Last night, I committed a large update to the ports tree that deprecated MD5 checksums based on the work by Doug Barton and Rene Laden in ports/149657. For a long time we’ve had both MD5 and SHA256 checksums in the distinfo file, even though having multiple checksumming algorithms does not add any additional security. From today, MD5 checksums are no longer generated, but existing checksums will silently be ignored. For now, we won’t be doing large sweeps through the tree removing MD5, but let them slowly disappear when individual ports are updated, to avoid the churn on the cvs repository, mirrors, and package build infrastructure such large sweeps will cause.
The ports framework internals were also updated to reflect this change by renaming the MD5_FILE
macro to DISTINFO_FILE
. A lot of thanks to Dough and Rene!
Monthly Archives: October 2010
MD5 checksums deprecated
Posted by erwin
on October 29, 2010
No comments
EuroBSDCon
Posted by erwin
on October 4, 2010
No comments
In a few days, I’ll be heading off for another yearly EuroBSDCon, this year in Karlsruhe, Germany. Unfortunately, I will have to leave on Sunday, but on Saturday you might find me at the FreeBSD Foundation booth in the booth area where we’ll have Foundation brochures and swag. Please drop by to give feedback, ask questions, and/or make a donation. Hope to see you there!