From owner-freebsd-ports@FreeBSD.ORG Wed Jul 28 22:18:03 2010 Return-Path: Delivered-To: freebsd-ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 336D3106567B for ; Wed, 28 Jul 2010 22:18:03 +0000 (UTC) (envelope-from kamikaze@bsdforen.de) Received: from mail.bsdforen.de (bsdforen.de [212.204.60.79]) by mx1.freebsd.org (Postfix) with ESMTP id CFAFF8FC24 for ; Wed, 28 Jul 2010 22:18:02 +0000 (UTC) Received: from mobileKamikaze.norad (HSI-KBW-078-042-098-160.hsi3.kabel-badenwuerttemberg.de [78.42.98.160]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.bsdforen.de (Postfix) with ESMTP id 850CF8A2329; Thu, 29 Jul 2010 00:18:01 +0200 (CEST) Message-ID: <4C50AC99.70904@bsdforen.de> Date: Thu, 29 Jul 2010 00:18:01 +0200 From: Dominic Fandrey User-Agent: Mozilla/5.0 (X11; U; FreeBSD amd64; en-GB; rv:1.9.1.11) Gecko/20100722 Thunderbird/3.0.6 MIME-Version: 1.0 To: "Andrew W. Nosenko" References: <4c4fac09.Kkzz6V/G5TxaiQAZ%perryh@pluto.rain.com> <4C504F25.8050607@bsdforen.de> In-Reply-To: X-Enigmail-Version: 1.0.1 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: Marcin Wisnicki , freebsd-ports@freebsd.org Subject: Re: Strange contents on some ftp mirrors X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 28 Jul 2010 22:18:03 -0000 On 28/07/2010 23:24, Andrew W. Nosenko wrote: > On Wed, Jul 28, 2010 at 18:39, Dominic Fandrey wrote: >> On 28/07/2010 15:15, Marcin Wisnicki wrote: >>> On Tue, 27 Jul 2010 21:03:21 -0700, perryh wrote: >>> >>>> Marcin Wisnicki wrote: >>>>> At this very moment, french package mirror has INDEX newer than in >>>>> other mirrors: >>>>> >>>> ... >>>>> >>>>> yet it does not have those packages. >>>>> >>>>> How could something like this happen ? >>>> >>>> By being examined while a resync was in process: evidently the new INDEX >>>> file had been transferred but that package file (and likely others) were >>>> still in transit or perhaps not even started yet. Mirroring is not an >>>> instantaneous process. >>> >>> Yeah that was it, but it is really, really bad. >>> Mirroring must be atomic (mirror to temporary directory then rename). >>> Otherwise there is a large window of time every couple of days when upgrading >>> packages will at best fail or leave you with broken system. >>> I did binary upgrade with pkg_upgrade yesterday and half of my system was linked >>> against wrong libintl version :( >> >> The next version of pkg_upgrade will check every downloaded package >> against the master server after completing the download. > > Excuse me? The ports check downloaded source tarball against SHA > checksum. Just for nay case like downloading error or malicious > inject. Did you try to say that binary package have no such > safeguard? Exactly. The INDEX does not contain such information. The thing is to do that, the pointyhat INDEX format would have to differ from the ports INDEX format. A possiblity of course, but also a source of trouble if the INDEX format of the ports should ever change, something I desire: http://www.freebsd.org/cgi/query-pr.cgi?pr=148783 Another solution would be to add an empty column that pointyhat can fill in. -- A: Because it fouls the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing on usenet and in e-mail?