Re: dpkg-sig support wanted?

To: debian-devel@lists.debian.org
Subject: Re: dpkg-sig support wanted?
From: Henning Makholm <henning@makholm.net>
Date: Sun, 27 Nov 2005 01:15:14 +0100
Message-id: <[🔎] 87veyfosj1.fsf@kreon.lan.henning.makholm.net>
References: <[🔎] 877jb0iswl.fsf@nahar.marcbrockschmidt.de> <[🔎] 87fypntzzo.fsf@mid.deneb.enyo.de> <[🔎] 20051123160817.GB13417@cyan.localnet> <[🔎] 20051123220920.GD5414@hezmatt.org> <[🔎] 20051124023037.GE15019@cyan.localnet> <[🔎] 20051124131345.GE17550@khazad-dum.debian.net> <[🔎] 20051125025707.GD19298@cyan.localnet> <[🔎] 87wtiwh7tv.fsf@mid.deneb.enyo.de> <[🔎] 20051125231302.GD21979@cyan.localnet> <[🔎] 20051125234624.GA13795@uio.no> <[🔎] 20051126050831.GX3063@p12n.org> <[🔎] 87br07fvmh.fsf@kreon.lan.henning.makholm.net> <[🔎] 874q5z3795.fsf@mid.deneb.enyo.de> <[🔎] 87u0dzeekh.fsf@kreon.lan.henning.makholm.net> <[🔎] 87oe47zazc.fsf@mid.deneb.enyo.de>

Scripsit Florian Weimer <fw@deneb.enyo.de>
> * Henning Makholm:

>>> I wouldn't use real base64, though, because it would mean that you can
>>> use its hashed output as a file name.

>> Good point. One might replace "/" with "_" and omit the final "=".
>> Having a "+" in the hash should be safe in most contexts.

> It should be replaced with "-".  Beyond alphanumerics, only ".", "_",
> "-" are in the POSIX portable filename character set[1], and some
> systems do not allow the character "+" in file names.

However there are already plenty of files with "+" in their names
involved in Debian (e.g. /usr/lib/libstdc++.so.6).

Having every 64th hash-based filename start with "-" or "." would lead
to failure modes for shell scripts (mistaking the filename for a
command line option, resp. missing it in globs) that are just
infrequent enough that they might not be observed before a
quick-and-dirty script is deployed.

I think the conclusion is that no simple substitution is at the same
time Posix friendly and friendly towards quick-and-dirty scripting.

(Yes: substitute /+ with _-, and then move the last character of the
base64 encoding to the front. Due to zero padding it must come from
the set [AEIMQUYcgkosw048].)

-- 
Henning Makholm                         "You want to know where my brain is,
                                    spetsnaz girl? Do you? Look behind you."

Reply to:

Follow-Ups:
- Re: dpkg-sig support wanted?
  - From: Peter Samuelson <peter@p12n.org>

References:
- dpkg-sig support wanted?
  - From: Marc 'HE' Brockschmidt <he@debian.org>
- Re: dpkg-sig support wanted?
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: dpkg-sig support wanted?
  - From: Anthony Towns <aj@azure.humbug.org.au>
- Re: dpkg-sig support wanted?
  - From: Matthew Palmer <mpalmer@debian.org>
- Re: dpkg-sig support wanted?
  - From: Anthony Towns <aj@azure.humbug.org.au>
- Re: dpkg-sig support wanted?
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: dpkg-sig support wanted?
  - From: Anthony Towns <aj@azure.humbug.org.au>
- Re: dpkg-sig support wanted?
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: dpkg-sig support wanted?
  - From: Anthony Towns <aj@azure.humbug.org.au>
- Re: dpkg-sig support wanted?
  - From: "Steinar H. Gunderson" <sgunderson@bigfoot.com>
- Re: dpkg-sig support wanted?
  - From: Peter Samuelson <peter@p12n.org>
- Re: dpkg-sig support wanted?
  - From: Henning Makholm <henning@makholm.net>
- Re: dpkg-sig support wanted?
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: dpkg-sig support wanted?
  - From: Henning Makholm <henning@makholm.net>
- Re: dpkg-sig support wanted?
  - From: Florian Weimer <fw@deneb.enyo.de>

Prev by Date: Re: Secret changes for binNMUs
Next by Date: Re: dpkg-sig support wanted?
Previous by thread: Re: dpkg-sig support wanted?
Next by thread: Re: dpkg-sig support wanted?
Index(es):
- Date
- Thread