BUG: installer scripts don't properly verify themselves, page 1 - Forum

luc1anp Sorry, data for given user is currently unavailable. Please, try again later. View profile View wishlist Start conversation Invite to friends Invite to friends Accept invitation Accept invitation Pending invitation... User since {{ user.formattedDateUserJoined }} Friends since {{ user.formattedDateUserFriended }} Unblock chat User blocked This user's wishlist is not public. You can't chat with this user due to their or your privacy settings. You can't chat with this user because you have blocked him. You can't invite this user because you have blocked him.

Comment buried. Unhide

luc1anp

vert

Sorry, data for given user is currently unavailable. Please, try again later. View profile View wishlist Start conversation Invite to friends Invite to friends Accept invitation Accept invitation Pending invitation... User since {{ user.formattedDateUserJoined }} Friends since {{ user.formattedDateUserFriended }} Unblock chat User blocked This user's wishlist is not public. You can't chat with this user due to their or your privacy settings. You can't chat with this user because you have blocked him. You can't invite this user because you have blocked him.

Registered: Jan 2012

From United States

Posted May 10, 2018

1

The linux installer scripts only compute the md5 of the initial part of the script, up to the size defined by the filesizes variable. The filesizes variable is insufficient to cover the entire file in every installer script I've looked at so far. This can be easily tested by modifying the last line of a file and running the --check feature, which will succeed in spite of having a corrupt file.

The obvious case where this is an issue is in large downloads that fail partway through, as only a small initial portion of the file is ever verified.

Bonus Question: Are complete checksums posted somewhere to manually verify the downloads?

kbnrylaec Sorry, data for given user is currently unavailable. Please, try again later. View profile View wishlist Start conversation Invite to friends Invite to friends Accept invitation Accept invitation Pending invitation... User since {{ user.formattedDateUserJoined }} Friends since {{ user.formattedDateUserFriended }} Unblock chat User blocked This user's wishlist is not public. You can't chat with this user due to their or your privacy settings. You can't chat with this user because you have blocked him. You can't invite this user because you have blocked him.

Comment buried. Unhide

kbnrylaec

Asuka Tanaka

Sorry, data for given user is currently unavailable. Please, try again later. View profile View wishlist Start conversation Invite to friends Invite to friends Accept invitation Accept invitation Pending invitation... User since {{ user.formattedDateUserJoined }} Friends since {{ user.formattedDateUserFriended }} Unblock chat User blocked This user's wishlist is not public. You can't chat with this user due to their or your privacy settings. You can't chat with this user because you have blocked him. You can't invite this user because you have blocked him.

Registered: Nov 2011

From Taiwan

Posted May 10, 2018

2

luc1anp: Bonus Question: Are complete checksums posted somewhere to manually verify the downloads?

https://www.gog.com/forum/general/any_md5_check_available/post4

Discover CD PROJEKT RED games

Highlights

Featured