Arch Linux User Repository

In 0.10.0 they look to have started automated releases, including source tarballs (which I’ve switched to) and x86_64-unknown-linux-gnu builds (which I won’t switch to, at least for now).

Tests are again failing in what looks to be an unimportant way; I’ve filed https://github.com/mozilla/cargo-vet/issues/638. In the meantime, makepkg --nocheck.

0.9.1 is a simple update, just bumping pkgver to 0.9.1 and the sha256sum to fd80641841445d6b2ba21db3dc9f9159c0881b6063bf2071647d9a67e57d7073.

Some of the tests are failing, but I think that’s https://github.com/mozilla/cargo-vet/issues/602 (tests depended on Cargo implementation details that changed, and although it’s fixed on Git no release has been made since).

I had to disable LTO to build in a clean chroot:

diff --git i/PKGBUILD w/PKGBUILD
index cd82b0a..3416397 100644
--- i/PKGBUILD
+++ w/PKGBUILD
@@ -8,6 +8,7 @@ pkgdesc='Supply-chain security for Rust'
 arch=('x86_64' 'i686' 'aarch64' 'armv7h')
 url='https://github.com/mozilla/cargo-vet'
 license=('Apache' 'MIT')
+options=("!lto")
 depends=(
     cargo
     gcc-libs

Without this change the package failed to build in a chroot with something like the following error:

          /usr/bin/ld: /build/cargo-vet/src/cargo-vet-0.6.1/target/release/deps/cargo_vet-ad15482393d7ca58: hidden symbol `GFp_ia32cap_P' isn't defined
          /usr/bin/ld: final link failed: bad value
          collect2: error: ld returned 1 exit status

  = note: some `extern` functions couldn't be found; some native libraries may need to be installed or have their path specified
  = note: use the `-l` flag to specify native libraries to link
  = note: use the `cargo:rustc-link-lib` directive to specify the native libraries to link with Cargo (see https://doc.rust-lang.org/cargo/reference/build-scripts.html#cargorustc-link-libkindname)