Date: Wed, 15 Nov 2006 19:23:20 +0100 From: Erwin Lansing <erwin@FreeBSD.org> To: Mikhail Teterin <mi+mx@aldan.algebra.com> Cc: freebsd-bugs@freebsd.org, mi@aldan.algebra.com Subject: Re: bin/34628: [pkg_install] [patch] pkg-routines ignore the recorded md5 checksums Message-ID: <20061115182320.GF69151@droso.net> In-Reply-To: <200611141703.38311.mi%2Bmx@aldan.algebra.com> References: <200611142154.kAELsKN4007777@freefall.freebsd.org> <200611141703.38311.mi%2Bmx@aldan.algebra.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--1IOMu5+WhZnpLp54 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Nov 14, 2006 at 05:03:37PM -0500, Mikhail Teterin wrote: > ???????? 14 ???????? 2006 16:54, Erwin Lansing ???????: > > Synopsis: [pkg_install] [patch] pkg-routines ignore the recorded md5 > > checksums >=20 > > I agree with sobomax that this functionality is not needed > > and adds unnecessary overhead. No ports should ever install > > the same file, that's what CONFLICTS are for, and there > > should never be installed multiple versions of the same port. >=20 > That's a surprisingly naive way of thinking... The CONFLICTS functionalit= y is=20 > broken on occasion in bsd.port.mk, and not every port sets it anyway... If CONFLICTS is broken, CONFLICTS should be fixed, not pkg_info. If some ports don't set it, they should be fixed, not pkg_info. >=20 > `pkg_info -W' would also be able to warn about checksum mismatches, which= =20 > would suggest, a file has been modified (or corrupted) since getting=20 > installed. Now, that sounds more like a good idea, although in that case, the code should moved outside the code for checking if multiple ports claim the same file. I'm thinking that this functionality may be better provided as part of security packages as tripwire, but it could give easier access to the recorded md5sums from PKGDB. >=20 > Anyway, what is the overhead exactly? >=20 Explained elsewhere in this thread. Note, that my reaction was the same as sobomax' back in 2002 and you then refused to give more information. As you haven't shown any interest in this PR since, I gathered you were no longer interested and I closed it. If you are willing to work on this, it would be great though. -erwin --=20 Erwin Lansing http://droso.org Security is like an onion. (o_ _o) It's made up of several layers \\\_\ /_/// And it makes you cry. <____) (____> erwin@lansing.dk --1IOMu5+WhZnpLp54 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFFW1sYqy9aWxUlaZARAgReAJ9GkksiaNjYobMvykZJuwEkjp9xkQCgzPvv uq5DT2KXDnfO2JvSUhWSz0k= =x7AE -----END PGP SIGNATURE----- --1IOMu5+WhZnpLp54--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061115182320.GF69151>