From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1P3MmZ-0004y7-Co for garchives@archives.gentoo.org; Wed, 06 Oct 2010 05:43:15 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id DE98CE09A6; Wed, 6 Oct 2010 05:43:11 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 60CB7E0999 for ; Wed, 6 Oct 2010 05:42:56 +0000 (UTC) Received: from vapier.localnet (localhost [127.0.0.1]) by smtp.gentoo.org (Postfix) with ESMTP id 991B31B4131 for ; Wed, 6 Oct 2010 05:42:55 +0000 (UTC) From: Mike Frysinger Organization: wh0rd.org To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] RFC: make system-sqlite a global USE flag Date: Wed, 6 Oct 2010 01:41:38 -0400 User-Agent: KMail/1.13.5 (Linux/2.6.35.4; KDE/4.5.1; x86_64; ; ) References: <4CAB2DAA.6000103@gentoo.org> <201010052206.21643.vapier@gentoo.org> In-Reply-To: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1886832.l3mY2yAfY5"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <201010060141.39492.vapier@gentoo.org> X-Archives-Salt: 5ee5746a-cada-4feb-809b-b49a09b31b8c X-Archives-Hash: 2e773d96ff56325d308fd25a0bfa7db8 --nextPart1886832.l3mY2yAfY5 Content-Type: Text/Plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable On Tuesday, October 05, 2010 23:04:32 Nirbheek Chauhan wrote: > On Wed, Oct 6, 2010 at 7:36 AM, Mike Frysinger wrote: > > On Tuesday, October 05, 2010 10:35:57 Nirbheek Chauhan wrote: > >> To fix this problem sqlite upstream made a specific change allowing a > >> #pragma to be used to define where secure-delete is required, avoiding > >> the need to use secure-delete *everywhere*. > >=20 > > so what you're saying is that this USE flag can die once people > > fix/update their packages >=20 > What I'm saying is that mozilla team will not do it unless you either: >=20 > (a) You convince/bribe/cluebat upstream (we've tried and failed), or > (b) You write a patch that you promise to maintain forever with quick > responses for security bumps >=20 > Keep in mind that firefox usually only works with a very narrow range > of sqlite versions. If it's too low, it won't compile, or have runtime > failures (when they forget to update the min system-sqlite version). > If it's too high, it'll have strange runtime bugs since firefox relies > too heavily on existing sqlite behaviour[1]. so getting back to the original question: no, this should not be a global U= SE=20 flag, and yes, this local flag should die. =2Dmike --nextPart1886832.l3mY2yAfY5 Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.16 (GNU/Linux) iQIcBAABAgAGBQJMrAwTAAoJEEFjO5/oN/WBOskP/3b1Cs/UGiNcuDKad7SuzBgP fH04qBpXvqPttqEQJ4VHpImhxDGwrpMSNtju17WeP3vGdt02WbYYN80b88/b6O8H Hokzt9wjenRoVnF3wrN+EOOHiTblJI5ztZ4aoIq4O+cYbnTHSHbUiFff9HjuRu+Y uLMm8gGzOnK0Q/Yer9MqObMO3hoJXHzU1RlVOpUe27NXEBrIQwsr8azjHsJA+QMK CHnOM9cghFX5KY2jVIr4/0aCx7Vl7ksudzLkiOWbgEd+TBek3svk1a5Cwu6hdvSj KqKVptfdZ2CQBtkMQwgm17Tq8MZg1vPMajUarug4rTWmTvSoaGbNFJvCGRlmAfwW HJZr4ggY1+vYiQxT1UoZ2VVnLqjqutEo2Qh31AK56stsdhvcPsFLO68YlB61mNH9 JopD8lPGEwEm25p3FViMlpd6FOAq+rf8cP0Us1Dps9OoWdLSx1kJGT3AHqFUSxtp ZCD/Cv+BE5QCyPJdPE5BkfVFGPw3RC7FRPywauJn11UzP9VrOQR3lQlg7u6XBmI7 bpO5zRkUmJ+IYw7l7fXl2kLxZ//YJCuC9NmvxjLpqo3zvP9FMTKtHvx9aKXVjiO6 qmkuux4rhbar/5rkQbPL1etUybtjRGpVstbe9QgRQbvTLFfJcPpaK/m/qBdZFW36 UMruC6438mWtv14UOg91 =qe2E -----END PGP SIGNATURE----- --nextPart1886832.l3mY2yAfY5--