Re: Bug#540215: Introduce dh_checksums

To: Debian Devel <debian-devel@lists.debian.org>
Subject: Re: Bug#540215: Introduce dh_checksums
From: Frank Lin PIAT <fpiat@klabs.be>
Date: Fri, 19 Mar 2010 21:49:39 +0100
Message-id: <[🔎] 1269031779.4361.259.camel@solid.paris.klabs.be>
In-reply-to: <[🔎] 20100319164008.GC6262@celtic.nixsys.be>
References: <[🔎] 1268066168.21347.9661.camel@solid.paris.klabs.be> <[🔎] 87wrxmbkdn.fsf@windlord.stanford.edu> <[🔎] 20100310143214.GE10578@celtic.nixsys.be> <[🔎] 20100311173710.GC25679@nn.nn> <[🔎] 87aaue898o.fsf@frosties.localdomain> <[🔎] 20100312221356.GJ3902@celtic.nixsys.be> <[🔎] 87eijj7523.fsf@frosties.localdomain> <[🔎] 20100317103100.GA18915@celtic.nixsys.be> <[🔎] 1268956013.11872.58.camel@solid.paris.klabs.be> <[🔎] 871vfhchnc.fsf@windlord.stanford.edu> <[🔎] 20100319164008.GC6262@celtic.nixsys.be>

On Fri, 2010-03-19 at 17:40 +0100, Wouter Verhelst wrote:
> On Thu, Mar 18, 2010 at 04:52:07PM -0700, Russ Allbery wrote:
> > You add an additional ar member that contains the signed checksums of all
> > of the files in data.tar.gz, possibly another additional member that
> > contains the signed checksums for control.tar.gz, or you document some
> > convention so that you can combine both into the same signed checksum
> > document.
> 
> That'd work pretty well, indeed. It would also have the advantage of
> making it theoretically possible to reverse the addition of the
> signatures again, should one want to re-verify against the original
> .changes file for some reason. That's of course assuming that the
> combination of "ar a" and "ar d" in whatever way dpkg does that is
> idempotent, but I don't see why it couldn't be.
> 
> And as you say, this can be implemented in dak. That would have the
> advantage of not requiring keys on the buildds.
> 
> So now that it's been reduced to a technical problem, who's going to do
> the implementation?

Yes, this solution is elegant. It shouldn't break anything, it is
self-contained in the package.

> I'm prepared to look at a dpkg patch, but Python
> just does not work for me.

My priority is the md5sum replacement, but I'll be happy to help if/when
I can.

Regards,

Franklin

Reply to:

References:
- Bug#540215: Introduce dh_checksums
  - From: Frank Lin PIAT <fpiat@klabs.be>
- Re: Bug#540215: Introduce dh_checksums
  - From: Russ Allbery <rra@debian.org>
- Re: Bug#540215: Introduce dh_checksums
  - From: Wouter Verhelst <wouter@debian.org>
- Re: Bug#540215: Introduce dh_checksums
  - From: Harald Braumann <harry@unheit.net>
- Re: Bug#540215: Introduce dh_checksums
  - From: Goswin von Brederlow <goswin-v-b@web.de>
- Re: Bug#540215: Introduce dh_checksums
  - From: Wouter Verhelst <wouter@debian.org>
- Re: Bug#540215: Introduce dh_checksums
  - From: Goswin von Brederlow <goswin-v-b@web.de>
- Re: Bug#540215: Introduce dh_checksums
  - From: Wouter Verhelst <w@uter.be>
- Re: Bug#540215: Introduce dh_checksums
  - From: Frank Lin PIAT <fpiat@klabs.be>
- Re: Bug#540215: Introduce dh_checksums
  - From: Russ Allbery <rra@debian.org>
- Re: Bug#540215: Introduce dh_checksums
  - From: Wouter Verhelst <wouter@debian.org>

Prev by Date: Re: Bug#540215: Introduce dh_checksums
Next by Date: Re: Bug#540215: Introduce dh_checksums
Previous by thread: Re: Bug#540215: Introduce dh_checksums
Next by thread: Re: Bug#540215: Introduce dh_checksums
Index(es):
- Date
- Thread