Jump to: navigation, search

Whonix Debian Packages

Meta Package Missing Warning[edit]

The following warning...

Whonix meta packages warning.png

It most likely happened after Whonix 12 to Whonix 13 upgrades. In that case, please upgrade using the proper instructions for Upgrading Whonix 12 to Whonix 13.

Advanced Topics[edit]

What is the disadvantage of removing a meta package?[edit]

Then changes in package dependencies will not be automatically processed by your system when you upgrade your system.

For example the anon-workstation-packages-recommended meta package depends [1] on tb-updater. When you do not have the anon-workstation-packages-recommended package installed, you would not notice if we replace tb-updater with torbrowser-launcher. tb-updater might become unmaintained, broken or even have unfixed security issues. We'll try to keep you up to date should we deprecate (security relevant) packages. If we do that, you could simply sudo apt-get purge tb-updater and consider installing what our meta package recommends as replacement.

See also #Technical_Stuff.

Which ones are safe to remove?[edit]

Note the #Removal Instructions below! When you understood those, feel free to remove the following desktop specific meta packages.

  • whonix-shared-desktop
  • whonix-shared-desktop-kde
  • whonix-shared-kde-accessibility

Also feel free to remove the following meta packages, which contain a list of recommended (as in useful to have, not necessary to have them for some other reason):

  • whonix-shared-packages-recommended
  • whonix-gateway-packages-recommended
  • whonix-workstation-packages-recommended
  • whonix-workstation-default-applications

Which packages do Whonix meta packages install?[edit]

See debian/control in Whonix anon-meta-packages source code folder or on github (choose the correct branch!).

Or use for example.

apt-cache show whonix-workstation-default-applications

Which packages should never be removed?[edit]

Do not remove ...-dependencies packages, unless you really know what you are doing.

  • whonix-shared-packages-dependencies
  • whonix-gateway-packages-dependencies
  • whonix-workstation-packages-dependencies

Why is package X installed?[edit]

See developer documentation, packages documentation:

Removal Instructions[edit]

1. Upgrade
Upgrade your system.

2. Cleanup
When you installed and uninstalled some custom packages or dependencies changed in meanwhile, get rid of unneeded dependencies first.

sudo apt-get autoremove

3. Uninstall
Let's see how for example the uwt package could be uninstalled.

sudo apt-get purge uwt

You will see something like this.

Reading package lists... Done
Building dependency tree       
Reading state information... Done
The following packages were automatically installed and are no longer required:
  anon-banned-packages anon-iceweasel-warning gpl-sources-download knetattach-hide power-savings-disable-in-vms poweroff-passwordless rads scurl shared-folder-help swap-file-creator swappiness-lowest tor-ctrl
Use 'apt-get autoremove' to remove them.
The following packages will be REMOVED:
  anon-shared-packages-recommended* uwt* whonix-shared-packages-recommended*
0 upgraded, 0 newly installed, 3 to remove and 2 not upgraded.
After this operation, 152 kB disk space will be freed.
Do you want to continue [Y/n]? 

4. Keep
Now, there is a small issue. Next time you were to run sudo apt-get autoremove, you would also uninstall all packages listed under "The following packages were automatically installed and are no longer required:". (Such as rads and others.) Since you most likely want to keep the other packages which were installed by the anon-shared-packages-recommended and the whonix-shared-packages-recommended meta packages, mark them as manually installed, so they do not get removed. You can conveniently do this using aptitude. [2] [3]

sudo aptitude keep-all

5. Done
Make sure you understood the #Disadvantage.

Technical Stuff[edit]

Technical explanations why stuff is as is. Users can skip this chapter.

The underlying technical issues with meta packages are not caused by Whonix, are general issues Whonix inherited from Debian. Those are also described here:

About meta packages:


Whonix's build script installs all packages using apt-get --no-install-recommends. [4] The --no-install-recommends option is being used to prevent installation of lots of packages we do not want to install. For example, anon-workstation-default-applications Depends: gwenview, which Recommends: kamera. Without using --no-install-recommends, we would also install kamera, which would then pull it's own Depends: as well. kamera [+ dependencies] would not be useful to have installed by default on Whonix-Workstation. Would cost unnecessary disk space. And there are more examples. We might even end up installing packages by default we do not recommend privacy reasons.

Since we do use the --no-install-recommends option, meta packages such as anon-workstation-default-applications must use the Depends: field and cannot use the Recommends: field. (Since no packages would be installed then.)

Even if we could use and did use Recommends: field, new packages added to the Recommends: field would not be installed when the meta package that Recommends: them gets upgraded. This is because packages listed after the Recommends: field only get installed during their initial sudo apt-get install package-name installation.

You might notice that even though having said this, anon-meta-packages's debian/control file uses the Recommends: field anyway. This is not a contradiction. It may be useful for a later Whonix installation from Whonix repository use case.

Forum discussion:
issues with removal of specific packages by users / builders

See Also[edit]

Footnotes[edit]

  1. Depends: field in debian/control
  2. https://unix.stackexchange.com/questions/166590/what-is-the-apt-get-equvalent-of-aptitude-keep-all
  3. Can we safely mix apt-get and aptitude? Yes, Raphaël Hertzog, dpkg and Debian Developer said already in 2011 that this is no problem anymore.

    First I want to make it clear that you can use both and mix them without problems. It used to be annoying when apt-get did not track which packages were automatically installed while aptitude did, but now that both packages share this list, there’s no reason to avoid switching back and forth.

    Source: apt-get, aptitude, … pick the right Debian package manager for you

  4. Function pkg-install-maybe in https://github.com/Whonix/Whonix/blob/master/build-steps.d/1700_install-packages#L97.

Random News:

We are looking for video makers.


Impressum | Datenschutz | Haftungsausschluss

https | (forcing) onion
Share: Twitter | Facebook | Google+
This is a wiki. Want to improve this page? Help welcome, volunteer contributions are happily considered! See Conditions for Contributions to Whonix, then Edit! IP addresses are scrubbed, but editing over Tor is recommended. Edits are held for moderation. Whonix (g+) is a licensee of the Open Invention Network. Unless otherwise noted above, content of this page is copyrighted and licensed under the same Free (as in speech) license as Whonix itself.