From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 4B1A7138359 for ; Tue, 14 Jul 2020 23:48:08 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 7BA6FE08C8; Tue, 14 Jul 2020 23:48:00 +0000 (UTC) Received: from mail.suugaku.co.uk (unknown [2.125.59.191]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id B0396E0829 for ; Tue, 14 Jul 2020 23:47:59 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=suugaku.co.uk; s=mail; t=1594770629; bh=noW2HDYEN6QehUPlsWDmaZqdaHiiM5mLDCFJE7NA5io=; h=Date:From:To:Subject:References:In-Reply-To; b=HQboUD6UOgqcb/uu3z/qbp0DaYICoFewCictNH05QYPbLxwrDD9KA89Lcx3/9Rqux g3qQXeZ9Y/fy1JmjaSWEcXp+pGQOSjzyeOeNd+dmagmkWEzKmjW7vvZX3SDmq4NcHo Cruh5v8bE9zQ/y0cBFfnynZrnMIwaao84WtsnKmo= Date: Wed, 15 Jul 2020 00:46:58 +0100 From: Ashley Dixon To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] binary packages: how to ... Message-ID: <20200714234658.hrijwppoininbp6y@ad-gentoo-main> Mail-Followup-To: gentoo-user@lists.gentoo.org References: <7b581000-f917-9e57-df3d-d7c36b861817@web.de> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="xcqlrvbfdhyejvl2" Content-Disposition: inline In-Reply-To: <7b581000-f917-9e57-df3d-d7c36b861817@web.de> X-PGP-Key: fp="2A9A DA96 8A7B A30E F290 4117 D18A B0D2 BF25 A8AA"; id="0xBF25A8AA"; get=; get= X-Operating-System: Linux ad-gentoo-main 5.4.48-gentoo X-Editor: vim 8.2 User-Agent: NeoMutt/20180716 X-Archives-Salt: 7e57ea6a-049e-4971-aeec-0259aa6dbf0f X-Archives-Hash: 149ba4d32eb929dcad9e4de1d74c9daf --xcqlrvbfdhyejvl2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Jul 14, 2020 at 11:24:31PM +0200, n952162 wrote: > binary packages: how to: >=20 > 1. find out if a package is binary before you install it (e.g. where on > app-arch/rar does it say it's a binary package) RAR is an unusual case, with both the "mirror" and "bindist" flags set in= the RESTRICT variable (i.e., Gentoo cannot legally mirror the package, and y= ou're not allowed to redistribute binaries either). I couldn't find anything in= the ebuild which suggests it is a binary package; perhaps this is something = that should be reviewed by the Gentoo developers, as most packages supporti= ng a binary distribution provide a separate package with the `-bin` suffix, alth= ough I suppose this doesn't make much sense when there is no source package. The entire RAR business model of free decompression and paid compression= has caused confusion for many people over many decades. I'd always stick to 7z= ip or one of the classic UNIX compression utilities, if I had a choice. > 2. inhibit their installation Don't install them. ;-) More seriously: there's not that many of them, so it's probably not a pr= ocess worth automating, unless you're on a multi-user machine, in which untr= usted users can install packages - although I think you'd have more signif= icant problems at that point. As you've unfortunately discovered, there isn't mu= ch of a concrete framework in place to automatically detect binary packages, = which also makes Point (3) difficult. > 3. get a list of the ones installed on a system `EIX_LIMIT=3D0 eix --only-names -I *-bin`, perhaps ? Unfortunately, this= won't catch the unusual cases, as seen with `app-arch/rar`. > Any ideas about that are appreciated. [1] might be worth a read; it's quite comprehensive, and gives you a gl= impse into the inner-workings of Portage, allowing you to fix these issues your= self. Something to note: "bindist", as the USE-flag and RESTRICT option, does not= mean "use a binary distribution", but rather "compile the package in such a way = that I can redistribute my build without putting myself in a legal problem with= the package authors" (this commonly is synonymous with disabling official brand= ing): $ ash-euses -sk bindist dev-libs/openssl:bindist - Disable/Restrict EC algorithms (as they seem to = be patented) -- note: changes the ABI dev-libs/openssl-compat:bindist - Disable/Restrict EC algorithms (as they s= eem to be patented) -- note: changes the ABI dev-qt/qtnetwork:bindist - Disable EC support via dev-libs/openssl mail-client/thunderbird:bindist - Disable official Firefox/Thunderbird bran= ding (icons, name) which are not binary-redistributable according to upstre= am. media-libs/freetype:bindist - Disable ClearType support (see http://freetyp= e.org/patents.html) net-libs/liboauth:bindist - Alias for the nss USE flag, since there are lic= ense compliancy trouble when using OpenSSL. net-misc/openssh:bindist - Disable EC/RC5 algorithms in OpenSSL for patent = reasons. sys-apps/ucspi-ssl:bindist - Disable EC/RC5 algorithms in OpenSSL for paten= t reasons. www-client/firefox:bindist - Disable official Firefox branding (icons, name= ) which are not binary-redistributable according to upstream. Hope this helps, Ashley. [1] https://wiki.gentoo.org/wiki/Binary_package_guide --=20 Ashley Dixon suugaku.co.uk 2A9A 4117 DA96 D18A 8A7B B0D2 A30E BF25 F290 A8AA --xcqlrvbfdhyejvl2 Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAABCAAdFiEEKpralop7ow7ykEEX0Yqw0r8lqKoFAl8OQ/IACgkQ0Yqw0r8l qKotrhAAk7PDvYzmY+dPcvYBztaWd2EzLgcQItthyF33ZSzfzqkkax597Q5ADD5s iLDpwP+mxhB6I1BNCUOgFBSbg3bVaAz2YhZTu8ya5dufwzpt1LRYg2CjH9GMtas2 eqq7wC5NPl+uUcBVU2K6WhnPKULtnFHHG62isfG1Z6QnB+x30REndPMhOX1Kbftj /Y+KFRZpc5G0Fm9Ggc4oo5Ern32cXJ4FcCLgG+Z9kVsHv/aRWxu87dsU/BjaYKvS gRZl45V9xE4du/c9SbMD9RSxMgj0kuyzEZf6sTV2YMY+sR2NyE0wNbVQeiWhF0lH alMg32vYHEsmU0zRM6Ya8n4zNDJBMYjLofrLdWdT1Q3DUqCoXpLy8jKONg9gRZg2 XGrKP8K00H0NyhUYE7kFUbeqnqcmwk9KrgsbthP4IjGx8365YLFIzN5oKlVzrgiW 3i+ZRIeyXLWClB8FV5FgTmoy17wjXH90qQAwTUH7H7rRKuLRgQ43LC58+Ixr9tZd AoEJ/SSllrcxSfRKdHk5xASOWrHZFTVvhL1Y0P8kD1x+1h+ZQo0jTaqn4UD+qTTo Hqt2NvO31iofMettcEAYrIQLaEkeYLL9SHfTBanV2OhRc7OLZGsJG3E/2Ccp/sjB MWVsihFDpFYtUXEQWHg0FYu8WSB+iZkLsBZJCjaoyxcMiQ992bg= =ebIR -----END PGP SIGNATURE----- --xcqlrvbfdhyejvl2--