[Rpm-maint] [rpm-software-management/rpm] RFE: read sources checksums from the SPEC file and verify them (#463)
Dirk Mueller
notifications at github.com
Fri Jul 14 10:37:02 UTC 2023
> I would like to see something more like pk11 format
>
> ```python
> SourceCSum: sha256://<checksum>
```
I think that makes it really tricky with ordering (is it applying to the next source or the previous one? and what if there are conditionals around source lines?). imho really not very intuitive as it is very context dependent.
> Which would allow use different checksums algorithms. Or as second argument of the `Source:`
>
> ```python
> Source: <url/><filename> sha256://<checksum>
> ```
This is also breaking with older rpm releases. that's why I suggested the alternative `#' fragment url above, which would be compatible.
--
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/463#issuecomment-1635665960
You are receiving this because you are subscribed to this thread.
Message ID: <rpm-software-management/rpm/issues/463/1635665960 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20230714/151a3d8a/attachment.html>
More information about the Rpm-maint
mailing list