Package Details: php-pear 1:1.10.12-2

Git Clone URL: https://aur.archlinux.org/php-pear.git (read-only)
Package Base: php-pear
Description: PHP Extension and Application Repository
Upstream URL: https://pear.php.net/
Licenses: PHP
Submitter: Pierre
Maintainer: Pierre
Last Packager: Pierre
Votes: 35
Popularity: 0.065858
First Submitted: 2016-01-03 12:32
Last Updated: 2019-02-14 13:32

Latest Comments

1 2 3 Next › Last »

heapifyman commented on 2019-02-14 12:48

Verion 1:1.10.12-1 fails to build. Incorrect SHASUM of "install-pear-nozlib.phar"?

Erstelle php-pear... ==> Erstelle Paket: php-pear 1:1.10.12-1 (Do 14 Feb 2019 13:34:01 CET) ==> Prüfe Laufzeit-Abhängigkeiten... ==> Prüfe Buildtime-Abhängigkeiten... ==> Empfange Quellen... -> install-pear-nozlib.phar gefunden -> install-pear-nozlib.phar.sig gefunden ==> Überprüfe source Dateien mit sha256sums... install-pear-nozlib.phar ... FEHLGESCHLAGEN install-pear-nozlib.phar.sig ... Übersprungen ==> FEHLER: Eine oder mehrere Dateien überstanden nicht die Gültigkeits-Prüfung!

Pierre commented on 2019-01-24 17:19

Good news, I just got confirmation that the AUR package did not fetch the tainted PEAR installer. See https://mobile.twitter.com/pear/status/1088484966898585601

amish commented on 2019-01-24 04:27

As per these links nozlib file was NOT "harmed" https://mobile.twitter.com/pear/status/1088195072158547968 https://mobile.twitter.com/co3k/status/1087178191070875648

Since php-pear AUR package used install-pear-nozlib.phar "hopefully" installing this did not do anything malicious.

stutz commented on 2019-01-23 09:32

according to the wiki this package should provide pecl as well, it doesn't though.

kmvan commented on 2019-01-23 05:47

Cloning php-pear build files... Failed to prepare transaction: target not found: php-pear

amish commented on 2019-01-21 05:21

Correct way to download a github release is: source=("https://github.com/pear/pearweb_phars/archive/v${pkgver}.tar.gz")

and then: package() { ... php -n ${srcdir}/pearweb_phars-${pkgver}/install-pear-nozlib.phar \ ... }

This avoids git in makedepends and unncessary git based download.

And you wont have to change "commit" number everytime a new pear package is released.

boppy commented on 2018-12-23 14:13

Same Checksum problem over here... Tried it 5 times. Also deleted the temp path manually.

Wanted checksum is b6720f79742324c745ea61d4fe412949b98aa81ea59e0875e72dc2e57a12dcd1, while files checksum is 96eb42707944630552a76865aec8645c0fd4c32698ad34f1b29946affeed1485

Also true for the direct download of the file:

curl https://pear.php.net/install-pear-nozlib.phar | sha256sum -

This also gives 96eb...

twheel commented on 2018-12-19 14:06

I had the same issue as dschrempf. Redownloading fixed it.

Pierre commented on 2018-12-15 12:34

The checksum is fine. You probably downloaded a broken file.

dschrempf commented on 2018-12-14 11:04

Hello!

I cannot install this package:

==> Making package: php-pear 1:1.10.7-1 (Fri 14 Dec 2018 12:03:44 PM CET) ==> Checking runtime dependencies... ==> Checking buildtime dependencies... ==> Retrieving sources... -> Found install-pear-nozlib.phar ==> Validating source files with sha256sums... install-pear-nozlib.phar ... FAILED ==> ERROR: One or more files did not pass the validity check!

Is it possible that the checksums have not been updated?