Historical bug tracker for the Pacman package manager.
The pacman bug tracker has moved to gitlab:
https://gitlab.archlinux.org/pacman/pacman/-/issues
This tracker remains open for interaction with historical bugs during the transition period. Any new bugs reports will be closed without further action.
The pacman bug tracker has moved to gitlab:
https://gitlab.archlinux.org/pacman/pacman/-/issues
This tracker remains open for interaction with historical bugs during the transition period. Any new bugs reports will be closed without further action.
FS#38884 - pacman: feature request: check integrity of installed package files
Attached to Project:
Pacman
Opened by Max Bruckner (FSMaxB) - Thursday, 13 February 2014, 01:10 GMT
Last edited by Allan McRae (Allan) - Sunday, 29 June 2014, 10:02 GMT
Opened by Max Bruckner (FSMaxB) - Thursday, 13 February 2014, 01:10 GMT
Last edited by Allan McRae (Allan) - Sunday, 29 June 2014, 10:02 GMT
|
DetailsI'd like pacman to have the funcitonality to check the integrity of the files installed by a package based on .MTREE . Combined with a check of the package authenticity via PGP this could be used to detect rootkits.
|
This task depends upon
Closed by Allan McRae (Allan)
Sunday, 29 June 2014, 10:02 GMT
Reason for closing: Upstream
Additional comments about closing: Dummy code is in pacman waiting on libarchive to support reading checksums from mtree files
Sunday, 29 June 2014, 10:02 GMT
Reason for closing: Upstream
Additional comments about closing: Dummy code is in pacman waiting on libarchive to support reading checksums from mtree files
Comment by Allan McRae (Allan) -
Thursday, 13 February 2014, 01:18 GMT
So... pacman -Qkk? Does not do checksums yet because libarchive does not support reading them, does does file size, modification time, permissions, ...
Comment by Max Bruckner (FSMaxB) -
Thursday, 27 February 2014, 16:00 GMT
I don't think pacman -Qkk is enough at the moment, this doesn't even detect data corruption.
Comment by Allan McRae (Allan) -
Thursday, 27 February 2014, 21:30 GMT
Yes - we are waiting on libarchive to add support for reading checksums from mtree files. There are dummy functions set up for when this occurs.
Comment by Max Bruckner (FSMaxB) -
Friday, 28 February 2014, 00:03 GMT
Oh, right, now I get it.
Comment by Rena Kunisaki (Rena) -
Monday, 21 December 2015, 04:15 GMT
Did this go anywhere? I was hoping to check integrity of all installed packages after a crash caused by faulty RAM. I'm surprised Pacman doesn't seem to have that ability.