FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > ArchLinux > ArchLinux Development

 
 
LinkBack Thread Tools
 
Old 03-30-2010, 01:36 AM
Pierre Schmitz
 
Default openssl 1.0 rebuild

Hi all,

I created a rebuld list for the just released openssl 1.0.0 (Thanks Dan
for fixing the todo list that fast!). These are 236 packages for each
architecture; so this will need some kind of planning and a bunch of people
to help. But for now I'll at least wait for the Gnome and KDE release and
also Allan's heimdal rebuilds.

Fedora uses openssl 1 since Fedora 12 which means if there are any issues
we'll probably find a solution there. Till then I just need to port the man
page patch (easy) and see why it compiles with -DOPENSSL_IA32_SSE2 on
x86_64 and if that is an issue at all.

Pierre

--
Pierre Schmitz, https://users.archlinux.de/~pierre
 
Old 03-30-2010, 01:45 AM
"Allan McRae"
 
Default openssl 1.0 rebuild

On 30/03/10 11:36, Pierre Schmitz wrote:

Hi all,

I created a rebuld list for the just released openssl 1.0.0 (Thanks Dan
for fixing the todo list that fast!). These are 236 packages for each
architecture; so this will need some kind of planning and a bunch of people
to help. But for now I'll at least wait for the Gnome and KDE release and
also Allan's heimdal rebuilds.


Nice big list of essential packages there... this looks fun!

Any interest in just combining the heimdal rebuilds? They do overlap a
lot but heimdal is quite a small rebuild this time so I think it can be
finished fast (once GNOME is finished).


Allan
 
Old 03-31-2010, 11:27 PM
Allan McRae
 
Default openssl 1.0 rebuild

On 30/03/10 11:45, Allan McRae wrote:

On 30/03/10 11:36, Pierre Schmitz wrote:

Hi all,

I created a rebuld list for the just released openssl 1.0.0 (Thanks Dan
for fixing the todo list that fast!). These are 236 packages for each
architecture; so this will need some kind of planning and a bunch of
people
to help. But for now I'll at least wait for the Gnome and KDE release and
also Allan's heimdal rebuilds.


Nice big list of essential packages there... this looks fun!

Any interest in just combining the heimdal rebuilds? They do overlap a
lot but heimdal is quite a small rebuild this time so I think it can be
finished fast (once GNOME is finished).


Ping Pierre! I will do the initial heimdal rebuilds today if these
rebuilds will be done separately.


Allan
 
Old 03-31-2010, 11:32 PM
Pierre Schmitz
 
Default openssl 1.0 rebuild

On Thu, 01 Apr 2010 09:27:53 +1000, Allan McRae <allan@archlinux.org>
wrote:
> On 30/03/10 11:45, Allan McRae wrote:
>> On 30/03/10 11:36, Pierre Schmitz wrote:
>>> Hi all,
>>>
>>> I created a rebuld list for the just released openssl 1.0.0 (Thanks
Dan
>>> for fixing the todo list that fast!). These are 236 packages for each
>>> architecture; so this will need some kind of planning and a bunch of
>>> people
>>> to help. But for now I'll at least wait for the Gnome and KDE release
>>> and
>>> also Allan's heimdal rebuilds.
>>
>> Nice big list of essential packages there... this looks fun!
>>
>> Any interest in just combining the heimdal rebuilds? They do overlap a
>> lot but heimdal is quite a small rebuild this time so I think it can be
>> finished fast (once GNOME is finished).
>
> Ping Pierre! I will do the initial heimdal rebuilds today if these
> rebuilds will be done separately.
>
> Allan

I was just working on it. I think we can combine both rebuilds. The build
order should be:
openssl
heimdal
<everything else from [core]>
<[extra]>
<[community]>

I think once we have rebuild [core] we can post a warning to
arch-dev-public, push those packages to testing and ask everybody to help
rebuilding.

PS: Ping me on jabber if you are online atm.

--
Pierre Schmitz, https://users.archlinux.de/~pierre
 
Old 04-01-2010, 02:54 AM
Pierre Schmitz
 
Default openssl 1.0 rebuild

I have rebuild all core and some other packages. It's now time for
everybody to join the rebuild party. We rebuild heimdal and openssl at
once. See https://dev.archlinux.org/todo/30/ and
https://dev.archlinux.org/todo/32/

If you rebuild packages you should build bottom-up; means rebuild the deps
of a package first. It's probably best to join our irc channel to
communicate which packages you are about to rebuild. If something doesn't
build you might find patches at
http://cvs.fedoraproject.org/viewvc/rpms/$pkgname

And please avoid using versioned deps.

Btw: I think we have a problem with the pacman update. Am I right that a
-Syu will update pacman first without loading openssl which will result in
a broken pacman? This might probably the only valid usage of a versiond
dep. If that's true we might consider to keep openssl in tar.gz, too.

Happy building,

Pierre

--
Pierre Schmitz, https://users.archlinux.de/~pierre
 
Old 04-01-2010, 02:57 AM
Daenyth Blank
 
Default openssl 1.0 rebuild

On Wed, Mar 31, 2010 at 22:54, Pierre Schmitz <pierre@archlinux.de> wrote:
> Btw: I think we have a problem with the pacman update. Am I right that a
> -Syu will update pacman first without loading openssl which will result in
> a broken pacman? This might probably the only valid usage of a versiond
> dep. If that's true we might consider to keep openssl in tar.gz, too.
+1 to dep and .tar.gz if that's the case
 
Old 04-01-2010, 03:15 AM
Dan McGee
 
Default openssl 1.0 rebuild

On Wed, Mar 31, 2010 at 8:54 PM, Pierre Schmitz <pierre@archlinux.de> wrote:
> I have rebuild all core and some other packages. It's now time for
> everybody to join the rebuild party. We rebuild heimdal and openssl at
> once. See https://dev.archlinux.org/todo/30/ and
> https://dev.archlinux.org/todo/32/
>
> If you rebuild packages you should build bottom-up; means rebuild the deps
> of a package first. It's probably best to join our irc channel to
> communicate which packages you are about to rebuild. If something doesn't
> build you might find patches at
> http://cvs.fedoraproject.org/viewvc/rpms/$pkgname
>
> And please avoid using versioned deps.
>
> Btw: I think we have a problem with the pacman update. Am I right that a
> -Syu will update pacman first without loading openssl which will result in
> a broken pacman? This might probably the only valid usage of a versiond
> dep. If that's true we might consider to keep openssl in tar.gz, too.

It is less a problem and more intentional. Versioned deps are
definitely a tricky subject.

I haven't tried it out yet, but shouldn't a new pacman, compiled with
the right ldflags, no longer link directly against openssl? The reason
that is in there is only because of the libraries it uses; we don't
use ssl methods directly in pacman code. Of course if we are
explicitly telling it to link, then we would still have a problem.
That is what it looks like after pulling down your rebuild; but I'm
confused- it shows it still looking for openssl 0.9.8:

dmcgee@dublin /tmp/pacman-extracted
$ ldd usr/bin/pacman
linux-gate.so.1 => (0xb76ee000)
libalpm.so.4 => /usr/lib/libalpm.so.4 (0xb76b0000)
libc.so.6 => /lib/libc.so.6 (0xb7569000)
libfetch.so => /usr/lib/libfetch.so (0xb755b000)
libarchive.so.2 => /usr/lib/libarchive.so.2 (0xb751c000)
libssp.so.0 => /usr/lib/libssp.so.0 (0xb7518000)
/lib/ld-linux.so.2 (0xb76ef000)
libssl.so.0.9.8 => /usr/lib/libssl.so.0.9.8 (0xb74cf000)
libcrypto.so.0.9.8 => /usr/lib/libcrypto.so.0.9.8 (0xb737c000)
libacl.so.1 => /lib/libacl.so.1 (0xb7374000)
libattr.so.1 => /lib/libattr.so.1 (0xb736f000)
libexpat.so.1 => /usr/lib/libexpat.so.1 (0xb7348000)
liblzma.so.0 => /usr/lib/liblzma.so.0 (0xb7327000)
libbz2.so.1.0 => /lib/libbz2.so.1.0 (0xb7316000)
libz.so.1 => /usr/lib/libz.so.1 (0xb7301000)
libdl.so.2 => /lib/libdl.so.2 (0xb72fd000)
libpthread.so.0 => /lib/libpthread.so.0 (0xb72e3000)

-Dan
 
Old 04-01-2010, 03:23 AM
Allan McRae
 
Default openssl 1.0 rebuild

On 01/04/10 13:15, Dan McGee wrote:


dmcgee@dublin /tmp/pacman-extracted
$ ldd usr/bin/pacman
libcrypto.so.0.9.8 => /usr/lib/libcrypto.so.0.9.8 (0xb737c000)



Thats openssl. I'm rebuilding pacman with versioned deps on libarchive
and libfetch and those with versioned deps on openssl. That way, pacman
will upgrade itself _and_ its deps.


Allan
 
Old 04-01-2010, 03:25 AM
Allan McRae
 
Default openssl 1.0 rebuild

On 01/04/10 13:23, Allan McRae wrote:

On 01/04/10 13:15, Dan McGee wrote:


dmcgee@dublin /tmp/pacman-extracted
$ ldd usr/bin/pacman
libcrypto.so.0.9.8 => /usr/lib/libcrypto.so.0.9.8 (0xb737c000)


Thats openssl.


Nevermind... I miss-read your email. I guess pacman links against this
for md5sum checking?
 
Old 04-01-2010, 03:35 AM
Pierre Schmitz
 
Default openssl 1.0 rebuild

On Wed, 31 Mar 2010 22:15:48 -0500, Dan McGee <dpmcgee@gmail.com> wrote:
> I'm confused- it shows it still looking for openssl 0.9.8:
>
> dmcgee@dublin /tmp/pacman-extracted
> $ ldd usr/bin/pacman
..
> libssl.so.0.9.8 => /usr/lib/libssl.so.0.9.8 (0xb74cf000)
> libcrypto.so.0.9.8 => /usr/lib/libcrypto.so.0.9.8 (0xb737c000)
..

You have probably an old version of libarchive/libfetch installed. Don't
trust ldd here. Within my updated chroot it looks fine:

ldd /usr/bin/pacman
linux-vdso.so.1 => (0x00007fffc47c7000)
libalpm.so.4 => /usr/lib/libalpm.so.4 (0x00007f74abefc000)
libc.so.6 => /lib/libc.so.6 (0x00007f74abba6000)
libfetch.so => /usr/lib/libfetch.so (0x00007f74ab996000)
libarchive.so.2 => /usr/lib/libarchive.so.2 (0x00007f74ab754000)
/lib/ld-linux-x86-64.so.2 (0x00007f74ac11d000)
libssl.so.1.0.0 => /usr/lib/libssl.so.1.0.0 (0x00007f74ab4f9000)
libcrypto.so.1.0.0 => /usr/lib/libcrypto.so.1.0.0
(0x00007f74ab143000)
libacl.so.1 => /lib/libacl.so.1 (0x00007f74aaf3c000)
libattr.so.1 => /lib/libattr.so.1 (0x00007f74aad38000)
libexpat.so.1 => /usr/lib/libexpat.so.1 (0x00007f74aab10000)
liblzma.so.0 => /usr/lib/liblzma.so.0 (0x00007f74aa8f0000)
libbz2.so.1.0 => /lib/libbz2.so.1.0 (0x00007f74aa6e0000)
libz.so.1 => /usr/lib/libz.so.1 (0x00007f74aa4c8000)
libdl.so.2 => /lib/libdl.so.2 (0x00007f74aa2c4000)
libpthread.so.0 => /lib/libpthread.so.0 (0x00007f74aa0a8000)

There are also no *.0.9.8 files in my build chroot; so it's quite
impossible it linked agaisnt them. :-)

--
Pierre Schmitz, https://users.archlinux.de/~pierre
 

Thread Tools




All times are GMT. The time now is 09:42 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org