Created attachment 220368 [details]
* Update to 0.13.7
WARN: Makefile: for new port, make $FreeBSD$ tag in comment section empty, to make SVN happy.
testport: OK (poudriere: 12.2-RELEASE-p1 amd64 tested)
Created attachment 220876 [details]
Currently the port can't be built since the sources can't be downloaded. The build logs are attached.
Thanks very much!
(In reply to Alex from comment #2)
I've noticed the same issue with poudriere. Re-running the build a couple of times did the trick for me. I believe there are some limits on codeload.github.com being hit. If you have any suggestions how to overcome this I can give them a try.
I don't think this has anything to do with codeload.github.com. I think it might be a permission issue somewhere. The previous version of security/vuls which is on the 2020Q4 branch is working just fine.
HEAD - http://beefy6.nyi.freebsd.org/data/121amd64-default/558707/logs/errors/vuls-0.9.0.92.log
2020Q4 - http://beefy2.nyi.freebsd.org/data/121amd64-quarterly/527662/logs/vuls-0.6.1.log
if you try to download some a file in a folder where you don't have write permissions you'll get this:
shell# fetch https://codeload.github.com/cenkalti/backoff/tar.gz/v2.2.1\?dummy\=/cenkalti-backoff-v2.2.1_GH0.tar.gz
fetch: https://codeload.github.com/cenkalti/backoff/tar.gz/v2.2.1?dummy=/cenkalti-backoff-v2.2.1_GH0.tar.gz: size of remote file is not known
I think this is the problem(only those files fail to download):
you get the same error if you try to download the file into a folder that doesn't exist.
Created attachment 220879 [details]
Fix dependencies conflict
The fetch failure was due to a conflict in dependencies. This patch fixes it.
Created attachment 220880 [details]
Comment on attachment 220880 [details]
It builds cleanly now. Thanks for the pointers!
Created attachment 221429 [details]
(In reply to Alexandru Ciobanu from comment #9)
Thanks for the update Alexandru, but the diff you attached seems incomplete. I did a quick `make gomod-vendor` and it turns out that some dependencies need an update too.
- GH_SUBDIR is not needed with go:modules and can be removed.
- post-patch target can be removed entirely because GH_TUPLE and post-extract already place dependencies in correct subdirs.
Please see/test/approve attached vuls-0.13.7.patch.