Bug#250305: marked as done (apt-get: should validate md5sum of debs in it's cache before installing them)
Your message dated Tue, 06 Sep 2005 01:17:03 -0700
with message-id <E1ECYdb-0000Km-00@spohr.debian.org>
and subject line Bug#319142: fixed in apt 0.6.41
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 21 May 2004 23:51:58 +0000
>From james@ruari-quinn.demon.co.uk Fri May 21 16:51:58 2004
Return-path: <james@ruari-quinn.demon.co.uk>
Received: from cpc1-leed3-6-0-cust171.ldst.cable.ntl.com (shiri.gloaming.local) [80.6.171.171]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1BRJny-0007eu-00; Fri, 21 May 2004 16:51:58 -0700
Received: from james by shiri.gloaming.local with local (Exim 4.31 #1 (Debian))
id 1BRJnw-0006MI-R3
for <submit@bugs.debian.org>; Sat, 22 May 2004 00:51:56 +0100
To: submit@bugs.debian.org
Subject: apt-get: should validate md5sum of debs in it's cache before
installing them
Mail-Copies-To: never
From: James Troup <james@nocrew.org>
Date: Sat, 22 May 2004 00:51:56 +0100
Message-ID: <877jv5nxsz.fsf@shiri.gloaming.local>
User-Agent: Gnus/5.090016 (Oort Gnus v0.16) Emacs/20.7 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: James Troup <james@ruari-quinn.demon.co.uk>
Delivered-To: submit@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2004_03_25
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2004_03_25
X-Spam-Level:
Package: apt-get
Version: 0.5.24
Finally getting round to submitting this bug after just running into
it in the real world:
| (Reading database ... 63118 files and directories currently installed.)
| Preparing to replace octave2.1 2.1.57-1 (using .../octave2.1_2.1.57-2_hppa.deb) ...
| Unpacking replacement octave2.1 ...
| dpkg: error processing /var/cache/apt/archives/octave2.1_2.1.57-2_hppa.deb (--unpack):
| corrupted filesystem tarfile - corrupted package archive: Success
| dpkg-deb: subprocess paste killed by signal (Broken pipe)
| Errors were encountered while processing:
| /var/cache/apt/archives/octave2.1_2.1.57-2_hppa.deb
| E: Sub-process /usr/bin/dpkg returned an error code (1)
A simple size check unfortunately wouldn't have caught this as the
size is correct (the md5sum obviously isn't though). md5sum-ing large
apt caches will impose a speed hit on our slower architectures (for
reference: rameau, a slow arm box, can md5sum a 712Mb apt cache in 168
seconds), but I think we'll just have to live with that...
--
James
---------------------------------------
Received: (at 319142-close) by bugs.debian.org; 6 Sep 2005 08:19:47 +0000
>From katie@spohr.debian.org Tue Sep 06 01:19:47 2005
Return-path: <katie@spohr.debian.org>
Received: from katie by spohr.debian.org with local (Exim 3.36 1 (Debian))
id 1ECYdb-0000Km-00; Tue, 06 Sep 2005 01:17:03 -0700
From: Michael Vogt <mvo@debian.org>
To: 319142-close@bugs.debian.org
X-Katie: $Revision: 1.56 $
Subject: Bug#319142: fixed in apt 0.6.41
Message-Id: <E1ECYdb-0000Km-00@spohr.debian.org>
Sender: Archive Administrator <katie@spohr.debian.org>
Date: Tue, 06 Sep 2005 01:17:03 -0700
Delivered-To: 319142-close@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-CrossAssassin-Score: 5
Source: apt
Source-Version: 0.6.41
We believe that the bug you reported is fixed in the latest version of
apt, which is due to be installed in the Debian FTP archive:
apt-doc_0.6.41_all.deb
to pool/main/a/apt/apt-doc_0.6.41_all.deb
apt-utils_0.6.41_i386.deb
to pool/main/a/apt/apt-utils_0.6.41_i386.deb
apt_0.6.41.dsc
to pool/main/a/apt/apt_0.6.41.dsc
apt_0.6.41.tar.gz
to pool/main/a/apt/apt_0.6.41.tar.gz
apt_0.6.41_i386.deb
to pool/main/a/apt/apt_0.6.41_i386.deb
libapt-pkg-dev_0.6.41_i386.deb
to pool/main/a/apt/libapt-pkg-dev_0.6.41_i386.deb
libapt-pkg-doc_0.6.41_all.deb
to pool/main/a/apt/libapt-pkg-doc_0.6.41_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 319142@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Michael Vogt <mvo@debian.org> (supplier of updated apt package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 5 Sep 2005 22:59:03 +0200
Source: apt
Binary: apt-utils libapt-pkg-doc libapt-pkg-dev apt-doc apt
Architecture: source all i386
Version: 0.6.41
Distribution: unstable
Urgency: low
Maintainer: APT Development Team <deity@lists.debian.org>
Changed-By: Michael Vogt <mvo@debian.org>
Description:
apt - Advanced front-end for dpkg
apt-doc - Documentation for APT
apt-utils - APT utility programs
libapt-pkg-dev - Development files for APT's libapt-pkg and libapt-inst
libapt-pkg-doc - Documentation for APT development
Closes: 225947 280356 282918 316314 319142 321799 322120 322267 322483
Changes:
apt (0.6.41) unstable; urgency=low
.
* improved the support for "error" and "conffile" reporting from
dpkg, added the format to README.progress-reporting
* added README.progress-reporting to the apt-doc package
* improved the network timeout handling, if a index file from a
sources.list times out or EAI_AGAIN is returned from getaddrinfo,
don't try to get the other files from that entry
* Support architecture-specific extra overrides
(closes: #225947). Thanks to Anthony Towns for idea and
the patch, thanks to Colin Watson for testing it.
* Javier Fernandez-Sanguino Pen~a:
- Added a first version of an apt-secure.8 manpage, and modified
apt-key and apt.end accordingly. Also added the 'update'
argument to apt-key which was previously not documented
(Closes: #322120)
* Andreas Pakulat:
- added example apt-ftparchive.conf file to doc/examples
(closes: #322483)
* Fix a incorrect example in the man-page (closes: #282918)
* Fix a bug for very long lines in the apt-cdrom code (closes: #280356)
* Fix a manual page bug (closes: #316314)
* Do md5sum checking for file and cdrom method (closes: #319142)
* Change pkgPolicy::Pin from private to protected to let subclasses
access it too (closes: #321799)
* add default constructor for PrvIterator (closes: #322267)
* Reread status configuration on debSystem::Initialize()
(needed for apt-proxy, thanks to Otavio for this patch)
Files:
090ba076d2cb8ff0f5bd3268fc6db98b 785 admin important apt_0.6.41.dsc
e2b3b7efa18819697b98bc331be5d753 1404829 admin important apt_0.6.41.tar.gz
fc382e26c7799f24ee016d63a91e5444 84582 doc optional apt-doc_0.6.41_all.deb
b7489b71812e7f04a539c0f70eedfbab 107782 doc optional libapt-pkg-doc_0.6.41_all.deb
b7c2bd26e1a5ec6f1136647f9b6cfeaa 1234008 base important apt_0.6.41_i386.deb
5587979998d3b3dce41d7a83ab037029 78202 libdevel optional libapt-pkg-dev_0.6.41_i386.deb
907fa6bba6bd83fbad68d05f6af97af6 202964 admin important apt-utils_0.6.41_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFDHLu0liSD4VZixzQRApG0AJ9pQEbQ8+0OZFPIcS84DekOX3597QCeJir6
D9MF0Ztx9yF6zZxjbTItpeA=
=NX47
-----END PGP SIGNATURE-----
Reply to: