[pacman-dev] Adding an expiry time to repo databases

Giancarlo Razzolini grazzolini at archlinux.org
Fri Dec 13 12:54:33 UTC 2019


Em dezembro 13, 2019 8:39 Allan McRae escreveu:
> Hi all,
> 
> I have made a start at adding an expiry time to repo databases.   See
> the three patches here:
> 
> https://patchwork.archlinux.org/bundle/Allan/repo_timestamp/
> 
> My question is, what should we do once a database is determined to be
> expired?  Follow the example of a bad signature, and refuse to load it
> at all?  Just refuse to install anything from it, but still enable
> searching etc?
> 
> Just deciding "bad repo, don't use" will be much easier to implement...
> 
> Comments?
> 

I'd go with, if expired, don't touch it *at all*. Even searching from then
should not be allowed.

Regards,
Giancarlo Razzolini
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <https://lists.archlinux.org/pipermail/pacman-dev/attachments/20191213/fca83c19/attachment.sig>


More information about the pacman-dev mailing list