bin/34628: [pkg_install] [patch] pkg-routines ignore the recorded md5 checksums

Erwin Lansing erwin at FreeBSD.org
Wed Nov 15 18:23:21 UTC 2006 

On Tue, Nov 14, 2006 at 05:03:37PM -0500, Mikhail Teterin wrote:
> ???????? 14 ???????? 2006 16:54, Erwin Lansing ???????:
> > Synopsis: [pkg_install] [patch] pkg-routines ignore the recorded md5
> > checksums
> 
> > I agree with sobomax that this functionality is not needed
> > and adds unnecessary overhead. No ports should ever install
> > the same file, that's what CONFLICTS are for, and there
> > should never be installed multiple versions of the same port.
> 
> That's a surprisingly naive way of thinking... The CONFLICTS functionality is 
> broken on occasion in bsd.port.mk, and not every port sets it anyway...

If CONFLICTS is broken, CONFLICTS should be fixed, not pkg_info. If some
ports don't set it, they should be fixed, not pkg_info.
> 
> `pkg_info -W' would also be able to warn about checksum mismatches, which 
> would suggest, a file has been modified (or corrupted) since getting 
> installed.

Now, that sounds more like a good idea, although in that case, the code
should moved outside the code for checking if multiple ports claim the
same file.  I'm thinking that this functionality may be better provided
as part of security packages as tripwire, but it could give easier
access to the recorded md5sums from PKGDB.
> 
> Anyway, what is the overhead exactly?
> 
Explained elsewhere in this thread.


Note, that my reaction was the same as sobomax' back in 2002 and you
then refused to give more information.  As you haven't shown any
interest in this PR since, I gathered you were no longer interested and
I closed it.  If you are willing to work on this, it would be great
though.

-erwin

-- 
Erwin Lansing                                     http://droso.org
Security is like an onion.          (o_ _o)
It's made up of several layers   \\\_\   /_///
And it makes you cry.            <____) (____>    erwin at lansing.dk
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-bugs/attachments/20061115/1d16d23a/attachment.pgp

More information about the freebsd-bugs mailing list