[arch-general] Which browser to use? [was: Firefox user data autofill doesn't work as before]

[Peter Nabbefeld]

Am 09.03.2017 um 04:49 schrieb Eli Schwartz via arch-general:

On 03/08/2017 10:07 PM, Ralf Mardorf wrote:

Ok I understand, https://aur.archlinux.org/login/ is an insecure web
site, since the issue mentioned by the OP happens with this login.
However, for my taste it's not a problem to select the user name,
but this history problem is an issue for me, as well as the
safebrowsing that gets added, even if you removed it. Some of many
issues, that are reason for me to use other web browsers. Could you
explain what's actually insecure with
https://aur.archlinux.org/login/ ? It's a https page, not a http
page.


I cannot, in fact, explain what is insecure about
https://aur.archlinux.org/login/ but this is probably because it works
perfectly for me...

You are dreaming. Please wake up.


The history once upon a time worked as the history still works for
nearly any other browser. Fortunately there are other browsers we
could chose and a lot of people migrated to other browsers. It's not
an unrelated rant, since the OP dislikes two changes, I try to
explain that many users discontinued using Firefox. By the pulseaudio
thread I already mentioned other firefox based and firefox alike
projects. That web browser developers go different ways in general is
not only an issue for firefox, that's why there's vivaldi ;).


Yes, please let's answer the OP by telling him to find an alternative
browser. Thanks for clearing that up, I was *wondering* what your post
was getting at. :)


However, in regards to security firefox would be the last browser I
would use. Java script settings were removed


[...]


So, I wonder why Firefox is in a "preferred" registry (extra), while 
Opera is in "community" and Vivaldi is in "aur".


As far as I can see, Vivaldi is an Opera clone. I cannot see, how to 
replace Google as a search engine in Opera - what about in Vivaldi?


Kind regards
Peter

Re: [arch-general] Firefox user data autofill doesn't work as before

[Ralf Mardorf]

On Wed, 8 Mar 2017 22:49:27 -0500, Eli Schwartz via arch-general wrote:
>I cannot, in fact, explain what is insecure about
>https://aur.archlinux.org/login/ but this is probably because it works
>perfectly for me...
>
>You are dreaming. Please wake up.

In 7 days the screenshot automatically gets deleted, so you've got 7
days to share the dream:

http://picpaste.com/Screenshot_2017-03-09_05-36-09.png

>[1] Safe Browsing (since renamed to the far more accurate Phishing
>Protection) has *nothing* to do with security[2].

It has to do with security for the user.

1. It addssecurity since users gets warned against evil webpages.
2. It removes security since providing this feature is coupled with
   data mining, spying.

However, I referred to Chrome's security features, not to safe browsing.
If somebody has got no concerns against e.g. Googel's safe browsing,
then why not taking advantage of Chrome's sandboxing?

Re: [arch-general] Firefox user data autofill doesn't work as before

[Eli Schwartz via arch-general]

On 03/08/2017 10:07 PM, Ralf Mardorf wrote:
> Ok I understand, https://aur.archlinux.org/login/ is an insecure web 
> site, since the issue mentioned by the OP happens with this login. 
> However, for my taste it's not a problem to select the user name,
> but this history problem is an issue for me, as well as the
> safebrowsing that gets added, even if you removed it. Some of many
> issues, that are reason for me to use other web browsers. Could you
> explain what's actually insecure with
> https://aur.archlinux.org/login/ ? It's a https page, not a http
> page.

I cannot, in fact, explain what is insecure about
https://aur.archlinux.org/login/ but this is probably because it works
perfectly for me...

You are dreaming. Please wake up.

> The history once upon a time worked as the history still works for 
> nearly any other browser. Fortunately there are other browsers we
> could chose and a lot of people migrated to other browsers. It's not
> an unrelated rant, since the OP dislikes two changes, I try to
> explain that many users discontinued using Firefox. By the pulseaudio
> thread I already mentioned other firefox based and firefox alike
> projects. That web browser developers go different ways in general is
> not only an issue for firefox, that's why there's vivaldi ;).

Yes, please let's answer the OP by telling him to find an alternative
browser. Thanks for clearing that up, I was *wondering* what your post
was getting at. :)

> However, in regards to security firefox would be the last browser I 
> would use. Java script settings were removed

Isn't that what NoScript is for? Sorry, I don't really understand this
tangential issue since I kind of like Javascript (at least in the sense
that I like pages looking the way they are supposed to, and the really
offensive sites I don't even visit anyway...)

Also, apparently Internet Explorer has moved up in the world! :p
(I assume you aren't just going to compare Firefox to the webkit-based
family of clones, this at least gets us three options to quibble over.)

> and since they by default anyway use google's safe browsing, users at
> least should consider to use the security advantages of chrome. Btw.
> for some tasks I'm still using firefox, but security isn't one of
> those tasks.

Well, clearly if Firefox uses Google's Phishing Protection[1] then that
proves Google Chrome is far more secure, so I guess that settles it.

Sorry for talking. And even more sorry for using such a clearly inferior
(from a security perspective) web browser.

But really, you should have said so in the first place, instead of
wasting our time discussing silly things like the "abstruse behaviour"
of the featureset of such an insecure browser.
.
/s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s
/s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s
/s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s /s


[1] Safe Browsing (since renamed to the far more accurate Phishing
Protection) has *nothing* to do with security[2].

[2] Certainly not for Firefox, anyway.

-- 
Eli Schwartz



signature.asc
Description: OpenPGP digital signature

Re: [arch-general] Firefox user data autofill doesn't work as before

[Ralf Mardorf]

On Wed, 8 Mar 2017 19:46:49 -0500, Eli Schwartz via arch-general wrote:
>On 03/08/2017 04:20 PM, Ralf Mardorf wrote:
>> On Wed, 8 Mar 2017 21:40:37 +0100, Peter Nabbefeld wrote:  
>>> before latest update, firefox filled my login credentials
>>> automatically into the appropriate fields. Now I've first to select
>>> the user in a dropdown list - how can I revert this behaviour?  
>> 
>> During the years Firefox made that much steps into the wrong
>> direction, that I'm surprised that a user still cares that much about
>> new issues introduced by a Firefox update.
>> 
>> One of the most worse steps IMO was the step that after selecting a
>> link in the history, the cursor in the history does lose focus. IOW
>> if you searched an hour to find a segment with several wanted links,
>> after clicking one link, the selection gets lost and you need to
>> search again. I'm not aware of any other browser with this abstruse
>> behaviour.
>> 
>> Many other users dislike that they need to check about:config against
>> google safebrowsing spyware again and again.  
>
>Did you just post here to make a completely unrelated rant, or what?
>
>You may not have realized this change is a positive security
>enhancement, as Stephan Fischer posted

Ok I understand, https://aur.archlinux.org/login/ is an insecure web
site, since the issue mentioned by the OP happens with this login.
However, for my taste it's not a problem to select the user name, but
this history problem is an issue for me, as well as the safebrowsing
that gets added, even if you removed it. Some of many issues, that
are reason for me to use other web browsers. Could you explain what's
actually insecure with https://aur.archlinux.org/login/ ? It's a https
page, not a http page.

The history once upon a time worked as the history still works for
nearly any other browser. Fortunately there are other browsers we could
chose and a lot of people migrated to other browsers. It's not an
unrelated rant, since the OP dislikes two changes, I try to explain
that many users discontinued using Firefox. By the pulseaudio thread I
already mentioned other firefox based and firefox alike projects. That
web browser developers go different ways in general is not only an
issue for firefox, that's why there's vivaldi ;).

However, in regards to security firefox would be the last browser I
would use. Java script settings were removed and since they by default
anyway use google's safe browsing, users at least should consider to use
the security advantages of chrome. Btw. for some tasks I'm still using
firefox, but security isn't one of those tasks.

Re: [arch-general] Firefox user data autofill doesn't work as before

[Eli Schwartz via arch-general]

On 03/08/2017 04:20 PM, Ralf Mardorf wrote:
> On Wed, 8 Mar 2017 21:40:37 +0100, Peter Nabbefeld wrote:
>> before latest update, firefox filled my login credentials
>> automatically into the appropriate fields. Now I've first to select
>> the user in a dropdown list - how can I revert this behaviour?
> 
> During the years Firefox made that much steps into the wrong
> direction, that I'm surprised that a user still cares that much about
> new issues introduced by a Firefox update.
> 
> One of the most worse steps IMO was the step that after selecting a
> link in the history, the cursor in the history does lose focus. IOW if
> you searched an hour to find a segment with several wanted links, after
> clicking one link, the selection gets lost and you need to search
> again. I'm not aware of any other browser with this abstruse behaviour.
> 
> Many other users dislike that they need to check about:config against
> google safebrowsing spyware again and again.

Did you just post here to make a completely unrelated rant, or what?

You may not have realized this change is a positive security
enhancement, as Stephan Fischer posted about it mere minutes before you,
but, really, you were clearly not even trying to be helpful at all.

...

Also, I am not really sure what your complaint about the History is,
generally I *want* to go to the link I clicked in the foreground... but
okay, switch back to the History window if you really need to.

If you really wanted to complain about something, maybe you should
complain about the fact that the History only "remembers" the last time
you visited a link... i.e. right "now", when you clicked on it in the
History window.

So maybe brush up on your effective-complaining skills, in addition to
your relevancy skills...

-- 
Eli Schwartz



signature.asc
Description: OpenPGP digital signature

Re: [arch-general] How to "decorate" a package build?

[Eli Schwartz via arch-general]

On 03/08/2017 03:34 PM, Peter Nabbefeld wrote:
> Yes, I already wondered about this when looking at the PKGBUIL source 
> file, because it seemed a decision has been made against it, but the 
> subject is "How to "decorate" a package build?" - firefox has only been 
> a package which has been discussed before.
> 
> So, the most important result for me is, I've learned some interesting 
> details about the package system.

And the answer is, you're not the first person to want something like that:
- customizepkg provides a framework for applying differences to packages
- yaourt is capable of autodetecting a repo package that has a
  customizepkg configuration, and building that package from source
  instead of syncing the prebuilt package.

-- 
Eli Schwartz



signature.asc
Description: OpenPGP digital signature

Re: [arch-general] Firefox user data autofill doesn't work as before

[Ralf Mardorf]

On Wed, 8 Mar 2017 21:40:37 +0100, Peter Nabbefeld wrote:
>before latest update, firefox filled my login credentials
>automatically into the appropriate fields. Now I've first to select
>the user in a dropdown list - how can I revert this behaviour?

During the years Firefox made that much steps into the wrong
direction, that I'm surprised that a user still cares that much about
new issues introduced by a Firefox update.

One of the most worse steps IMO was the step that after selecting a
link in the history, the cursor in the history does lose focus. IOW if
you searched an hour to find a segment with several wanted links, after
clicking one link, the selection gets lost and you need to search
again. I'm not aware of any other browser with this abstruse behaviour.

Many other users dislike that they need to check about:config against
google safebrowsing spyware again and again.

Re: [arch-general] Firefox user data autofill doesn't work as before

[Stephan Fischer]

Hey,

according to the Firefox 52 changelog [0] this only happens on
"non-secure HTTP pages with logins". It's a feature and AFAIK there's no
function to disable that.

[0] https://www.mozilla.org/en-US/firefox/52.0/releasenotes/

-- Stephan


Am 08.03.2017 um 21:40 schrieb Peter Nabbefeld:
>
> Hello,
>
> before latest update, firefox filled my login credentials
> automatically into the appropriate fields. Now I've first to select
> the user in a dropdown list - how can I revert this behaviour?
>
> Kind regards
> Peter




signature.asc
Description: OpenPGP digital signature

Re: [arch-general] [arch-dev-public] AUR ToS (aka making AUR user names public)

[Leonid Isaev]

On Wed, Mar 08, 2017 at 09:02:24PM +0100, Neven Sajko via arch-general wrote:
> ... But there probably should be some TOS ...

Why? Would a ToS be a legally binding document? If yes, it will constrain Arch,
which is not good. If no, then it's just a meaningless text. I understand that
companies have ToS because they want to cover their back legally, but Arch is
different in this regard...

Cheers,
-- 
Leonid Isaev

[arch-general] Firefox user data autofill doesn't work as before

[Peter Nabbefeld]

Hello,

before latest update, firefox filled my login credentials automatically 
into the appropriate fields. Now I've first to select the user in a 
dropdown list - how can I revert this behaviour?


Kind regards
Peter

Re: [arch-general] [arch-dev-public] AUR ToS (aka making AUR user names public)

[Joakim Hernberg]

On Wed, 8 Mar 2017 21:02:24 +0100
Neven Sajko via arch-general  wrote:

> On 8 March 2017 at 20:57, Neven Sajko  wrote:
> > This discussion is pointless without legal advice. Without it
> > disclosing user information (even if it is public) does not seem
> > like such a good idea.  
> 
> Not that I advocate paying a lawyer just for this issue, it would be
> simpler to let her scrape AUR ;)
> 
> ... But there probably should be some TOS ...


IMO, why are we even discussing this.  If she wants to do research, do
it, set it up and scrape.  Why should we compile a list and send
it..? :S

-- 

   Joakim

Re: [arch-general] How to "decorate" a package build?

[Peter Nabbefeld]

Am 08.03.2017 um 15:34 schrieb Doug Newgard:

On Wed, 8 Mar 2017 12:48:14 +0100
Peter Nabbefeld  wrote:


Thank You, I'll try that!

Regards
P.


You do realize that firefox is now built with alsa support in the repos, right?

Yes, I already wondered about this when looking at the PKGBUIL source 
file, because it seemed a decision has been made against it, but the 
subject is "How to "decorate" a package build?" - firefox has only been 
a package which has been discussed before.


So, the most important result for me is, I've learned some interesting 
details about the package system.


Kind regards
Peter

Re: [arch-general] [arch-dev-public] AUR ToS (aka making AUR user names public)

[Neven Sajko via arch-general]

On 8 March 2017 at 20:57, Neven Sajko  wrote:
> This discussion is pointless without legal advice. Without it
> disclosing user information (even if it is public) does not seem like
> such a good idea.

Not that I advocate paying a lawyer just for this issue, it would be
simpler to let her scrape AUR ;)

... But there probably should be some TOS ...

Re: [arch-general] [arch-dev-public] AUR ToS (aka making AUR user names public)

[Neven Sajko via arch-general]

This discussion is pointless without legal advice. Without it
disclosing user information (even if it is public) does not seem like
such a good idea.

Re: [arch-general] What's the best way of packaging golang packages?

[Pierre Neidhardt via arch-general]

On 17-03-09 00:13:59, Iru Cai via arch-general wrote:
> Go programs are compiled to a single binary that do not link
> to other go libraries, so they doesn't depend on other go packages.

You answered your question here, haven't you?

> I'm also confused when I see node.js packages. I see many of the packages
> are built using just an `npm install' so the packaging process will pull a
> lot of code, but I think it's better than that in go because the node.js
> packages are installed in the user home so that it won't be installed again
> when another node.js package needs the same dependency.

Are you saying that building a go program should re-use user-installed go 
packages?

Does https://wiki.archlinux.org/index.php/Go_package_guidelines answer your 
question?

--
Pierre Neidhardt

[arch-general] What's the best way of packaging golang packages?

[Iru Cai via arch-general]

Hi,

I'm not familiar with go, but I'm trying to use some go programs, caddy for
example. I read the PKGBUILD of it. It first use `go get' to get the
dependencies and then do the `go build'.

However, I don't think it a good practice. I'm used to the way of
installing the dependency packages first, then install the target package.
Python packages are packaged this way. On the other hand, go packages has
its features. Go programs are compiled to a single binary that do not link
to other go libraries, so they doesn't depend on other go packages.

I also read the Debian Go Packaging document (
https://pkg-go.alioth.debian.org/packaging.html), but I still don't know
when and why we need to make a go package.

I'm also confused when I see node.js packages. I see many of the packages
are built using just an `npm install' so the packaging process will pull a
lot of code, but I think it's better than that in go because the node.js
packages are installed in the user home so that it won't be installed again
when another node.js package needs the same dependency.

Thanks,
Iru

-- 
Please do not send me Microsoft Office/Apple iWork documents. Send
OpenDocument instead! http://fsf.org/campaigns/opendocument/

Re: [arch-general] hcidump is missing?

[Doug Newgard]

On Wed, 08 Mar 2017 15:19:33 +
Алексей Трофимов via arch-general  wrote:

> I try to dump bluetooth traffic to find audio codecs my wireless headphones
> support --
> http://askubuntu.com/questions/425333/how-to-make-aptx-capable-bluetooth-equipment-work-with-ubuntu
> 
> But it looks like I have no hcidump installed.
> 
> command-not-found says:
> 
> hcidump may be found in the following packages:
>   extra/bluez-utils 5.42-1 /usr/bin/hcidump
> 
> I have `bluez-utils` installed.
> 
> Checking https://www.archlinux.org/packages/extra/x86_64/bluez-utils/ I see
> that it provides `bluez-hcidump`, but no bluez-utils is file list?
> 
> Was it renamed? Deprecated? What should I use then?

http://git.kernel.org/cgit/bluetooth/bluez.git/commit/?id=b1eb2c4cd057624312e0412f6c4be000f7fc3617

Re: [arch-general] hcidump is missing?

[Guus Snijders via arch-general]

2017-03-08 16:19 GMT+01:00 Алексей Трофимов via arch-general
:
> I try to dump bluetooth traffic to find audio codecs my wireless headphones
> support --
> http://askubuntu.com/questions/425333/how-to-make-aptx-capable-bluetooth-equipment-work-with-ubuntu
>
> But it looks like I have no hcidump installed.

It looks like hcidump is no longer supported:
http://git.kernel.org/cgit/bluetooth/bluez.git/commit/?id=b1eb2c4cd057624312e0412f6c4be000f7fc3617


build: Hide deprecated tools under --enable-deprecated
This marks the following tools as deprecated as they are not longer
maintained or have been replaced by other tools: hciattach hciconfig
hcitool hcidump rfcomm sdptool ciptool gatttool


Though it is not very clear what can be used instead.

Otoh; perhaps if you rebuild the PKG with the appropriate flags you
can get it back.


mvg,
   Guus Snijders

[arch-general] hcidump is missing?

[Алексей Трофимов via arch-general]

I try to dump bluetooth traffic to find audio codecs my wireless headphones
support --
http://askubuntu.com/questions/425333/how-to-make-aptx-capable-bluetooth-equipment-work-with-ubuntu

But it looks like I have no hcidump installed.

command-not-found says:

hcidump may be found in the following packages:
  extra/bluez-utils 5.42-1 /usr/bin/hcidump

I have `bluez-utils` installed.

Checking https://www.archlinux.org/packages/extra/x86_64/bluez-utils/ I see
that it provides `bluez-hcidump`, but no bluez-utils is file list?

Was it renamed? Deprecated? What should I use then?

Re: [arch-general] How to "decorate" a package build?

[Doug Newgard]

On Wed, 8 Mar 2017 12:48:14 +0100
Peter Nabbefeld  wrote:

> Thank You, I'll try that!
> 
> Regards
> P.

You do realize that firefox is now built with alsa support in the repos, right?

Re: [arch-general] How to "decorate" a package build?

[Ralf Mardorf]

On Wed, 8 Mar 2017 12:30:25 +0100, ProgAndy wrote:
>Ralf has a good idea, I would change it a bit and do it like this:
>
>#!/bin/bash
># 1) set pacman to ignore firefox upgrades
># 2) perform normal pacman upgrade
>sudo pacman -Syu
># 3) continue this script
>
># pacman should still recognize that firefox is out of date even if
>the update is disabled
>if [ pacman -Qu firefox ]; then
>   # download PKGBUILD from abs
>   # patch PKGBUILD
>   # build
>   # install
>fi

There are several ways to write a wrapper, but indeed the first thing
before building firefox is to upgrade.

Anyway, all solutions to automatically build firefox are IMO not worth
the effort, since "apulse-git" does the job.

If it shouldn't work for the OP, it might be easy to fix.
Assuming troubleshooting should be required, I would start with running

  $ aplay -l | grep "card 0"

and

  $ cat /etc/modprobe.d/*alsa*

Regards,
Ralf

Re: [arch-general] How to "decorate" a package build?

[Eli Schwartz via arch-general]

On 03/08/2017 06:04 AM, Peter Nabbefeld wrote:
> I've found out I could probably use PreTransaction-Hooks, but I cannot 
> see, when exactly the hook is executed: before download, after download, 
> or after unpacking.

This makes no sense, hooks are part of a transaction and by definition
cannot override part of that transaction...

Use https://aur.archlinux.org/packages/asp-git/
Checkout a git clone of the official Firefox package, apply a custom
change to the PKGBUILD, and whenever the package is updated, rebase your
changes onto the official version then rebuild it.

Or use customizepkg, which yaourt will automatically use to override
repo packages when an override exists (and build that repo package via
the ABS with customizepkg instead).

-- 
Eli Schwartz



signature.asc
Description: OpenPGP digital signature

Re: [arch-general] How to "decorate" a package build?

[Peter Nabbefeld]

Am 08.03.2017 um 12:30 schrieb ProgAndy:

Am 08.03.2017 um 12:20 schrieb Peter Nabbefeld:

Thank You! However, while one part is about Firefox, the other is
about changing builds while still getting the signalling for new
builds from pacman.

One possibility seems to use Hooks, while I'm not yet sure how to use
them correctly.

Regards
P.


Hooks don't work too well if you want to modify a package. Ralf has a
good idea, I would change it a bit and do it like this:


#!/bin/bash
# 1) set pacman to ignore firefox upgrades
# 2) perform normal pacman upgrade
sudo pacman -Syu
# 3) continue this script

# pacman should still recognize that firefox is out of date even if the
update is disabled
if [ pacman -Qu firefox ]; then
  # download PKGBUILD from abs
  # patch PKGBUILD
  # build
  # install
fi


--

A.


Thank You, I'll try that!

Regards
P.

Re: [arch-general] How to "decorate" a package build?

[Mike Cloaked via arch-general]

On Wed, Mar 8, 2017 at 10:55 AM, ProgAndy  wrote:

> Am 08.03.2017 um 11:45 schrieb Peter Nabbefeld:
>
>>
>> Hello,
>>
>> is it possible to decorate a package build, i.e. set some prconditions
>> (like exporting variables) and probably even change the build process
>> (compile instead of copying just the binaries)?
>> .
>>
>
> Hello,
>
>
> That is impossible with pacman.
>
> What you can do is create a local repository that is included in the
> automatic pacman upgrade. Then write a shell script that checks for updates
> of the arch package, merges it with your local changes, build it and add it
> to the repository. You should change the package name with e.g. a prefix or
> suffix and add the original package as a conflict to make it work properly.
> Now your custom version is available for the next pacman upgrade.
>

You can also use the PKGBUILD to change the name of the package you build
and make your own version which you can customise or alter as you wish for
the build process. For example build it as package called say ff (pkgname=ff
) instead of firefox, and then run it in parallel to the official build. So
long users know to run ff instead of the stock version I can't see a
problem with that?


-- 
mike c

Re: [arch-general] How to "decorate" a package build?

[ProgAndy]

Am 08.03.2017 um 12:20 schrieb Peter Nabbefeld:
Thank You! However, while one part is about Firefox, the other is 
about changing builds while still getting the signalling for new 
builds from pacman.


One possibility seems to use Hooks, while I'm not yet sure how to use 
them correctly.


Regards
P.


Hooks don't work too well if you want to modify a package. Ralf has a 
good idea, I would change it a bit and do it like this:



#!/bin/bash
# 1) set pacman to ignore firefox upgrades
# 2) perform normal pacman upgrade
sudo pacman -Syu
# 3) continue this script

# pacman should still recognize that firefox is out of date even if the 
update is disabled

if [ pacman -Qu firefox ]; then
  # download PKGBUILD from abs
  # patch PKGBUILD
  # build
  # install
fi


--

A.

Re: [arch-general] How to "decorate" a package build?

[Peter Nabbefeld]

Am 08.03.2017 um 12:02 schrieb Ralf Mardorf:

On Wed, 8 Mar 2017 11:45:37 +0100, Peter Nabbefeld wrote:

is it possible to decorate a package build, i.e. set some prconditions
(like exporting variables) and probably even change the build process
(compile instead of copying just the binaries)?

E.g., to modify the firefox package update to first compile with
"--enable-alsa". Of course, I would have to create my own package in a
private repository. The new PKGBUILD file would need to refer the
original one, to get e.g. the package version number. However, the
private package would always have the same version, so the official
package change needs to be hooked to the generic private package:

Official Package Changed --«Signal»--> Private Package Update
--«Inherits»--> Official Package Update


This isn't worth the effort, however...

1. disable updating the firefox package:

/etc/pacman.conf
IgnorePkg   = firefox

2. write a wrapper for pacman that first compares the installed
   version, with the version provided by the repositories

pacman -Q firefox | cut -d\  -f2
pacman -Si firefox | grep Version | cut -d: -f2

3. use the sed command, so that the wrapper could edit the version
   mentioned by your PKGBUILD

4. let the wrapper build and install your package

5. let the wrapper run a regular "pacman" with $@ options

IMO it's easier to use apulse-git and if you should use freedesktop.org
menus, to edit a desktop file to launch "apulse firefox" by a sript.

Regards,
Ralf

Thank You! However, while one part is about Firefox, the other is about 
changing builds while still getting the signalling for new builds from 
pacman.


One possibility seems to use Hooks, while I'm not yet sure how to use 
them correctly.


Regards
P.

Re: [arch-general] How to "decorate" a package build?

[Ralf Mardorf]

PS:

>This isn't worth the effort, however...
>
>1. disable updating the firefox package:
>
>/etc/pacman.conf
>IgnorePkg   = firefox
>
>2. write a wrapper for pacman that first compares the installed
>   version, with the version provided by the repositories
>
>pacman -Q firefox | cut -d\  -f2
>pacman -Si firefox | grep Version | cut -d: -f2
>
>3. use the sed command, so that the wrapper could edit the version
>   mentioned by your PKGBUILD  

A better idea would be to get the official PKGBUILD by coping it from
ABS and then to add

ac_add_options --enable-alsa

maybe behind

ac_add_options --prefix=/usr

since the prefix unlikely will change.

>4. let the wrapper build and install your package
>
>5. let the wrapper run a regular "pacman" with $@ options
>
>IMO it's easier to use apulse-git and if you should use freedesktop.org
>menus, to edit a desktop file to launch "apulse firefox" by a sript.

Re: [arch-general] How to "decorate" a package build?

[Peter Nabbefeld]

Am 08.03.2017 um 11:55 schrieb ProgAndy:

Am 08.03.2017 um 11:45 schrieb Peter Nabbefeld:


Hello,

is it possible to decorate a package build, i.e. set some prconditions
(like exporting variables) and probably even change the build process
(compile instead of copying just the binaries)?

E.g., to modify the firefox package update to first compile with
"--enable-alsa". Of course, I would have to create my own package in a
private repository. The new PKGBUILD file would need to refer the
original one, to get e.g. the package version number. However, the
private package would always have the same version, so the official
package change needs to be hooked to the generic private package:

Official Package Changed --«Signal»--> Private Package Update
--«Inherits»--> Official Package Update

Kind regards
P.


Hello,


That is impossible with pacman.

What you can do is create a local repository that is included in the
automatic pacman upgrade. Then write a shell script that checks for
updates of the arch package, merges it with your local changes, build it
and add it to the repository. You should change the package name with
e.g. a prefix or suffix and add the original package as a conflict to
make it work properly. Now your custom version is available for the next
pacman upgrade.


--

A.



I've found out I could probably use PreTransaction-Hooks, but I cannot 
see, when exactly the hook is executed: before download, after download, 
or after unpacking.


Regards
P.

Re: [arch-general] How to "decorate" a package build?

[Ralf Mardorf]

On Wed, 8 Mar 2017 11:45:37 +0100, Peter Nabbefeld wrote:
>is it possible to decorate a package build, i.e. set some prconditions 
>(like exporting variables) and probably even change the build process 
>(compile instead of copying just the binaries)?
>
>E.g., to modify the firefox package update to first compile with 
>"--enable-alsa". Of course, I would have to create my own package in a 
>private repository. The new PKGBUILD file would need to refer the 
>original one, to get e.g. the package version number. However, the 
>private package would always have the same version, so the official 
>package change needs to be hooked to the generic private package:
>
>Official Package Changed --«Signal»--> Private Package Update
>--«Inherits»--> Official Package Update

This isn't worth the effort, however...

1. disable updating the firefox package:

/etc/pacman.conf
IgnorePkg   = firefox

2. write a wrapper for pacman that first compares the installed
   version, with the version provided by the repositories

pacman -Q firefox | cut -d\  -f2
pacman -Si firefox | grep Version | cut -d: -f2

3. use the sed command, so that the wrapper could edit the version
   mentioned by your PKGBUILD

4. let the wrapper build and install your package

5. let the wrapper run a regular "pacman" with $@ options

IMO it's easier to use apulse-git and if you should use freedesktop.org
menus, to edit a desktop file to launch "apulse firefox" by a sript.

Regards,
Ralf

Re: [arch-general] How to "decorate" a package build?

[ProgAndy]

Am 08.03.2017 um 11:45 schrieb Peter Nabbefeld:


Hello,

is it possible to decorate a package build, i.e. set some prconditions 
(like exporting variables) and probably even change the build process 
(compile instead of copying just the binaries)?


E.g., to modify the firefox package update to first compile with 
"--enable-alsa". Of course, I would have to create my own package in a 
private repository. The new PKGBUILD file would need to refer the 
original one, to get e.g. the package version number. However, the 
private package would always have the same version, so the official 
package change needs to be hooked to the generic private package:


Official Package Changed --«Signal»--> Private Package Update
--«Inherits»--> Official Package Update

Kind regards
P.


Hello,


That is impossible with pacman.

What you can do is create a local repository that is included in the 
automatic pacman upgrade. Then write a shell script that checks for 
updates of the arch package, merges it with your local changes, build it 
and add it to the repository. You should change the package name with 
e.g. a prefix or suffix and add the original package as a conflict to 
make it work properly. Now your custom version is available for the next 
pacman upgrade.



--

A.

[arch-general] How to "decorate" a package build?

[Peter Nabbefeld]

Hello,

is it possible to decorate a package build, i.e. set some prconditions 
(like exporting variables) and probably even change the build process 
(compile instead of copying just the binaries)?


E.g., to modify the firefox package update to first compile with 
"--enable-alsa". Of course, I would have to create my own package in a 
private repository. The new PKGBUILD file would need to refer the 
original one, to get e.g. the package version number. However, the 
private package would always have the same version, so the official 
package change needs to be hooked to the generic private package:


Official Package Changed --«Signal»--> Private Package Update
--«Inherits»--> Official Package Update

Kind regards
P.

Re: [arch-general] Linux LTS 4.4 continued or 4.9 coming soon?

[Paul Lee via arch-general]

The problem I'm having with 4.9 so far is that I'm running an Arch in a
VirtualBox guest on Windows and after upgrading to 4.9, the VirtualBox
guest additions couldn't compile (for both linux and linux-lts).

On Thu, Mar 2, 2017 at 1:32 AM, Barry Fishman  wrote:

>
> On 2017-03-01 19:48:17 +08, Robert Wong via arch-general wrote:
> > Is 4.9-lts still buggy!? I've banned the kernel update for a while and
> > I'm considering to update it...
>
> I've had problems with the usb-dvb subsystem (TV Cards) not working
> after the 4.9 update due to security changes.  I'm not using the LTS
> kernel but instead stopped my regular kernel updates at 4.8.13-1 until
> it is fixed. (So far Debian Sid's 4.9.13 is still broken.)
>
> --
> Barry Fishman
>