Re: Base Packaging in 11
I have been experimenting with this, and have successfully packaged base. I figured out that make packages would do that. http://skynet.desktopbsd.net/packages/ I have been unable to figure out how to package the kernel yet. Is it possible at this stage to do that with another command, or is it something that will be added later? I would love to be an early tester, and help out with this effort. Joe Maloney > On Dec 18, 2015, at 8:05 PM, Baptiste Daroussin wrote: > > On Fri, Dec 18, 2015 at 03:21:13PM -0800, Roger Marquis wrote: >> Forwarding this from freebsd-security in case anyone here can update us >> regarding the status of base packaging or has URLs for projects/release-pkg. >> >> Roger >> > Packaging base is happening here: > https://svnweb.freebsd.org/base/projects/release-pkg/ > > It is mostly stalled for month due to lack of time working on it. > The TODO list is mostly: > - implement priotity in plist for pkg to ensure the ordre files will be > replaced > - finishing flexible dependencies and use it by default in pkg > - tracking down all issues from installworld that results files not installed > by > install(1) and files installed twice > > In my opinion it should not be made the default mechanism for 11.0-RELEASE if > we > are not able to provide our first packages for testing by the end of january > to > leave enough time for testing and fixes before the release. > > While I was pretty confident few month ago, things has changed since and I > cannot spend the necessary time on it for various reasons. > > Best regards, > Bapt ___ freebsd-current@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to "freebsd-current-unsubscr...@freebsd.org"
Re: Base Packaging in 11
On Fri, Dec 18, 2015 at 03:21:13PM -0800, Roger Marquis wrote: > Forwarding this from freebsd-security in case anyone here can update us > regarding the status of base packaging or has URLs for projects/release-pkg. > > Roger > Packaging base is happening here: https://svnweb.freebsd.org/base/projects/release-pkg/ It is mostly stalled for month due to lack of time working on it. The TODO list is mostly: - implement priotity in plist for pkg to ensure the ordre files will be replaced - finishing flexible dependencies and use it by default in pkg - tracking down all issues from installworld that results files not installed by install(1) and files installed twice In my opinion it should not be made the default mechanism for 11.0-RELEASE if we are not able to provide our first packages for testing by the end of january to leave enough time for testing and fixes before the release. While I was pretty confident few month ago, things has changed since and I cannot spend the necessary time on it for various reasons. Best regards, Bapt signature.asc Description: PGP signature
Re: Base Packaging in 11
On 2015-12-18 18:21, Roger Marquis wrote: >> > The plan is for 11 to have a fully packaged base system. There should >> > be some information in developer summit reports on the wiki. The code >> > is in projects/release-pkg. >> I have mostly complete code to make openssl in base 'private', it just needs more testing. It has survived a make universe though. I even have the patches to make pkg support it (since pkg needs openssl, but cannot depend on openssl from ports) upstreamed already. I'll try to get it caught up to -current and posted this weekend. -- Allan Jude signature.asc Description: OpenPGP digital signature
Re: Base Packaging in 11
On Fri, Dec 18, 2015 at 03:21:13PM -0800, Roger Marquis wrote: > Forwarding this from freebsd-security in case anyone here can update us > regarding the status of base packaging or has URLs for projects/release-pkg. > > Roger This is from the conversation Baptiste and I had over IRC a few days (or a week or so) ago: 11:10 < lattera> bapt: how's work on pkg base going? 12:30 <@bapt> lattera: stalled 12:31 < lattera> bapt: :( what can I do to help it progress? 12:31 <@bapt> lattera: no idea :) 12:31 < lattera> bapt: what's left to be done? 12:33 <@bapt> lattera: lots of changes in pkg itself I asked if it'd make it for 11.0-RELEASE, but he didn't respond. I'm CC'ing him onto this email thread. Thanks, -- Shawn Webb HardenedBSD GPG Key ID: 0x6A84658F52456EEE GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89 3D9E 6A84 658F 5245 6EEE signature.asc Description: PGP signature
Base Packaging in 11
Forwarding this from freebsd-security in case anyone here can update us regarding the status of base packaging or has URLs for projects/release-pkg. Roger Date: Fri, 18 Dec 2015 14:21:04 -0800 (PST) To: freebsd-secur...@freebsd.org Subject: Re: [OpenSSL] /etc/ssl/cert.pem not honoured by default rhi wrote: Until now, I have avoided installing the OpenSSL port because the base OpenSSL gets security updates via freebsd-update and so it's one thing less to care about... also, I don't like the idea of having two different versions of the same thing on the system A fair number of sites have this issue, particularly with ssl and ssh binaries. IME this one of FreeBSD's more longstanding administrative and security weaknesses. It is paricularly painful for those of us who have to support a release for several years (after the last base update). Or is it recommended to let ports use the port OpenSSL, so that base OpenSSL is only used for the system itself? If you need the most recent ciphers and protocols you'll normally need to use the port. Features are backported from the (higher) port version to the base version i.e., without bumping the version string, however, it's not clear whether all applications can take advantage of them. Matthew Seaman wrote: There are plans to make many of the base system shlibs private and that includes switching the ports to use openssl from ports, but I don't think any changes along those lines are really imminent. Are you Sure? 3 months ago DES thought they'd be ready for 11: > The plan is for 11 to have a fully packaged base system. There should > be some information in developer summit reports on the wiki. The code > is in projects/release-pkg. However I don't see a projects/release-pkg dir in -CURRENT. Any recommendations as to how we might help this particular effort? ___ freebsd-current@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-current To unsubscribe, send any mail to "freebsd-current-unsubscr...@freebsd.org"