Package Details: mongodb44 4.4.29-11

Git Clone URL: https://aur.archlinux.org/mongodb44.git (read-only, click to copy)
Package Base: mongodb44
Description: A high-performance, open source, schema-free document-oriented database (last version to support non-avx CPUs)
Upstream URL: https://www.mongodb.com/
Licenses: Apache, custom:SSPL1
Conflicts: mongodb
Provides: mongodb
Submitter: JstKddng
Maintainer: drankinatty
Last Packager: drankinatty
Votes: 3
Popularity: 0.000136
First Submitted: 2022-08-03 19:21 (UTC)
Last Updated: 2025-10-25 04:28 (UTC)

Dependencies (15)

Required by (18)

Sources (18)

Pinned Comments

drankinatty commented on 2025-12-31 20:31 (UTC)

WARNING, on December 15, an exploit was discovered in MongoDB zlib compressed headers:

##
# CVE-2025-14847
# https://www.cve.org/CVERecord?id=CVE-2025-14847
#
# MongoBleed zlib vulnerability - remove zlib compression
# https://www.theregister.com/2025/12/30/mongodb_vuln_exploited_cve_2025_14847/
#  --use-system-zlib
#

zlib compression should be disabled in all versions that cannot upgrade to the new version of MongoDB. For MongoDB44, that means zlib compressed headers will be disabled going forward.

drankinatty commented on 2025-10-22 13:05 (UTC) (edited on 2025-10-25 04:31 (UTC) by drankinatty)

boost and boost-libs ver. 1.89 removed libboost_system upstream. A patch was added to remove Scons references to libboost_system and the package simply needs to be rebuilt against the new boost packages. Additional patch added to suppress -Wsign-compare and -Wlto-type-mismatch warnings. All patches renamed with numeric prefix to ensure patch order as the number of patches increase - working fine, no other changes.

Latest Comments

drankinatty commented on 2025-12-31 20:31 (UTC)

WARNING, on December 15, an exploit was discovered in MongoDB zlib compressed headers:

##
# CVE-2025-14847
# https://www.cve.org/CVERecord?id=CVE-2025-14847
#
# MongoBleed zlib vulnerability - remove zlib compression
# https://www.theregister.com/2025/12/30/mongodb_vuln_exploited_cve_2025_14847/
#  --use-system-zlib
#

zlib compression should be disabled in all versions that cannot upgrade to the new version of MongoDB. For MongoDB44, that means zlib compressed headers will be disabled going forward.

drankinatty commented on 2025-10-22 13:05 (UTC) (edited on 2025-10-25 04:31 (UTC) by drankinatty)

boost and boost-libs ver. 1.89 removed libboost_system upstream. A patch was added to remove Scons references to libboost_system and the package simply needs to be rebuilt against the new boost packages. Additional patch added to suppress -Wsign-compare and -Wlto-type-mismatch warnings. All patches renamed with numeric prefix to ensure patch order as the number of patches increase - working fine, no other changes.

drankinatty commented on 2025-05-07 03:30 (UTC) (edited on 2025-05-07 03:32 (UTC) by drankinatty)

Note: after update to boost-1.88.0-2-x86_64, a package rebuild is required, however this will fail due to gcc-15. Patch Done! The package builds and runs fine with gcc-15 and boost-88. TODO add -Wno-sign-compare to CFLAGS and add -Wno-odr to CXXFLAGS for moz.js warnings. (next time)

drankinatty commented on 2025-02-08 08:15 (UTC) (edited on 2025-05-07 03:30 (UTC) by drankinatty)

Note: after update of boost-1.87.0-2-x86_64, a rebuild of the package is required. Additionally, the -Wstringop-overread and -Wstringop-overflow= options now flag about a dozen new warnings along with a few sign-compare and loop variables that should be references.

On fresh rebuild, installed size is reduced by 61M and mongodb idle CPU use is reduced significantly to ~0.3% every few seconds.

Updated to add mongodb-4.4.29-boost-1.87+stdmove.patch resolving all new warnings for non-reference used with range-based-for loops creating copy and removal of final redundant std::move() on function return.

danielkr commented on 2025-02-01 11:12 (UTC)

Replacing line #2292 in src/mongo-r4.4.29/SConstruct with: env.Append( CCFLAGS=['-march=armv8-a+crc', '-mtune=cortex-a72']) will make it compile and runnable on a raspberry PI (tested on 4 but should work on others as well). Make sure to run with makepkg -e so it does not unpack and overwrite your changes.

drankinatty commented on 2024-11-02 01:22 (UTC) (edited on 2024-11-02 07:39 (UTC) by drankinatty)

Adopted package, Updated to final 4.4.29 version. Patched to build against boost 1.86 and cleaned up redundant std::move() warnings. Disabled unnecessary preprocessor #warning message output (e.g. the FORTIFY_SOURCE messages) and suppressed char8_t warnings from the 3rd-party fmt package (-Wno-c++20-compat). The package now builds cleanly.

Since 4.4.29 was the final release of the 4.4 branch, this shouldn't change much except for dependency changes upstream. The 4.4 branch was the last branch built without AVX intrinsics enabled so it will run on any hardware or within VMs. It works quite well.

JstKddng commented on 2023-10-06 05:46 (UTC)

disowning since mongodb 7 kinda supports armv8

archerdm commented on 2022-12-29 17:03 (UTC)

Can we change the provides line to:

provides=(mongodb="$pkgver")

Thanks

JstKddng commented on 2022-08-04 00:22 (UTC)

Binary builds for x86_64 are available:

https://software.opensuse.org//download.html?project=home%3Ajustkidding%3Aarch&package=mongodb44

Binary builds for aarch64 are not available for now.