Package format
Package format is a type of archive containing computer programs and additional metadata needed by package managers;[1] an instance of this type of archive is called a package. While the archive file format itself may be unchanged, package formats carry additional metadata, such as a manifest file or certain directory layouts. Packages may contain either source code or executable files.
Packages may be converted from one type to another with software such as Alien.
Software supply chain and security
Packages are an important component in managing the security and integrity of the software supply chain. Packages containing executables and configuration can be digitally signed to establish the integrity of running software and protect against tampering.[2]
Package formats that support code signing include .deb (Debian), .msi (Microsoft Windows), .apk (Android) and .ipa (IOS, IPadOS).
Common formats
Specialized formats
| Format | Consumed by |
|---|---|
| AIR | Adobe AIR |
| Bottle | Homebrew |
BSD-based formats
| Format | Consumed by |
|---|---|
| .ipa | IOS, IPadOS |
| Ports (BSD) | pkgsrc, FreeBSD, OpenBSD[3] |
| PKG | macOS, iOS, PlayStation 3, Solaris, SunOS, UNIX System V, Symbian, BeOS, Apple Newton |
Linux-based formats
| Format | Consumed by |
|---|---|
| AAB | Android |
| APK (Alpine) | Alpine Linux[4] |
| APK (Android) | Android |
| AppImage | Linux distribution-agnostic |
| Deb | Debian and its derivatives, such as Raspberry Pi OS, Kali Linux, Ubuntu, and Linux Mint[5] |
| ebuild | Gentoo Linux[6] |
| eopkg | Solus[7] |
| Nixpkg | Nix, NixOS, Home Manager |
| Portage | Gentoo Linux, ChromeOS[8] |
| Flatpak | Linux distribution-agnostic |
| .app, .hap | HarmonyOS, OpenHarmony, Oniro OS and Linux based Unity Operating System |
| PISI | Pardus |
| .pkg.tar.zst | Arch Linux |
| PUP and PET | Puppy Linux (PUP format is deprecated since version 3.0) |
| RPM | Red Hat Enterprise Linux, Fedora, derivatives such as CentOS,[9] and SUSE Linux Enterprise, openSUSE |
| Snap | Linux distribution-agnostic, mainly developed for Ubuntu |
Windows formats
| Format | Consumed by |
|---|---|
| APPX and APPXBundle | Windows 8 and later, Windows Phone[10] |
| Windows Installer package / MSI | Windows Installer on Microsoft Windows |
Generic formats
Arch Linux's Pacman[11] and Slackware[12] use 'tar' archives with generic naming but specific internal structures.
References
- ^ Justin Angelo Cappos, Stork: Secure Package Management for VM Environments[permanent dead link], ProQuest, 2008, p. 128;
- ^ Cooper, David; Feldman, Larry; Witte, Gregory (May 23, 2018). "Protecting Software Integrity Through Code Signing". National Institute of Standards and Technology. ITL Bulletin.
- ^ "Ports - Working with Ports". OpenBSD.org.
- ^ "Alpine package format - Alpine Linux". wiki.alpinelinux.org. Retrieved May 19, 2016.
- ^ "InstallingSoftware - Community Ubuntu Documentation". Help.ubuntu.com. Retrieved April 24, 2013.
- ^ "ebuild". Retrieved July 29, 2015.
- ^ "Basics to Package Management". Archived from the original on August 6, 2020. Retrieved May 1, 2020.
- ^ "Using Portage to Manage Packages in Gentoo". linode.com. July 15, 2021.
- ^ "rpm - Trac". Retrieved September 29, 2014.
- ^ "App packaging". Archived from the original on October 8, 2014. Retrieved September 29, 2014.
- ^ "makepkg.conf(5) Manual Page".
- ^ "The Slackware Linux Project: Configuration Help". Retrieved September 29, 2014.
| Archiving only | |
|---|---|
| Compressing only | |
| Archiving and compressing | |
| Software packaging and distributing | |
| Document packaging and distributing | |
| dpkg | |
|---|---|
| RPM | |
| Embedded systems |
|
| Distribution-agnostic | |
| Others (binary) | |
| Others (source) | |
| Front-ends | |
| Related topics | |
Italics = inactive or discontinued
| |
| Linux kernel | |
|---|---|
| Controversies | |
| Distributions | |
| Organizations | |
| Adoption | |
| Media | |
| Security certifications | |
Content Disclaimer
Informasi ini disarikan dari Wikipedia dan disajikan kembali untuk tujuan edukasi. Konten tersedia di bawah lisensi CC BY-SA 3.0. Kami tidak bertanggung jawab atas ketidakakuratan data yang bersumber dari kontribusi publik tersebut.
- The information displayed on this website is sourced in part or in whole from Wikipedia and has been adapted for the purpose of restating it. We strive to provide accurate and relevant information, however:
- There is no guarantee of absolute accuracy. Wikipedia is an open, collaborative project that can be edited by anyone, so information is subject to change.
- It is not intended to constitute professional advice. The content displayed is for informational and educational purposes only. For important decisions (e.g., medical, legal, or financial), please consult a professional.
- Content copyright. Wikipedia is licensed under the Creative Commons Attribution-ShareAlike License (CC BY-SA). This means that content may be reused with appropriate attribution and shared under a similar license.
- Responsible use. Any risk arising from the use of information from this website is entirely the responsibility of the user.