Re: [PATCH] use SHA-2 family hash for releases
From: Andreas Stieger <Andreas.Stieger_at_gmx.de>
Date: Fri, 24 Feb 2017 13:45:27 +0100
Hello,
> > Should we keep generating both .sha1 and .sha512 for a transition
Not opposed to doing both. Just noting that after reading release.sh, it would seem that the .sha1 is primarily used to double check successful upload and publishing. User verification seems to be a secondary purpose, not least since we publish OpenPGP signatures on the full tarballs anyway.
Andreas
|
This is an archived mail posted to the Subversion Dev mailing list.
This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.