Monitoring AUR packages

Similar Messages

• [SOLVED] What are Git-type AUR packages?

  I read the ArchWiki Entry on Git, but I still don't really understand what it is in terms of Aur packages.
  I've seen this a couple of times, where there's a second git version of a package in AUR. For example, when I type 'prey' into Yaourt, I get a couple of results, among them:
  3 aur/prey-git 20100424-1 (5)
      Prey is a lightweight application that will help you track and find your laptop if it ever gets stolen.
  4 aur/prey-tracker 0.6.0-1 (100)
      Remote tracking and monitoring application for laptops, smartphones, and other electronic devices
  Either would install Prey on my computer, right? What are the differences and/or benefits of either?
  Last edited by Winston-Wolfe (2013-06-06 11:11:27)

  https://aur.archlinux.org/
  Statistics
  Packages     42851
  Orphan Packages     9729
  Packages added in the past 7 days     126
  Packages updated in the past 7 days     1052
  Packages updated in the past year     17219
  Packages never updated     10679
  Registered Users     46348
  Trusted Users     34
  x33a wrote:As someone mentioned on the forums recently, people should at least abandon the packages so others can take over.
  You can always e-mail the maintainer and if you don't get a response in two weeks, ask on the AUR ML to take that package over.
  In the meantime you can post a link to the updated PKGBUILD etc. in comments on the AUR page of that package.
  As with my posts, quantity != quality ;P

• Systemd gurus-want include x.service in AUR packages. proof read plz

  I don't use systemd myself, but I want to expand the functionality of my AUR packages by including a x.service file for them.  Attached are the proposed ones which need someone with systemd experience to proof read and comment.
  Monitorix
  [Unit]
  Description=A lightweight system monitoring tool that uses rrd databases.
  Wants=local-fs.target
  [Service]
  Type=oneshot
  RemainAfterExit=yes
  ExecStart=/etc/rc.d/monitorix start
  ExecStop=/etc/rc.d/monitorix stop
  [Install]
  WantedBy=multi-user.target
  Monitorix-sync-daemon
  [Unit]
  Description=Symlinks and syncs monitorix databases to RAM thus reducing HDD/SDD calls and speeding-up monitorix.
  Wants=local-fs.target
  [Service]
  Type=oneshot
  RemainAfterExit=yes
  ExecStart=/etc/rc.d/msd start
  ExecStop=/etc/rc.d/msd stop
  [Install]
  WantedBy=multi-user.target

  Dheart wrote:...
  Someone should add this to "READ BEFORE POSTING"
  This is not Ubuntu forum. You shouldn't EVER post such howto on the forum, we have a wiki for that reason. That thing you've written should go the wiki and then post a topic at wiki discussions and ask for opinion.
  Please, don't do that again, just contribute to the wiki.
  Yes, I'm quite aware that the wiki exists. The reason I'm writing it here is that the GUI frontends will probably come quite soon, and overall this is an early version. I don't see a reason to contribute this to the wiki when it will probably be unneeded and out-of-date relatively soon.

• How to list AUR packages in terminal with yaourt or other helper?

  I can list packages I have installed from AUR, for example to find all the developer components of Xfce that I have installed, I can run the following command:
      pacman -Qim | grep -E "Name           : xf".+devel
  Which outputs:
      Name           : xfce4-appfinder-devel
      Name           : xfce4-dev-tools-devel
      Name           : xfce4-panel-devel
      Name           : xfce4-session-devel
      Name           : xfce4-settings-devel
      Name           : xfdesktop-devel
      Name           : xfwm4-devel
  But, how do I find out if there are other packages that match the same regex pattern available in the AUR, maybe using yaourt? When I try:
      yaourt -Si | grep -E "Name           : xf".+devel
  I get no output. When I don't include .+devel, I find out that none of the AUR packages are included. If I try to force it to search the AUR by including -a, it says that's not a valid option.
  So, how do I search the AUR from the terminal?

  falconindy wrote:
  cower transparently supports regex -- but not thanks to the AUR. In reality, the query "xf.*-devel" is actually asking the AUR to search for "xf". The returned results are filtered against the regex "xf.*-devel" and out pops magic.
  Yaourt doesn't do this.
  I saw that, but Yaourt should be able to simply query the AUR without it trying to install stuff, but how? Does anyone know? I knew yaourt didn't support regex, that's why I was piping the output to grep. It worked for pacman, and works for yaourt when it uses pacman, but I can't figure out how to get it to return the contents of the AUR so I can pipe those contents through grep.

• What are the rules for AUR packages that rely on Alien bins [solved]

  Hi,
  I use ArchLinuxArm and want to create an AUR package that gets binaries from, lets say Fedora ARM, extracts them and modifies the config files in order to make it compatible with the Arch way of Linux. Of course, the PKGBUILD I am going to write will limit installation on the appropriate arcitecture, e.g. armv7h, then.
  Is this generally allowed or will my package be deleted after submission to AUR?
  Best,
  RaumZeit
  Last edited by RaumZeit (2013-10-27 01:38:31)

  AUR queries should be posted to the aur-general mailing list.
  As indicated in the thread linked by Karol above, it is permitted to append unsupported architectures to the arch array of a PKGBUILD that builds on officially supported architectures. That does not necessarily mean that we will allow packages that only build on unsupported architectures. This should be discussed on the mailing list. I have a vague memory of this coming up before and I think the consensus was that such packages would not be supported, but that consensus may have changed. Personally, I do not see a problem with such packages right now and I expect official supported to be extended in the future,  so I am in favor of allowing them.
  Packages that install pre-compiled binaries should be distinguished from normal packages with a "-bin" suffix. Such packages are permitted as long as they do not violate applicable licenses.

• AUR package interface - sort criteria out of action

  The "search by" field on the main AUR package list (http://aur.archlinux.org/packages.php) now only contains name and maintainer.  There used to be at least 5 options, one of which was the ability to search by age.  Searches in reverse order are also no longer possible.
  Problem exists regardless of logged in status.
  Can this be corrected please.

  Snowman wrote:
  tomk wrote:
  Probably something to do with this.
  Post it on Flyspray.
  No. It's due to an AUR update: http://www.archlinux.org/blog/2005/10/21/aur-127/
  You need to click on the column headers to sort.
  So how are we supposed to sort by age? It seems like that's the only really important sorting need, to see the latest packages in aur (aside from the 10 listed on the front page).

• [SOLVED] can't build an AUR package while installing Arch

  So I am nearly there installing Arch for the first time. And I will start with saying that I am really sorry if I missed the answer to my problem but I have had a look around the documentation and the general webz for something regarding this problem and haven't found anything.
  I am trying to set my wireless connection up but I apparently need the AUR b43-firmware package installed for my Broadcom BCM4322 [14e4:432b] to be functional.
  So I follow the documentation to install an AUR package, but I am stuck at the building stage as makepkg does not allow me to build if I am root, and I am root by default while installing/configuring Arch...
  What should I do to build and install that package so I have a wireless connection later on?
  Cheers
  Last edited by chtfn (2015-03-21 14:11:12)

  I am connected to the wired network, and I followed the steps to make it persistent for later, but I just wanted to go through the wireless stuff too to be extra sure I will be able to connect to the Internet later on. As it is the first time I install Arch, I am trying to be extra cautious, and having that security would make me feel more comfortable! Plus, I am keen to learn how to do those things from the command line.
  Isn't there a way to switch to a normal user just for a command, and automatically reverting back to root when that action is finished? Just like sudo but the other way round

• Customized license for an AUR package

  Hello community,
  yesterday I stumbled upon a very cool LaTeX package for creating commutative diagrams. I found it very useful and thus wanted to create an AUR package for it, but unfortunately it has a somewhat unusual license. Here it is:
  %% COPYRIGHT NOTICE: %
  %% This package may be copied and used freely for any academic %
  %% (not commercial or military) purpose, on condition that it %
  %% is not altered in any way, and that an acknowledgement is %
  %% included in any published work making substantial use of it. %
  %% IT IS SUPPLIED "AS IS", WITHOUT WARRANTY, EXPRESS OR IMPLIED. %
  %% If you are doing something where mistakes cost money (or where %
  %% success brings financial profit) then you must use commercial %
  %% software, not this package. In any case, please remember to %
  %% keep several backup copies of all files, and check everything %
  %% visually before sending final copy to the publishers. %
  %% You may use this package as a (substantial) aid to writing an %
  %% academic research or text book on condition that %
  %% (i) you contact me at a suitable time to ensure that you have %
  %% an up-to-date version (and any infelicities can be fixed), %
  %% (ii) you send me a copy of the book when it's published. %
  Also the source code is mostly kind of closed (you might take a look at http://www.paultaylor.eu/diagrams/diagrams.sty ). I contacted the author and asked whether it would be possible to change the license to some similar but more common license. Unfortunately it seems that the code needs much clean up before it can be published and the author doesn't have the time and resources to take care of it. Thus a closed license similar to the current license would be needed.
  So I'd like to ask whether there is a common license similar to the above and if not, whether I can still create an AUR package for it (and what license I should use in this case).
  Thanks,
  PhotonX
  Last edited by PhotonX (2012-07-06 08:42:42)

  I don't know if it is commonly used for software/code, but I don't think a creative commons license requires source distribution while an "Attribution + Noncommercial + NoDerivatives (by-nc-nd)" creative commons license seems to provide the restrictions the author is aiming for.  This would allow for the use of a clear and established license.
  Note: I just found a CC FAQ that advises against using it for software.  Though the reason seems to be that the license does not make any specific mention of source/object code thus it is not an open source license.  However, if one want's a closed license, that may do it ... it's at least worth considering.
  It also may be worth considering whether the code in this project uses previously GPL'ed code/tools which I'm pretty sure it would.  If that's the case then I believe it must also be GPL.  ("I beleive" = don't take my word on this ... but this should be looked into).
  EDIT: come to think of it, no actual "software" is being distributed as there is no compiled version of this.  What is being distributed is a document.  It is a style document with instructions that are interpreted by other software.  That other software could be, but need not be, a GPL'ed latex compiler.  It could be any sort of markup compiler that can work with latex-like instructions.  Anyhow, the point is what is to be protected is not a resulting program, but the text contents of the sty document itself.  Thefore a simpler document copyright would be more fitting than a software license, wouldn't it?  So, I would recommend a creative commons variant.  This allows others to use his sty document while (optionally) requiring attribution, disallowing modification of the sty document, and disallowing commercial use.
  EDIT2: following from the above, with a comparison - this is like distrubuting campaigns or other plugins for the GPL'ed game Battle for Wesnoth.  The artwork can be, and often is, under a more restrictive copyright of the author/creator.  A sty document seems more like the artwork and added levels of Wesnoth than additional software.
  EDIT3: another comparison would be distributed CSS styles.  These are (if anything) under document copyright not software license.
  Last edited by Trilby (2012-07-06 14:29:51)

• New binutils 2.22 causing havoc on many AUR packages

  Many posts around here showing that this is a common problem. ld has changed behaviour and has broken some packages that don't explicitly link to libraries.
  My example: Minutor
  gcc -Wl,--as-needed -o minutor minutor.o mapviewer.o colorschemes.o `pkg-config --libs gtk+-2.0` MinutorMap/MinutorMap.a
  /usr/bin/ld: MinutorMap/MinutorMap.a(nbt.o): undefined reference to symbol 'gzopen'
  /usr/bin/ld: note: 'gzopen' is defined in DSO /usr/lib/libz.so.1 so try adding it to the linker command line
  /usr/lib/libz.so.1: could not read symbols: Invalid operation
  collect2: ld returned 1 exit status
  make: *** [minutor] Error 1
  Related info I found on the Fedora Wiki
  All posts so far suggest adding things to LDFLAGS but none of them have worked for me yet. Found on thread "EMC2 Simulator (CNC) PKGBUILD":
  falconindy wrote:
  --as-needed isn't the problem here, it's transitive linking. See the first item in the ld changelog for binutils 2.22. There's two options:
  - add "-Wl,--copy-dt-needed-entries" to LDFLAGS
  - add "-lXt" to LDFLAGS
  Either way, this should be fixed upstream. You should explicitly link against any library you depend on.
  This didn't work for me whether I put it in the PKGBUILD or /etc/makepkg.conf
  Any ideas?
  EDIT: It appears that the LDFLAGS are not being added to the gcc line shown above no matter where I put the additional LDFLAGS. Perhaps I'm doing it wrong.
  Last edited by quantumphaze (2012-02-08 07:32:11)

  ngoonee wrote:P.S. - OT - I've got 99 AUR packages installed and this problem doesn't show up on any of them, so I'm not sure what 'common' means in your case
  I maintain one package in AUR and it hit this issue. From this I extrapolate that every AUR package is broken
  Anyway, patch for minutor:
  --- minutor.orig/Makefile 2011-05-21 08:34:22.000000000 +0200
  +++ minutor/Makefile 2012-02-08 11:15:13.682083948 +0100
  @@ -16,7 +16,7 @@
  all: $(EXEC)
  $(EXEC): $(OBJS) maplib
  - $(CC) -Wl,--as-needed -o $(EXEC) $(OBJS) $(LIBS) MinutorMap/MinutorMap.a
  + $(CC) -Wl,--as-needed -o $(EXEC) $(OBJS) $(LIBS) MinutorMap/MinutorMap.a -lz
  install: $(EXEC)
  install -d $(BIN) $(DESKTOP) $(PIXMAP)
  Last edited by Gusar (2012-02-08 10:14:44)

• Monitoring info package groups

  hi,
    How can one monitor info package groups ....
    any docs ....
    mail id : [email protected]
  Thanks in advance
  Regards
  Snigdha

  Hi Snigdha,
  Enter T-Code RSMON and you can go to the InfoPackage Groups screen or from RSA1 (Monitoring tab). Select the required InfoPackage group and choose Monitor Icon on the top to see its status. Also the same can be done through RSMO. But individual infopacks are listed there in RSMO.
  If you need further information let me know...
  Best Regards
  DMK
  *Assign points if it helps...
  The best way to appreciate someone's effort in SDN is giving them points.

• Upgrading certain AUR packages when specific official packages change

  I'm having some trouble with updating. As many Archers, I use some packages from AUR. In my case, I'm using bauerbill specifically to update packages from AUR just like I would with pacman. Quite convenient (thx, xyne!)
  But I have some packages that need to be rebuild from AUR when certain official packages are updated, e.g. compiling thinkhdaps against the new kernel version, or updating Lightning and Enigmail from AUR when I update my Thunderbird. However, so far I have not yet found a way to do this: calling specific commands when certain packages are changed.
  Is there any way to do this in pacman or one of the other arch package managers? Or do you have a clue about how to write a script that could do this? Any help would be greatly appreciated.
  Last edited by Natanji (2010-07-22 06:49:54)

  dmz wrote:You could watch (with inotify) the pacman log for specific applications and events. Turn this into a daemon, and execute relevant commands when application X is updated.
  But I think that seems to be a problem as you wouldn't know which applications to keep watching since some might need to be re-built, and others might not.
  I guess watching every package installed outside of pacman (pacman -Qm) would be the only way to see which AUR package needs to be re-built. Depending on how many packages you have installed from AUR or external sources, this could be very fast to extremely slow.

• Pan Newsreader AUR Packages Confusion...

  Hi,
  not sure of this is the right group for this, but i just built a new Arch box and was installing my standard newsreader, Pan (v.0135) from files in the AUR, a process I've completed successfully a couple of times on other machines.  Odd thing was, the version I installed kept segfaulting when I tried to delete article headers, a basic app function.   I tried recompiling, checked the dependencies individually, etc., but nothing worked. 
  Then, I carefully scanned the AUR package list again and noticed that the package I had compiled, "pan-git," was not the only AUR package listed for Pan.  I uninstalled pan-git then built and installed the correct pan-gtk3, which also gave me a functioning Pan v. 0.135, but this one doesn't constantly segfault--yay! 
  Maybe I missed something in the documentation that explains why package pan-git exists, but for now, it's confusing to anyone wanting to build a functioning instance of Pan on their system.
  The package that actually compiled to a properly functioning application is this one, pan-gtk3:
  https://aur.archlinux.org/packages.php?ID=50009
  thanks

  -git packages may be providing a more up to date software as it uses git instead of formal releases as the source.
  I can't access AUR atm, I'll have a look later. Fixed itself.
  Edit: You can just check the PKGBUILDS and see the differences
  https://aur.archlinux.org/packages.php?ID=43523
  https://aur.archlinux.org/packages.php?ID=31228 includes "Temporary bugfix version by K. Haley. With nzb gui patch by Heinrich Mueller." - as mentioned in the description
  https://aur.archlinux.org/packages.php?ID=43523 - uses gtk2
  Last edited by karol (2011-10-11 17:32:51)

• How to inspect AUR package PKBUILD and .install files

  Hi,
  Linux and arch newbie here. I was reading the wiki article about the AUR and noticed this bit:
  Warning: Carefully check all files. cd to the newly created directory and carefully check the PKGBUILD and any .install file for malicious commands. PKGBUILDs are bash scripts containing functions to be executed by makepkg: these functions can contain any valid commands or Bash syntax, so it is totally possible for a PKGBUILD to contain dangerous commands through malice or ignorance on the part of the author. Since makepkg uses fakeroot (and should never be run as root), there is some level of protection but you should never count on it. If in doubt, do not build the package and seek advice on the forums or mailing list.
  This is something that have not been doing at all in the past, but I am trying to improve my practices managing my system.
  The problem is, I do not know what exactly I am looking at or for in these files. If I give these files a look over before installing the package, can I honestly expect to spot something malicious? What would I need to learn to notice if something was fishy?
  Anyway, I am not to worried about this practically, because I only use a handful of AUR packages and I usually install ones based on recommendations, not just at random. But it still seemed interesting for the wiki to stress this so strongly. How important is this guidline anyway?
  Thanks!
  [EDIT: spelling]
  Last edited by supernerd (2014-06-25 10:41:13)

  I scan the whole PKGBUILD. I start by ensuring that the source link to the original source looks accurate. For example, take the source line for gmusicbrowser-git:
  source=("${pkgname}::git+http://github.com/squentin/gmusicbrowser.git")
  I know this is the correct link to the source, and so it passes my check. But suppose it had said:
  source=("${pkgname}::git+http://youvebeenhackedhub.com/1337haxorz/gmusicbrowser.git")
  I would become suspicious. Of course this is an exaggeration, but common sense goes a long ways here. At least check the first time..
  With the source verified, I ensure that the md5sum or sha256sum block has a sum. This way, if a download is compromised at the source, the sha256 or md5sum can catch it before you installed (this assumes that the PKGBUILD is not "bad" and has the sum number of a package that wasnt compromised). Note that with git this isnt necessary (the git process protects against such problems). Anytime a tarball is downloaded and extracted however, the sums should be present in the PKGBUILD. If I go to install an AUR package that has 'SKIP' for the md5sum/sha256sum block, I will double or triple check the source of the tarball (or of the patch files enclosed in the build directory, etc..)
  I also look for any "dangerous" commands in the build and install sections. For example, if I see "rm -rf" I had better see something like $pkgdir to start the directory path or be VERY sure the path is "safe". Since makepkg is not run as root this should theoretically not be a problem, but imagine if someone put "rm -rf /home/*" (warning: do not run that command on your system!) in there! This is mostly common sense; in time as you get more comfortable with bash and various linux commands it will make more and more sense and you will be able to spot mistakes.
  Also, consider the user posting the pkgbuild. "Trusted Users" are selected as trustworthy members of the community, so obviously you can feel much more comfortable with PKGBUILDS they have made (Xyne comes to mind..). For people you may not know, check what other PKGBUILDs they have available. After awhile, you develop a trust for certain people whos PKGBUILDs or software you have used. For example, I wouldnt hesitate to build/install using a PKGBUILD put up by BurntSushi since I use some of his software, have personally corresponded with him, and find him to be responsible. You might "develop" such rapport with other AUR users I dont even know about.
  Consider the vote count of a package as an approximate metric. Dont discount a package because it has 0 votes- it may just be that not many people have use for that particular software. Ive considered hosting a PKGBUILD for "xfce4-terminal-nowindowhints"; consider that tilers generally ignore them anyway, and that my package would only be useful for someone literally using xfce4-terminal with pytyle. How high do you think the vote count would be (even if the PKGBUILD had 0 errors)? On the other hand, you at least have a good chance the PKGBUILD is solid if the package has 354 people voting for it.. That said, the package could have been well-maintained before (when it received a ton of votes), and the quality has dropped since- just be mindful of these trends.
  Finally, adding all of these things together will leave the odds of a malicious PKGBUILD affecting your system pretty slim, though its certainly not impossible. I have never (to my knowledge to be fair) encountered a malicious PKGBUILD, though I have found a few that had errors or outdated sources, etc.
  Last edited by GSF1200S (2014-06-29 10:13:50)

• [Solved] Permissions issues when updating AUR package.

  Hi there,
  Today i was trying to update some of my AUR packages, but all I got is "Error - all files must have permissions of 644 or 755."
  It isn't very clear to me, i've changed all the files/directories permissions and i'm still getting this error so I gave up, i don't know what's going on, i've doing the same package process for a while with no problems.
  I can see the SRC file is compressed as root (root/root), I did a fresh Arch install three days ago to use all my hard disk drive (i was dualbooting), so I don't know if that could be the problem, I've changed my user's primary group anyways.
  - https://pastebin.osuosl.org/14606/
  EDIT*
  I don't know why some of my backup files had 400 and 755 persmissions, i changed back to 644, i did it before... and it didn't work...
  Last edited by AbaddonOrmuz (2015-01-22 21:44:53)

  The source files must have 644 or 755 permissions. In your first paste, the source files have 777 permissions.

• [SOLVED] Archiso : installing AUR packages on a live image

  Hi all,
  I'm quite an arch newbie, I'm trying to setup a live USB stick, with the help of archiso. My goal is to finally get an "audio oriented" system (with jack, ardour, qsampler, and so more...).
  During the setup everything was working very well, until I tried to add some AUR packages to the install.
  On the arch website, I found this tip, which gave me a great hope about this.
  I'm not so familiar with Arch package management, but ok, I try to make a test : adding the "qsampler" AUR package. It needs "linuxsampler", "qt4", and "liblscp" as dependencies. "linuxsampler" and "qt4" are official packages, so I just have to add them to packages.both in the archiso working directory. "liblscp" is an AUR package (with no dependency); so there is 2 AUR packages to install : "liblscp", and "qsampler".
  So I create a directory tree like described in the tip, download the two build packages from AUR, and for each of them I do (something) like described there :
  # tar -xvf tarball_filename.tar.gz
  # cd tarball_filename
  # makepkg --asroot
  # mv *.xz ..
  # cd ..
  # rm -r tarball_filename{,.tar.gz}
  And then:
  # repo-add customrepo.db.tar.gz *.xz
  (I'm staying as root because it's red written to stay as root for the image creation. I think it's stupid, but people make stupid things when they are desesperate. Sorry I didn't take the time to test the code above again, it's only memory, but it was very similar)
  I did the same for both architectures (i686 and x86_64), so that my custom repo looks like this:
  ~/liveusb/customrepo # ls -R
  i686 x86_64
  ./i686:
  customrepo.db customrepo.db.tar.gz liblscp-0.5.6-1-x86_64.pkg.tar.xz qsampler-0.2.3-1-x86_64.pkg.tar.xz
  ./x86_64:
  customrepo.db customrepo.db.tar.gz liblscp-0.5.6-1-x86_64.pkg.tar.xz qsampler-0.2.3-1-x86_64.pkg.tar.xz
  Oops... I just noticed I did wrong for i686 machines, but it doesn't matter for the moment, since I'm working on an x86_64 machine.
  As explained in the tip, I add the following lines to pacman.conf (in the archiso working directory):
  [customrepo]
  SigLevel = Optional TrustAll
  Server = file:///my/path/to/customrepo/$arch
  From my point of view, at this point, the USB stick is ready to be updated:
  ~/liveusb # ./build.sh -v
  and then (with /dev/sdf as my usb stick device):
  ~/liveusb # dd if=out/archlinux-2014.10.01-dual.iso of=/dev/sdf
  But when I boot on the USB stick, there's no trace of qsampler (linuxsampler, however, is present).
  Since it happened, I'm feeling like a lost, lonely man, on a desert island... Thinking about the "why", the "how"..., the meaning of life..., of package management... all this stuff
  I'm sure I did something wrong about the "custom repository", and the main reason is I don't deeply understand all the steps about this; that's why I'm looking for help
  Any idea?
  Many thanks
  Last edited by yolenoyer (2014-10-02 09:16:57)

  Thank you for the reply,
  I think I did a more trivial mistake :
  With archiso, the packages are automatically installed, from a package list file called "packages.both", and "packages.x86_64", "packages.i686" for architecture dependent packages. But they only use common repos by default. The "'qsampler" is not in official repos (that's why I choosed this one for my question).
  So, ok, I setup a common repo (with some mistakes but it was working), BUT...
  I just forgot to put the package name in the packages.both file...
  So, now that I did it, I just have an error about the package architecture, which I think possible to fix, just by rebuilding the common repo in a correct manner:
  ~/liveusb # ./build -v
  warning: vlc-2.1.5-3 is up to date -- reinstalling
  warning: mplayer-37224-2 is up to date -- reinstalling
  error: failed to prepare transaction (package architecture is not valid)
  :: package qsampler-0.2.3-1-x86_64 does not have a valid architecture
  ==> ERROR: Failed to install packages to new root
  Trilby wrote:Also, does this need to be a static iso image - is there a reason not to just do a persistent usb install?
  About the static iso image : the idea of building an iso image with all my personnal tools and config already installed on it is very pleasant to me, including the fact that you can burn it on a CD as well. The persistent acpect would be pleasant too, but in a secondary way.
  While I'm writing this message I really understand a bit more about all of this, since yesterday... Sometimes, simply posting a message in forums helps you to understand your own problem, because you have to be clear and concise!
  Thanks