From nobody Sat Sep 30 00:58:11 2023 X-Original-To: freebsd-ports@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Ry83Z1wWtz4v1HM for ; Sat, 30 Sep 2023 00:58:34 +0000 (UTC) (envelope-from freebsd@gushi.org) Received: from prime.gushi.org (prime.gushi.org [IPv6:2620:137:6000:10::142]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "prime.gushi.org", Issuer "RapidSSL Global TLS RSA4096 SHA256 2022 CA1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Ry83Y1sPHz4D40 for ; Sat, 30 Sep 2023 00:58:33 +0000 (UTC) (envelope-from freebsd@gushi.org) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gushi.org header.s=prime2014 header.b=OjGP3fin; spf=pass (mx1.freebsd.org: domain of freebsd@gushi.org designates 2620:137:6000:10::142 as permitted sender) smtp.mailfrom=freebsd@gushi.org; dmarc=pass (policy=none) header.from=gushi.org Received: from smtpclient.apple ([IPv6:2601:602:87f:b05d:b813:e603:ee07:3dc1]) (authenticated bits=0) by prime.gushi.org (8.17.2/8.17.2) with ESMTPSA id 38U0wRbu099191 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Sat, 30 Sep 2023 00:58:28 GMT (envelope-from freebsd@gushi.org) DKIM-Filter: OpenDKIM Filter v2.10.3 prime.gushi.org 38U0wRbu099191 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gushi.org; s=prime2014; t=1696035509; bh=LUycMaUXyiQWTXzd0cR6lpoDk3YiNNk9npkr/a/O8dE=; h=Subject:From:In-Reply-To:Date:Cc:References:To; z=Subject:=20Re:=20dns/bind916=20builds=20rust=20unexpectedly|From: =20Dan=20Mahoney=20|In-Reply-To:=20<8834n7o7-pn s7-5r31-oo33-rr52q2n01s64@mx.roble.com>|Date:=20Fri,=2029=20Sep=20 2023=2017:58:11=20-0700|Cc:=20Mark=20Millard=20 ,=0D=0A=20FreeBSD=20Mailing=20List=20|R eferences:=20= 0D=0A=20=0D=0A=20< 8834n7o7-pns7-5r31-oo33-rr52q2n01s64@mx.roble.com>|To:=20Roger=20M arquis=20; b=OjGP3finNps2iqShLmi0VWirQGKTVFhu8FvcOKzOYi25ZIQfvDSzgJzVl+s42aH/0 Py0r3XyZXIpX8QQAapaokwN2NLy//2lYnANlROAv2CujzALsQ+pk8ClpJpnzwI0lmV b4bFJGTlUSlEoIJKiNe+jF+6FnKDRfsrz8J17XWZHgwYKkCd8lRXo7ALgmmmX5EbE7 5Wlog9RERJ6KpNjuZcaa8O/84qdJxHOUt9G4Dm9n+5ywYfNdPrxtMYP5iWR/9VXhZ4 3ZIAU9Ct5QX3OqgZWNTgzBHlXNY94MKE37fnXbGF0w9/LVI/3YHbxHJo/Vup7ILQtX Mx4NaV6Rho+/g== X-Authentication-Warning: prime.gushi.org: Host [IPv6:2601:602:87f:b05d:b813:e603:ee07:3dc1] claimed to be smtpclient.apple Content-Type: text/plain; charset=us-ascii List-Id: Porting software to FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-ports List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-ports@freebsd.org X-BeenThere: freebsd-ports@freebsd.org Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.100.2.1.4\)) Subject: Re: dns/bind916 builds rust unexpectedly From: Dan Mahoney In-Reply-To: <8834n7o7-pns7-5r31-oo33-rr52q2n01s64@mx.roble.com> Date: Fri, 29 Sep 2023 17:58:11 -0700 Cc: Mark Millard , FreeBSD Mailing List Content-Transfer-Encoding: quoted-printable Message-Id: <6096FAFA-A5C7-4F0F-80A4-74C7A82AD6CF@gushi.org> References: <8834n7o7-pns7-5r31-oo33-rr52q2n01s64@mx.roble.com> To: Roger Marquis X-Mailer: Apple Mail (2.3774.100.2.1.4) X-Spamd-Bar: ----- X-Spamd-Result: default: False [-6.00 / 15.00]; DWL_DNSWL_MED(-2.00)[gushi.org:dkim]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.90)[-0.897]; RCVD_DKIM_ARC_DNSWL_MED(-0.50)[]; DMARC_POLICY_ALLOW(-0.50)[gushi.org,none]; MV_CASE(0.50)[]; R_DKIM_ALLOW(-0.20)[gushi.org:s=prime2014]; R_SPF_ALLOW(-0.20)[+mx]; RCVD_IN_DNSWL_MED(-0.20)[2620:137:6000:10::142:from]; ONCE_RECEIVED(0.10)[]; MIME_GOOD(-0.10)[text/plain]; MLMMJ_DEST(0.00)[freebsd-ports@freebsd.org]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; RCVD_VIA_SMTP_AUTH(0.00)[]; ASN(0.00)[asn:393507, ipnet:2620:137:6000::/44, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DKIM_TRACE(0.00)[gushi.org:+]; TO_DN_ALL(0.00)[]; HAS_XAW(0.00)[]; ARC_NA(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; FROM_EQ_ENVFROM(0.00)[]; FREEMAIL_CC(0.00)[yahoo.com,freebsd.org]; RCVD_TLS_ALL(0.00)[] X-Rspamd-Queue-Id: 4Ry83Y1sPHz4D40 > On Sep 25, 2023, at 18:23, Roger Marquis wrote: >=20 > On Mon, 25 Sep 2023, Mark Millard wrote: >> ... it takes so long to build (and distribute) the 30,000+ >> packages (or any large incremental subset or subset that >> involves huge builds) that a fair number ports have had >> updates before the distribution completes and starts being >=20 > Even just getting the ports tree updated can take days (or more) even > after vulnerabilities are patched. Let's assume for most systems, you're dealing with a quarterly ports = tree, and thus a quarterly pkg tree. If you're using a -current ports = tree, all bets are off, but portsnap (in base) should qualify you for = this. > Take bind9 for example. We use Poudriere for most updates but not = bind9 > as it often should be patched as soon as updates are are available. = If > you wait for gitup or Poudriere to pull a new Makefile, even with > nothing more than a new version string, it can take days (2 or 3 days > for the most recent patch). It's not an issue here as we a) edit the > Makefile to specify the current version, b) make makesum, c) make sure > the build does not use python (by manually editing the port's options > file, d) make package and e) pkg install (or update), which takes > maybe 10 minutes. This was my precise reason for setting up poudriere to keep building a = constant set of quarterly builds -- even if we don't use them at all. = By default, we stick with the base packages, but we want to be able to = mode-switch over, in the event we have a critical patch we need to = apply. -Dan > It sounds like what we really need om this case is just a way to > maintain options keys and values that are not specified in the = Makefile. > Of course that won't work for all bloated packages but it would help. >=20 > Roger Marquis