bryson/pacman
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

repo-add: do not add md5sums to the repo dbs

Browse source 
Keeping md5sums in the repo databases no longer serves a real purpose.
md5sums are no longer considered  secure, and we already have sha256sums
in the repos (along with PGP verification).

Signed-off-by: Allan McRae <allan@archlinux.org>
This commit is contained in:
Allan McRae 2022-11-22 18:17:56 +10:00
parent 4f43ce3e4a
commit 310bf878fc
1 changed files with 1 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
scripts/repo-add.sh.in
View file

@ -209,7 +209,7 @@ db_write_entry() {
local -a _groups _licenses _replaces _depends _conflicts _provides \ local -a _groups _licenses _replaces _depends _conflicts _provides \
_optdepends _makedepends _checkdepends _optdepends _makedepends _checkdepends
local pkgname pkgbase pkgver pkgdesc csize size url arch builddate packager \ local pkgname pkgbase pkgver pkgdesc csize size url arch builddate packager \
md5sum sha256sum pgpsig pgpsigsize sha256sum pgpsig pgpsigsize
# read info from the zipped package # read info from the zipped package
local line var val local line var val
@ -280,8 +280,6 @@ db_write_entry() {
# compute checksums # compute checksums
msg2 "$(gettext "Computing checksums...")" msg2 "$(gettext "Computing checksums...")"
md5sum=$(md5sum "$pkgfile")
md5sum=${md5sum%% *}
sha256sum=$(sha256sum "$pkgfile") sha256sum=$(sha256sum "$pkgfile")
sha256sum=${sha256sum%% *} sha256sum=${sha256sum%% *}
@ -306,7 +304,6 @@ db_write_entry() {
format_entry "ISIZE" "$size" format_entry "ISIZE" "$size"
# add checksums # add checksums
format_entry "MD5SUM" "$md5sum"
format_entry "SHA256SUM" "$sha256sum" format_entry "SHA256SUM" "$sha256sum"
# add PGP sig # add PGP sig