Busy rebuilding my LibreSSL based LAMP stack for CentOS 7.5.
I've always made the src.rpm's available but with this round of rebuilds I'm starting a git repository for the spec file / patches.
61 more packages to rebuild, but I'm heading to bed...
The brotli tests were skipped, I suppose I need a library for brotli support to work. But that I'll investigate later. Right now just want the damn spec file to build me shiny new curl RPM.
TESTDONE: 1005 tests out of 1006 reported OK: 99%
TESTFAIL: These test cases failed: 1451
TESTDONE: 1196 tests were considered during 1199 seconds.
TESTINFO: 190 tests were skipped due to these restraints:
Well I disabled the one curl test that failed (SMB which I don't need), building curl again...
But I was able to download what was needed on my laptop (which does have Intel wireless w/ drivers in the kernel) and get the kernel tainting broadcom driver for current kernel.
I need to rob someone so I can afford a low profile Intel pci-e card and not have to worry about binary blobs again.
Sucks being poor.
Gah so I finally got my local CentOS 7.5 system updated. I have to mirror the repos because I need them local for mock because I have sh*t bandwidth.
But dammit I need an Intel wireless card, this broadband requires closed source driver with a binary blob. And after updating, no Internet.
Tried rebooting into old kernel from CentOS 7.4 to download update and it wouldn't boot because of firmware updates. Gah.
It would mean to use libraries from any given repository you have to import the public key from that developer, but... that's the whole point.
#php I love composer for developing but I hate it for production because of security issues. I know Packagist doesn't scan code, you can publish to it and it is instantly available, so it is always possible for malicious code to end up in it.
What I would like - is something where developers can define their repository with GPG SIGNED packages.
composer install will fetch, verify the signature against the key ring, and refuse to install if fails.
It sucks that there are four different FireFox updates for the updates mirror - each 83M - when I just use FireFox downloaded from upstream anyway... but such is life.
Wish CentOS would purge outdated updates from the repo.
CentOS nut but no distro holy wars. Most my code in PHP. First distro - MKLinux DR3 in 1998 on a Beige G3. Male leaning Androgynous
Linux Geeks doing what Linux Geeks do..