From: Baurzhan Ismagulov <ibr@radix50.net>
To: isar-users@googlegroups.com
Subject: Re: Discussion: Base-apt features
Date: Wed, 25 Sep 2019 10:12:41 +0200 [thread overview]
Message-ID: <20190925081241.bmcblmlsax6xb4i4@yssyq.m.ilbers.de> (raw)
In-Reply-To: <20190925074122.GA12490@lightning>
Hello Vijai Kumar,
thanks for summarizing.
On Wed, Sep 25, 2019 at 01:11:22PM +0530, Vijai Kumar K wrote:
> 1. Support for adding source packages.
> 2. Support for using password protected keys.
Yes, I think those are necessary use cases.
> 3. Support for specifying the signing key.
>
> Right now, the signing mechanism uses the default gpg key of the system.
> This is problematic in many ways. Especially for CI. In the current
> implementation, eventhough we specify the key, we are not really using it.
This is what I'm currently wondering. What do we need to cover signed base-apt?
Is the following enough?
1. debootstrap succeeds.
2. apt-get update in the rootfs succeeds.
IIUC, (1) should be covered as of next 006a6ed "u-boot-custom: Add control for
u-boot-tools package build". (2) seems to be covered in ibr/next fb61019
"scripts: Enable gnupg in ci_build.sh" (subject to rebasing). This has to be
verified, though (feedback welcome). If proven correct, would we be "really
using it"?
> 4. Support for adding packages only to base-apt.
>
> Sometimes, we might need a package to be present in base-apt but not in
> the target yet. Things like dev & dbg packages. It would be good if we
> have something like BASE_APT_INSTALL which contains the list which would
> be populated only in base-apt.
Sounds useful, also for stuff like strace, optional gcc libs, etc.
Additionally, we may want to download all binary packages of the source
packages we need (for the requested arches and distros only). That would cover
dev and dbg.
> 5. Refactoring code to consolidate reprepro calls.
I'd suggest to evaluate other tools and libs like python-apt and / or aptly.
After looking at Acquire::By-Hash use cases in more detail, I've seen that we
do need it. According to Jan, it isn't supported by reprepro. I think in the
long term, we'll have to use python-apt and touch bitbake to get everything
right.
With kind regards,
Baurzhan.
next prev parent reply other threads:[~2019-09-25 8:12 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-09-25 7:41 Vijai Kumar K
2019-09-25 8:12 ` Baurzhan Ismagulov [this message]
2019-09-25 9:02 ` Vijai Kumar K
2019-09-25 9:51 ` Baurzhan Ismagulov
2019-09-25 10:14 ` Claudius Heine
2019-09-25 10:26 ` Baurzhan Ismagulov
2019-09-25 11:56 ` Claudius Heine
2019-09-25 12:19 ` Baurzhan Ismagulov
2019-09-25 12:29 ` Jan Kiszka
2019-09-25 12:39 ` Claudius Heine
2019-09-26 9:40 ` Henning Schild
2019-09-26 11:02 ` Vijai Kumar K
2019-09-26 11:30 ` Henning Schild
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190925081241.bmcblmlsax6xb4i4@yssyq.m.ilbers.de \
--to=ibr@radix50.net \
--cc=isar-users@googlegroups.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox