From: Michael Tremer <michael.tremer@ipfire.org>
To: development@lists.ipfire.org
Subject: Re: Pending patches for upcoming Core Update(s)
Date: Fri, 19 Feb 2021 11:02:16 +0000 [thread overview]
Message-ID: <C86E0FDA-3D4C-40FD-889C-C64B006EC978@ipfire.org> (raw)
In-Reply-To: <26ED4C79-E8AE-466C-A6B0-35E0F44BA17A@ipfire.org>
[-- Attachment #1: Type: text/plain, Size: 1894 bytes --]
> On 19 Feb 2021, at 10:59, Michael Tremer <michael.tremer(a)ipfire.org> wrote:
>
> Hi,
>
>> On 19 Feb 2021, at 09:02, Matthias Fischer <matthias.fischer(a)ipfire.org> wrote:
>>
>> Hi,
>>
>> FYI and to avoid redundancies, I got one of the 64bit-'Devels' working on:
>>
>> tar => 1.34
>> bind => 9.11.28
>> nettle => 3.7.1
>> libgcrypt => 1.9.2
>> krb5 => 1.19.1
>
> These all sound fine :)
>
> It looks like Bind had another security issue, and Python might have one that affects us, too.
>
>> And, because it "just came my way":
>> rust => 1.50 (under x86-64, this is huge - about ~1.2GB sources)
>>
>> Opinions for this update(s)?
>
> Good question. I am currently working on a riscv64 port for IPFire 2, and Rust isn’t available at all for this architecture.
>
> Rust is indeed becoming such a pain to package and I do not expect any solutions to that in the near future. I assume that 1.2GB is the extracted size because the download is about 140 MB.
Stupid me. I looked at the source tarball, but rust cannot be built from scratch that easily.
>> I'm just not so sure with the latter - do we want this?
>> As I see it, 'suricata' must then also be at least shipped or even updated.
>
> Yes, and since this is security relevant, I would say we should update rustc regardless of the size of the source tarball.
>
>> Besides, 'suricata 6.0.1' is still running here with the 'usleep
>> (5000)'-patch. So far, without - seen! - problems. Any news on this? If
>> wanted, I could provide a patchset so "someone" else could test this!?
>
> I don’t doubt that it will run. The question is how does it behave under high load or other more challenging constraints? I must say that I am very disappointed that the suricata devs do not really care much about a problem many people ran into.
>
>> Best,
>> Matthias
>
> -Michael
prev parent reply other threads:[~2021-02-19 11:02 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-02-19 9:02 Matthias Fischer
2021-02-19 10:59 ` Michael Tremer
2021-02-19 11:02 ` Michael Tremer [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=C86E0FDA-3D4C-40FD-889C-C64B006EC978@ipfire.org \
--to=michael.tremer@ipfire.org \
--cc=development@lists.ipfire.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox