2014/1/17 Theo de Raadt <[email protected]>: >>On 2014/01/16 18:15, Alexander Hall wrote: >>> CVSROOT: /cvs >>> Module name: src >>> Changes by: [email protected] 2014/01/16 18:15:27 >>> >>> Modified files: >>> distrib/miniroot: install.sub >>> >>> Log message: >>> add signature checking and make checksum procedure more robust by >>> prefetching sets to a temporary directory within /home, iff it is a >>> separate mount point >>> >>> with rpe@ and deraadt@, "ffiinaallllyyy .... OK" rpe@ (r.i.p. progress bars) >>> >> >>I hope I don't have a separate /home on any of my small-ish CF-based systems >>:) > > If not enough space is found, it permits the old method of install. Which > means > you are installing un-authenticated sets. > > A side effect of this change is that upgrades become more safe, atomic > and coherent. All the sets are fetched, then sign checked, and then > finally applied. It is more difficult to get to an intermediate > broken install, due to say baseXX is there, but compXX fails to > download.
But probably the prefetching should not happen in the case of the local install (from disk), no? -- WBR, Vadim Zhukov
