From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([69.77.167.62] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1LA5th-0003x0-Fy for garchives@archives.gentoo.org; Tue, 09 Dec 2008 16:57:22 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 05E69E0441; Tue, 9 Dec 2008 16:57:19 +0000 (UTC) Received: from postak-2.fzu.cz (pc175e.fzu.cz [147.231.127.175]) by pigeon.gentoo.org (Postfix) with ESMTP id AB853E0441 for ; Tue, 9 Dec 2008 16:57:18 +0000 (UTC) Received: from postak-3.fzu.cz (postak3.fzu.cz [10.128.1.5]) by postak-2.fzu.cz (8.13.1/8.13.1) with ESMTP id mB9Gv86Y021940 for ; Tue, 9 Dec 2008 17:57:08 +0100 Received: from [195.113.21.126] (eduroam126.ms.mff.cuni.cz [195.113.21.126]) (authenticated bits=0) by postak-3.fzu.cz (8.13.6/8.13.6) with ESMTP id mB9GvGZ8025075 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Tue, 9 Dec 2008 17:57:16 +0100 Message-ID: <493EA371.3030609@gentoo.org> Date: Tue, 09 Dec 2008 17:57:21 +0100 From: =?ISO-8859-1?Q?Jan_Kundr=E1t?= Organization: Gentoo User-Agent: Thunderbird 2.0.0.14 (X11/20080421) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] EAPI 2 policy for portage tree References: <493DB50A.8090403@jmhengen.net> In-Reply-To: <493DB50A.8090403@jmhengen.net> X-Enigmail-Version: 0.95.6 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig80388C20BEAA882FDC80BAE9" X-Anti-Virus: Kaspersky Anti-Virus for Sendmail with Milter API 5.6.20, bases: 20081209 #1447097, check: 20081209 clean X-Spam-Status: No, score=-1.4 required=5.0 ALL_TRUSTED=-1.44 X-Spam-Checker-Version: SpamAssassin 3.2.4-postak (2008-01-01) on postak2.fzu.cz X-Archives-Salt: e718835c-aff3-4d69-a91c-4bc839bb80e1 X-Archives-Hash: 44ef80519b1835f11fe3089b40c06a41 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig80388C20BEAA882FDC80BAE9 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable Jean-Marc Hengen wrote: > tree and my policies (more precisely: I can't keep current stable=20 > portage and cmake-2.6.2). My solution to the problem, was to copy the=20 > ebuild in /var/db/pkg to my local overlay and I'm fine with it for now.= =20 > The drawback of this workaround is, I could miss important fixes, like = > security fixes. [snip] > the cmake-2.6.2 ebuild. This has the advantage, that people with a setu= p=20 > like mine can continue to use, what they already use and work on the=20 > cmake ebuild can continue in the new revision. If the new revision fixe= s=20 > a security issue, one can mask the old version, with a message with bug= =20 > telling this. Just FYI, there's no difference -- when you've chosen to use the ~arch=20 version, you *have* to follow any updates to it as soon as possible if=20 you want to be reasonably sure you aren't affected by a security bug, as = our security team doesn't issue GLSAs for ~arch packages. Sticking with=20 a version that works for you doesn't mean you're somehow protected form=20 security bugs. So to put this into perspective with cmake -- if there was a security=20 bug in current version (which you'd keep as you don't want to upgrade=20 Portage) and the fix for this bug would be using EAPI=3D2 (which is not a= n=20 unrealistic situation), you'd be affected. Cheers, -jkt --=20 cd /local/pub && more beer > /dev/mouth --------------enig80388C20BEAA882FDC80BAE9 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkk+o3IACgkQamXfqERyJRdP3wCbBCLHRjJ5Qh3122RpGzTp98ax KJUAnidyttGgaXGH852VD4KF4aiIwlmG =2Hy/ -----END PGP SIGNATURE----- --------------enig80388C20BEAA882FDC80BAE9--