| Age | Commit message (Collapse) | Author |
|---|
|
|
|
|
|
Without that fix, we have the following error while
installing or upgrading texlive-bin:
error: texlive-bin: signature from "bill-auger <bill-auger@peers.community>" is unknown trust
:: File /var/cache/pacman/pkg/texlive-bin-2021.58686-3.parabola8-i686.pkg.tar.xz is corrupted (invalid or corrupted package (PGP signature)).
This is because the corresponding gpg key is expired:
$ gpg --verify /var/cache/pacman/pkg/texlive-bin-2021.58686-3.parabola8-i686.pkg.tar.xz.sig
gpg: assuming signed data in '/var/cache/pacman/pkg/texlive-bin-2021.58686-3.parabola8-i686.pkg.tar.xz'
gpg: Signature made mer. 03 nov. 2021 03:02:20 CET
gpg: using RSA key FBCC5AD7421197B7ABA72853908710913E8C7778
gpg: Good signature from "bill-auger <bill-auger@peers.community>" [unknown]
gpg: aka "bill-auger <mr.j.spam.me@gmail.com>" [unknown]
gpg: aka "bill-auger <bill-auger@programmer.net>" [unknown]
gpg: aka "[jpeg image of size 6017]" [unknown]
gpg: Note: This key has expired!
Primary key fingerprint: 3954 A7AB 837D 0EA9 CFA9 7989 25DB 7D9B 5A8D 4B40
Subkey fingerprint: FBCC 5AD7 4211 97B7 ABA7 2853 9087 1091 3E8C 7778
Key expirations often happen when because there are
conflicting best security practices with key expiration
dates: for long term software releases, it's better if
the key don't have too short expiration dates, especially if
users can't easily update the key, but short key expirations
help a lot for security and for uses cases like mail, if you
loose your key, having a short expiration date will ensure
that people will (shortly) stop sending you mail that you
can't decrypt.
In addition keeping a key always up to date can in some case
be very complex.
Signed-off-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
On i686 I've the following:
$ sudo pacman -Suu
:: Starting full system upgrade...
:: Replace haskell-exceptions with community/ghc-libs?
[Y/n]
resolving dependencies...
looking for conflicting packages...
error: failed to prepare transaction (could not satisfy
dependencies)
:: installing poppler (0.88.0-1.0) breaks dependency 'poppler=0.87.0'
required by cups-filters
:: installing icu (67.1-1.0) breaks dependency 'icu<66'
required by icecat
:: installing icu (67.1-1.0) breaks dependency
'icu=65.1' required by icedove
:: installing icu (67.1-1.0) breaks dependency
'icu<66' required by iceweasel
:: installing icu (67.1-1.0) breaks dependency 'icu<66'
required by texlive-bin
:: installing poppler (0.88.0-1.0) breaks dependency
'poppler=0.87.0-1.1' required by texlive-bin
More packages, that I don't have installed are probably affected.
Once we rebuilt and pushed the new packages, i686 users will be
able to upgrade to the new icu and poppler.
The new icu and poppler packages now have Provides for the
various libraries they provides:
$ pacman -S -i icu
Provides : libicudata.so=67-32 libicui18n.so=67-32
libicuio.so=67-32 libicutest.so=67-32
libicutu.so=67-32 libicuuc.so=67-32
$ pacman -S -i poppler
Provides : libpoppler.so=99-32 libpoppler-cpp.so=0-32
The provides are already there for x86_64 and armv7h.
Now that all architectures have provides for these two
packages, we will be able to convert our PKGBUILDs to depend
on the libraries provided, to make the next transition
easier: Thanks to the provides we can now provide packages
like icu-parabola, icu-57, etc to provide the current icu library
version.
This means that with the next icu library version that
comes from Arch Linux, Arch Linux 32, or Arch Linux ARM,
each packages that is built by Parabola and that has been
converted to use provides will continue to work as it will
pull the icu-parabola package to continue satisfying the
dependency on old libraries.
This in turn will enable users to continue upgrade will not
be blocked anymore by icu or poppler issues, and it will
enable developers to have more time to fix build issues.
Signed-off-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
|
|
|
|
|
|
texlive-bin 2020.54586-3 is already in archlinux testing, but for
now we only sync with extra.
Signed-off-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
|
|
|
|
will need the same rebuild when poppler lands there.
|
|
still on poppler 0.82)
|
|
|
|
|
|
This is based on the following commit in archlinux[1]:
commit c91ce81138f3ce55a27183adf714c881e9277c0d
Author: foutrelis <foutrelis@eb2447ed-0c53-47e4-bac8-5bc4a241df78>
Date: Tue Nov 12 02:03:44 2019 +0000
icu 65.1 / poppler 0.82.0 rebuild
git-svn-id: file:///srv/repos/svn-packages/svn@367838 eb2447ed-0c53-47e4-bac8-5bc4a241df78
References:
-----------
[1]git://git.archlinux.org/svntogit/packages.git
Signed-off-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
|
|
|
|
Without that fix we have the following with pacman -Suu on i686:
installing poppler (0.80.0-2.0) breaks dependency
'poppler=0.80.0-1.1' required by texlive-bin
Signed-off-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
|
|
|
|
Signed-off-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
This is to sync with upstream and rebuild for i686
Signed-off-by: Denis 'GNUtoo' Carikli <GNUtoo@cyberdimension.org>
|
