you have not seen solar make any mention of who/when will or has the time to do the back porting. My reply to your orig mail was intended to be off list. Lack of time is fully understandable. It's a big package and takes a long time to compile and debug. More time than many are willing to devote.. Trust me I thank for you doing what you do and have no interest what so ever in maintaining the pkg either. I just feel that mozilla is a pretty major package and seamonkey if unmasked current has not been unmasked for very long ~10 hrs as of this mail. As long as the two existed in the tree and blocked each other there seems a little less of a rush to be so quick to p.mask mozilla itself till the bugs are fleshed out of the seamonkey pkg. Most maintainers put stuff into ~arch so bugs can be worked out. You jumped it right to stable out of a p.masking Shrug.. It's your pkg feel free to maintain it however the fsck you want.. -- Ned Ludd [EMAIL PROTECTED] Gentoo Linux -- gentoo-dev@gentoo.org mailing list
Re: [gentoo-dev] mozilla{-bin}/gecko-sdk masking
On Fri, 2006-06-30 at 19:39 -0500, Jory A. Pratt wrote: As many are aware by now mozilla{-bin} are full of security issues. I will be p.masking them tonight along with gecko-sdk. This is gonna cause some issues with stable tree I am aware of this. As packages break please reference bug http://bugs.gentoo.org/show_bug.cgi?id=137665 If you are able to provide a patch or diff against problem please provide and I or the dev/herd that maintaines will test and apply it as soon as possible. I was left with no option as packages are still being updated in the tree without being ported to seamonkey/firefox. Sorry for any inconvience this may cause you the user, but devs should be held responsible as they have had plenty of time to work out the problems. I've been using seamonkey for a few weeks now without problems and am pleased with it but I don't believe a word you say about having no choice or devs having the option to fix stuff. You always had the option of porting patches. You always have options! You have held back taking the seadonkey out of p.masking till the very last min then forced an un-smooth upgrade path on everybody. Please don't shift the blame on others.. We have ~arch and blockers for stuff like this... Please don't take this as a personal attack... I'm just calling shit as I see it. -- Ned Ludd [EMAIL PROTECTED] Gentoo Linux -- gentoo-dev@gentoo.org mailing list
Re: [gentoo-dev] mozilla{-bin}/gecko-sdk masking
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Ned Ludd wrote: On Fri, 2006-06-30 at 19:39 -0500, Jory A. Pratt wrote: As many are aware by now mozilla{-bin} are full of security issues. I will be p.masking them tonight along with gecko-sdk. This is gonna cause some issues with stable tree I am aware of this. As packages break please reference bug http://bugs.gentoo.org/show_bug.cgi?id=137665 If you are able to provide a patch or diff against problem please provide and I or the dev/herd that maintaines will test and apply it as soon as possible. I was left with no option as packages are still being updated in the tree without being ported to seamonkey/firefox. Sorry for any inconvience this may cause you the user, but devs should be held responsible as they have had plenty of time to work out the problems. I've been using seamonkey for a few weeks now without problems and am pleased with it but I don't believe a word you say about having no choice or devs having the option to fix stuff. You always had the option of porting patches. You always have options! You have held back taking the seadonkey out of p.masking till the very last min then forced an un-smooth upgrade path on everybody. Please don't shift the blame on others.. We have ~arch and blockers for stuff like this... Please don't take this as a personal attack... I'm just calling shit as I see it. If this is how ya feel back port the damn patches. I do not have time to back port patches for every security issues that remains. I have fought to keep security from masking it before now. Maybe you would feel better taking over mozilla/seamonkey/gecko-sdk? If all the bug mail over the last week is not enough to move the tree to were it should be already for seamonkey as I have requested, then the responsibility does fall on package maintainer. For those who are unaware just follow all the blockers you will end up at security were there has been comments about back porting patches but you have not seen solar make any mention of who/when will or has the time to do the back porting. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFEpexto9V4dnAHxYwRAqNtAJwI4cvm8ikqRfuIqIRbQWREQ3vM3gCgqUKJ sMcOMi/wKdIpCLCcqWJE5Ic= =XuJa -END PGP SIGNATURE- -- gentoo-dev@gentoo.org mailing list
Re: [gentoo-dev] mozilla{-bin}/gecko-sdk masking
On Fri, 30 Jun 2006 19:39:39 -0500 Jory A. Pratt [EMAIL PROTECTED] wrote: As many are aware by now mozilla{-bin} are full of security issues. I will be p.masking them tonight along with gecko-sdk. This is gonna cause some issues with stable tree I am aware of this. As packages break please reference bug http://bugs.gentoo.org/show_bug.cgi?id=137665 If you are able to provide a patch or diff against problem please provide and I or the dev/herd that maintaines will test and apply it as soon as possible. I was left with no option as packages are still being updated in the tree without being ported to seamonkey/firefox. Sorry for any inconvience this may cause you the user, but devs should be held responsible as they have had plenty of time to work out the problems. Seamonkey doesn't even work on at least one architecture. Please do not mask mozilla until this is fixed. If the security issues are a problem and you do not want to do the backporting work, then please make them available so that other architectures that cannot use Seamonkey at this time can attempt to do something with them. Also as you knew Seamonkey was broken on at least one architecture before you did this, why didn't you attempt to let us know when exactly you were doing this so we could have some working alternative in place? -- Jason Wever Gentoo/Sparc Team Co-Lead signature.asc Description: PGP signature