HTTPS on, git, reproducible builds

Slawa Olhovchenkov slw at
Sat Sep 19 17:28:49 UTC 2015

On Sat, Sep 19, 2015 at 06:47:12PM +0200, Polytropon wrote:

> > > As far as I could understand, pkg will deal with the components
> > > comprising the OS in the same manner as it does for the ports
> > > collection. So the kernel, the userland, the sources and so on
> > > will "become packages" for pkg to install or upgrade. This is
> > > a similar approach to common package management on Linux, except
> > > that Linux (as a term to summarize all the many distributions)
> > > doesn't have an OS ("the base OS") per se.
> > 
> > This is very bad.
> Don't worry. The OS will still be maintained by the FreeBSD team.
> And the components which the OS is composed of will probably not
> be separated into hundreds of separate packages (as it is in
> Linux - where the distribution creators decide which packages
> belong to a base install, like, which package installer, which
> shell, X or no X, and so on).
> In the end, it might look like there are few additional packages
> that will be installed: sys_bin, sys_src, sys_ports and so on.
> An update you perform with freebsd-update will then be an update
> on the sys_* packages with pkg, leading to a binarily upgraded
> operating system. You then _can_ upgrade your ports collection,
> or you can leave it as is. This is the advantage of FreeBSD:
> The OS and the additionally installed (3rd party) software are
> beging dealt with independently.
> And this is good. :-)

I am don't see advantage of this.
What's part of systeam I am don't need to install?
ports? this is don't need released as package, when I need /usr/ports
I am need it from svn (not from portsnap or else).
src? also svn.
separately userland parts? I am can't imagine how to install Kerberos
separately. many other userland parts tightly intergrated together.

Yes, I can build custom system with off some parts in src.conf, but
this system will be very special and need some knowelege.

> > > You can already see this kind of development: The documentation
> > > has become a package, and the package manager itself is a
> > > package (separated from the OS, which only contains a bootstrap
> > > loader for the real program). Finally, the installation process
> > > could become a task of "pkg install", instead of "tar xf". And
> > > a unification of the infrastructures could lead to additional
> > > benefits (only _one_ system for both components - OS and ports).
> > 
> > I am have many troubles with this way in Linux.
> > Kernel and userland versions mismatch.
> > glibc version incompatible with rpm.
> > problem.
> > And etc.
> I know what you're refering to. :-)
> On Linux, an "upgrade everything" process might involve a kernel
> or a system library update not properly being dealt with in
> "userland" (if I may abuse the term in this context). Now you
> have a system that won't boot anymore, and you might not even
> be able to reach a kind of maintenance mode (like FreeBSD's
> single-user mode with /rescue) because somehow your fallback
> kernel and libraries got deleted...
> Of course FreeBSD also can run into this kind of problem, but
> the OS is always consistent. An upgrade does _not_ break the
> OS. It _might_ break ports. During the course of -STABLE, this
> usually does not happen (because the interfaces are stable).
> That's why you always see the advice to recompile (or reinstall)
> your ports when you move to a new major version, leaving the
> path of -STABLE.

>From last: pkg (utility `pkg), building on 10.2 can't be run on 10.1
because used newer symbols from Now imagine system long time
not updated. EoL is come in. How I upgrade this? pkg want to upgrade
himself, fresh version for outdated system don't exist, new version
can't be run... Deadlock?

Next, how to upgrade system? kernel first? ok. for this case kernel
can't be depend from userland packages. How to upgrade to
correspondend userland packages? And we can got network unreachable
system (I am remember time ifconfing interface change). What about -current?

userland first? ok. Got new libs with missing syscals and we can't run
any program.

Now about embeded systems.

-rw-r--r--  1 root  wheel   2.4M Jul 27 01:16  /var/cache/pkg/pkg-1.5.5-20bbe78419.txz
# ls -l /var/db/pkg/
total 2206
-rw-r--r--  1 root  wheel      246 Aug  3 16:41 ivs.meta
-rw-r--r--  1 root  wheel  1384448 Aug  5 22:31 local.sqlite
-rw-r--r--  1 root  wheel   342016 Aug  3 16:41 repo-ivs.sqlite
-r--r--r--  1 root  wheel  3804129 Sep 18 04:03 vuln.xml
# du -hc `pkg info -l pkg`
6.1M    total

I.e. package management overhead about 11MB. Or I missing somewhere?
Oh, I am need double space for system: .txz and expanded.

And what advantage for this?

More information about the freebsd-questions mailing list