Poudriere Build of pkg_* repos?
Bryan Drewery
bdrewery at FreeBSD.org
Wed Sep 24 21:32:14 UTC 2014
On 9/24/2014 3:35 PM, Rick Miller wrote:
> Hi all,
>
> Does the EOL of legacy pkg_* tools in FreeBSD Ports affect Poudriere's
> ability to build legacy package repos?
No. Poudriere still supports it as long as you're using an older ports tree.
>
> Poudriere was able to build a legacy pkg_* repo from a snapshot of Ports
> from around the time releng/10.0 received the patch for -p7, but it failed
> to build a legacy repo from a snapshot taken today and instead built a
> pkg(8) repo despite make.conf having WITHOUT_PKGNG=yes.
>
> Aside: Actually, it seemed to ignore the make.conf altogether as it
> contains PERL_VERSION=5.14.4 and built 5.16 instead.
It must be /usr/local/etc/poudriere.d/make.conf
>
> Provided this is the case, what suggestions are there for patching today's
> bash remote execution vulnerability[1] in a version of Ports that can be
> built into a legacy repo?
Just apply the patch via files/ and use EXTRA_PATCHES:
http://dan.langille.org/2014/06/10/freebsd-custom-port-patches-when-using-poudriere/
>
> [1] http://seclists.org/oss-sec/2014/q3/650
>
--
Regards,
Bryan Drewery
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20140924/0f1135eb/attachment.sig>
More information about the freebsd-ports
mailing list