Re: pkgin suggesting pkg downgrade?

To: Havard Eidnes <he%NetBSD.org@localhost>, tech-pkg%NetBSD.org@localhost
Subject: Re: pkgin suggesting pkg downgrade?
From: Jonathan Perkin <jperkin%pkgsrc.org@localhost>
Date: 2025年3月20日 08:06:43 +0000

* On 2025年03月20日 at 08:00 GMT, Jonathan Perkin wrote:

* On 2025年03月20日 at 07:41 GMT, Havard Eidnes wrote:

Is this a bug? I think it is... Or is it simply a "limitation",
and "you're not supposed to mix source and binary packages" (how
else do you then deal with vulnerabilities like this in a timely
manner?) If you think it's a bug, I can submit a PR, but I'd
like some feedback beforehand.

It's a limitation.

I forgot to mention. The recommended workaround that I tell my userswho want to build e.g. a custom package that pkgin will ignore forupdates is to change the PKGPATH, as then pkgin will consider the remotepackage to be a different package and will not replace it.

So for example in your case, do something like:
 cd security
 ln -s openssh openssh-he
 cd openssh-he
 bmake install

as then PKGPATH=security/openssh-he. You can do similar tricks to holda package, e.g. change PKGPATH in $PKG_DBDIR/<pkg>/+BUILD_INFO and'pkgin -f update'.Obviously incredibly hacky, and you get to keep both pieces when itbreaks, but will achieve the required outcome.

--
Jonathan Perkin pkgsrc.smartos.org
Open Source Complete Cloud www.tritondatacenter.com

Follow-Ups:
- Re: pkgin suggesting pkg downgrade?
  - From: Benny Siegert

References:
- pkgin suggesting pkg downgrade?
  - From: Havard Eidnes
- Re: pkgin suggesting pkg downgrade?
  - From: Jonathan Perkin

Prev by Date: Re: pkgin suggesting pkg downgrade?
Next by Date: Re: policy proposal: updating packages with many dependencies
Previous by Thread: Re: pkgin suggesting pkg downgrade?
Next by Thread: Re: pkgin suggesting pkg downgrade?
Indexes:

Home | Main Index | Thread Index | Old Index