 @@ -1,229 +1,239 @@
 PKG_ADMIN(1)            NetBSD General Commands Manual            PKG_ADMIN(1)
 NNAAMMEE
      ppkkgg__aaddmmiinn -- perform various administrative tasks to the pkg system
 SSYYNNOOPPSSIISS
      ppkkgg__aaddmmiinn [--bbqqSSvvVV] [--CC _c_o_n_f_i_g] [--dd _l_s_d_i_r] [--KK _p_k_g___d_b_d_i_r] [--ss _s_f_x___p_a_t_t_e_r_n]
                _c_o_m_m_a_n_d [args ...]
 DDEESSCCRRIIPPTTIIOONN
      This command performs various administrative tasks around the NetBSD
      Packages System.
 OOPPTTIIOONNSS
      The following command-line options are supported:
      --bb      Print only the base names when matching package names for llssaallll
              and llssbbeesstt.
      --CC _c_o_n_f_i_g
              Read the configuration file from _c_o_n_f_i_g instead of the system
              default.
      --dd _l_s_d_i_r
              Set _l_s_d_i_r as the path to the directory in which to find matching
              package names for llssaallll and llssbbeesstt.
      --KK _p_k_g___d_b_d_i_r
              Set _p_k_g___d_b_d_i_r as the package database directory.  If this option
              isn't specified, then the package database directory is taken
              from the value of the environment variable PKG_DBDIR if it's set,
              otherwise it defaults to _/_v_a_r_/_d_b_/_p_k_g.
      --qq      Perform checks in a quiet manner.  In normal operation, ppkkgg__aaddmmiinn
              prints a `.' to standard output to indicate progress.  This
              option suppresses this progress indicator.
      --SS      Set the shell glob pattern for package suffixes when matching
              package names for llssaallll and llssbbeesstt to be the null suffix.
      --ss _s_f_x___p_a_t_t_e_r_n
              Set the shell glob pattern for package suffixes when matching
              package names for llssaallll and llssbbeesstt.  The default pattern is
              ".t[bg]z".
      --VV      Print version number and exit.
      --vv      Be more verbose.
      The following commands are supported:
      aadddd _p_k_g _._._.
              For each listed package, write the absolute pathnames of the
              files listed in its _+_C_O_N_T_E_N_T_S file together with the package they
              belong to into the package database.  This should be used only by
              pkg_view(1).
      aauuddiitt [--eess] [--tt _t_y_p_e] [_p_k_g] ...
              Check the listed installed packages for vulnerabilities.  If no
              package is given, check all installed packages.  If --ee is given,
              also include end-of-life information.  If --ss is given, check the
              signature of the pkg-vulnerabilities file before using it.  --tt
              restricts the reported vulnerabilities to type _t_y_p_e.
      aauuddiitt--ppkkgg [--eess] [--tt _t_y_p_e] [_p_k_g] ...
              Like aauuddiitt, but check only the given package names or patterns.
      aauuddiitt--bbaattcchh [--eess] [--tt _t_y_p_e] [_p_k_g_-_l_i_s_t] ...
              Like aauuddiitt--ppkkgg, but read the package names or patterns one per
              line from the given files.
      aauuddiitt--hhiissttoorryy [--ss] [--tt _t_y_p_e] [_p_k_g_b_a_s_e] ...
              Print all vulnerabilities for the given base package names.
      cchheecckk [_p_k_g _._._.]
              Use this command to check the files belonging to some or all of
              the packages installed on the local machine against the checksum
              which was recorded in the _+_C_O_N_T_E_N_T_S files at package installation
              time.  Symbolic links also have their integrity checked against
              the recorded value at package installation time.  If no addi-
              tional argument is given, the files of all installed packages are
              checked, else only the named packages will be checked (wildcards
              can be used here, see pkg_info(1)).
              The packages' _+_C_O_N_T_E_N_T_S files will be parsed and the checksum
              will be checked for every file found.  A warning message is
              printed if the expected checksum differs from the checksum of the
              file on disk.  Symbolic links are also checked, ensuring that the
              targets on disk are the same as the contents recorded at package
              installation time.
      cchheecckk--lliicceennssee _c_o_n_d_i_t_i_o_n
              Check if _c_o_n_d_i_t_i_o_n can be fulfilled with the currently set of
              accepted licenses.  Prints either yes or no to stdout if the con-
              dition can be parsed, otherwise it exits with error.
      cchheecckk--ppkkgg--vvuullnneerraabbiilliittiieess [--ss] _f_i_l_e
              Check format and hashes in the pkg-vulnerabilities file _f_i_l_e.  If
              --ss is given, also check the embedded signature.
      cchheecckk--ssiiggnnaattuurree _f_i_l_e _._._.
              Reports if _f_i_l_e is a correctly signed package.
      cchheecckk--ssiinnggllee--lliicceennssee _l_i_c_c_e_n_s_e
              Check if _l_i_c_e_n_s_e is a valid license name and if it is in the set
              of acceptable licenses.  Prints either yes or no to stdout if the
              condition can be parsed, otherwise it exits with error.
      ccoonnffiigg--vvaarr _v_a_r_i_a_b_l_e
              Print the current value of _v_a_r_i_a_b_l_e as used after parsing the
              configuration file.
      ddeelleettee _p_k_g _._._.
              For each listed package, remove all file entries in the package
              database that belong to the package.  This should be used only by
              pkg_view(1).
      dduummpp    Dump the contents of the package database, similar to ppkkgg__iinnffoo
              --FF.  Columns are printed for the key field used in the pkgdb -
              the filename -, and the data field - the package the file belongs
              to.
      ffeettcchh--ppkkgg--vvuullnneerraabbiilliittiieess [--ssuu]
              Fetch a new pkg-vulnerabilities file, check the format and if --ss
              is given the signature.  If all checks are passed, write it to
              pkgdb.  If --uu is given, the fetch is conditional and the file
              transfer is only done if the remote version is newer than the one
              in pkgdb.
      llssaallll _/_d_i_r_/_p_k_g_p_a_t_t_e_r_n
      llssbbeesstt _/_d_i_r_/_p_k_g_p_a_t_t_e_r_n
              List all/best package matching pattern in the given directory
              _/_d_i_r.  If the --dd flag is given, then that directory path over-
              rides _/_d_i_r.  Can be used to work around limitations of /bin/sh
              and other filename globbing mechanisms.  This option implements
              matching of pkg-wildcards against arbitrary files and directo-
              ries, useful mainly in the build system itself.  See pkg_info(1)
              for a description of the pattern.
              Example:
              yui# cd /usr/pkgsrc/packages/i386ELF/All/
              yui# ls unzip*
              unzip-5.40.tgz  unzip-5.41.tgz
              yui# pkg_admin lsall 'unzip*'
              /usr/pkgsrc/packages/i386ELF/All/unzip-5.40.tgz
              /usr/pkgsrc/packages/i386ELF/All/unzip-5.41.tgz
              yui# pkg_admin lsall 'unzip>=5.40'
              /usr/pkgsrc/packages/i386ELF/All/unzip-5.40.tgz
              /usr/pkgsrc/packages/i386ELF/All/unzip-5.41.tgz
              yui# pkg_admin lsall 'unzip>=5.41'
              /usr/pkgsrc/packages/i386ELF/All/unzip-5.41.tgz
              yui# pkg_admin lsbest 'unzip>=5.40'
              /usr/pkgsrc/packages/i386ELF/All/unzip-5.41.tgz
              yui# pkg_admin lsall /usr/pkgsrc/packages/i386ELF/All/'{mit,unproven}-pthread*'
              /usr/pkgsrc/packages/i386ELF/All/mit-pthreads-1.60b6.tgz
              /usr/pkgsrc/packages/i386ELF/All/unproven-pthreads-0.15.tgz
      ppmmaattcchh _p_a_t_t_e_r_n _p_k_g
              Returns true if _p_k_g matches _p_a_t_t_e_r_n, otherwise returns false.
      rreebbuuiilldd
              Rebuild the package database mapping from scratch, scanning sub-
              directories in _/_v_a_r_/_d_b_/_p_k_g for _+_C_O_N_T_E_N_T_S files, parsing them and
              writing the resulting absolute pathnames together with the pack-
              age they belong to into the package database.
              This option is intended to be used for upgrading from non-pkgdb-
              pkg_* tools to pkgdb-pkg_* tools, further manipulation of the
              pkgdb will be done by pkg_add(1), pkg_delete(1), and
              pkg_create(1).
              Needs to be run as root.
      rreebbuuiilldd--ttrreeee
              Rebuild the +REQUIRED_BY files from scratch by reresolving all
              dependencies.
              This option is intended to be used for fixing inconsistencies
              between the records of depending and depended-on packages, such
              as can arise by the use of ppkkgg__ddeelleettee --ff.
      sseett _v_a_r_i_a_b_l_e_=_v_a_l_u_e _p_k_g _._._.
              Set variable with information about the installed package.  Use
              uunnsseett to remove a variable.
              Packages that are not installed directly by the user but pulled
              in as dependencies are marked by setting ``automatic=YES''.
      ggppgg--ssiiggnn--ppaacckkaaggee ppkkgg
              Sign the binary package _p_k_g using GPG.
      xx550099--ssiiggnn--ppaacckkaaggee ppkkgg ssppkkgg kkeeyy cceerrtt
              Sign the binary package _p_k_g using the key _k_e_y and the certificate
              _c_e_r_t, using _s_p_k_g as output file.
      uunnsseett _v_a_r_i_a_b_l_e _p_k_g _._._.
              Remove an installation variable.
 EENNVVIIRROONNMMEENNTT
      PKG_DBDIR
              If the --KK flag isn't given, then PKG_DBDIR is the location of the
              package database directory.  The default package database direc-
              tory is _/_v_a_r_/_d_b_/_p_k_g.
 CCOONNFFIIGGUURRAATTIIOONN VVAARRIIAABBLLEESS
      The following variables change the behavior of ppkkgg__aaddmmiinn and are
      described in pkg_install.conf(5):
      CERTIFICATE_ANCHOR_PKGS
      CERTIFICATE_ANCHOR_PKGVULN
      CERTIFICATE_CHAIN
      GPG
      PKGVULNDIR
      PKGVULNURL
      IGNORE_URL
 FFIILLEESS
      /var/db/pkg/pkgdb.byfile.db
      /var/db/pkg/<pkg>/+CONTENTS
 SSEEEE AALLSSOO
      pkg_add(1), pkg_create(1), pkg_delete(1), pkg_info(1), pkg_view(1),
      pkg_install.conf(5), pkgsrc(7)
 HHIISSTTOORRYY
      The ppkkgg__aaddmmiinn command first appeared in NetBSD 1.4.
 AAUUTTHHOORRSS
      The ppkkgg__aaddmmiinn command was written by Hubert Feyrer.
-NetBSD 5.0                       May 30, 2008                       NetBSD 5.0
+NetBSD 5.0                      April 25, 2009                      NetBSD 5.0

 @@ -1,123 +1,130 @@
 PKG_INSTALL.CONF(5)       NetBSD File Formats Manual       PKG_INSTALL.CONF(5)
 NNAAMMEE
      ppkkgg__iinnssttaallll..ccoonnff -- configuration file for package installation tools
 DDEESSCCRRIIPPTTIIOONN
      The file ppkkgg__iinnssttaallll..ccoonnff contains system defaults for the package
      installation tools as a list of variable-value pairs.  Each line has the
      format VARIABLE=VALUE.  If the value consists of more than one line, each
      line is prefixed with VARIABLE=.
      The current value of a variable can be checked by running
            ppkkgg__aaddmmiinn ccoonnffiigg--vvaarr VVAARRIIAABBLLEE
      The following variables are supported:
      ACCEPTABLE_LICENSES
              List of licenses packages are allowed to carry.
      ACTIVE_FTP
              Force the use of active FTP.
      CERTIFICATE_ANCHOR_PKGS
              Path to the file containing the certificates used for validating
              binary packages.  A package is trusted when a certificate chain
              ends in one of the certificates contained in this file.  The cer-
              tificates must be PEM-encoded.
      CERTIFICATE_ANCHOR_PKGVULN
              Analogous to CERTIFICATE_ANCHOR_PKGS.  The _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s is
              trusted when a certificate chain ends in one of the certificates
              contained in this file.
      CERTIFICATE_CHAIN
              Path to a file containing additional certificates that can be
              used for completing certificate chains when validating binary
              packages or pkg-vulnerabilities files.
      CHECK_VULNERABILITIES
              Check for vulnerabilities when installing packages.  Supported
              values are:
              never          No check is performed.
              always         Passing the vulnerability check is required.  A
                             missing pkg-vulnerabilities file is considered an
                             error.
              interactive    The user is always asked to confirm installation
                             of vulnerable packages.
      DEFAULT_ACCEPTABLE_LICENSES
              List of common Free and Open Source licenses packages are allowed
              to carry.
      GPG     Path to gpg(1), which can be used to verify the signature in the
              _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s file when running
                    ppkkgg__aaddmmiinn cchheecckk--ppkkgg--vvuullnneerraabbiilliittiieess --ss
              or
                    ppkkgg__aaddmmiinn ffeettcchh--ppkkgg--vvuullnneerraabbiilliittiieess --ss
              It can also be used to verify and sign binary packages.
      GPG_KEYRING_PKGVULN
              Non-default keyring to use for verifying GPG signatures of
              _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s.
      GPG_KEYRING_SIGN
              Non-default keyring to use for signing packages with GPG.
      GPG_KEYRING_VERIFY
              Non-default keyring to use for verifying GPG signature of pack-
              ages.
      GPG_SIGN_AS
              User-id to use for signing packages.
      IGNORE_PROXY
              Use direct connections and ignore FTP_PROXY and HTTP_PROXY.
      IGNORE_URL
              One line per advisory which should be ignored when running
                    ppkkgg__aaddmmiinn aauuddiitt
              The URL from the _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s file should be used as
              value.
      PKG_PATH
              Search path as used by ppkkgg__aadddd.  Overridden by the environment
              variable PKG_PATH.
      PKGVULNDIR
              Directory name in which the _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s file resides.
              Default is _$_{_P_K_G___D_B_D_I_R_}.
      PKGVULNURL
              URL which is used for updating the local _p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s file
              when running
                    ppkkgg__aaddmmiinn ffeettcchh--ppkkgg--vvuullnneerraabbiilliittiieess
              The default is
              _f_t_p_:_/_/_f_t_p_._N_e_t_B_S_D_._o_r_g_/_p_u_b_/_N_e_t_B_S_D_/_p_a_c_k_a_g_e_s_/_v_u_l_n_s_/_p_k_g_-_v_u_l_n_e_r_a_b_i_l_i_t_i_e_s_._g_z
              _N_o_t_e: Usually, only the compression type should be changed.  Cur-
              rently supported are uncompressed files and files compressed by
              bzip2(1) (_._b_z_2) or gzip(1) (_._g_z).
      VERBOSE_NETIO
              Log details of network IO to stderr.
      VERIFIED_INSTALLATION
              Set trust level used when installation.  Supported values are:
              never          No signature checks are performed.
              always         A valid signature is required.  If the binary
                             package can not be verified, the installation is
                             terminated
              trusted        A valid signature is required.  If the binary
                             package can not be verified, the user is asked
                             interactively.
              interactive    The user is always asked interactively when
                             installing a package.
 FFIILLEESS
      @SYSCONFDIR@/pkg_install.conf  Default location for the file described in
                                     this manual page.
 SSEEEE AALLSSOO
      pkg_add(1), pkg_admin(1)
-NetBSD 5.0                     February 27, 2009                    NetBSD 5.0
+NetBSD 5.0                      April 25, 2009                      NetBSD 5.0