On Sat, Oct 08, 2011 at 08:21:44PM -0400, Matt Turner wrote: > On Sat, Oct 8, 2011 at 6:43 PM, Robin H. Johnson <[email protected]> wrote: > > On Sat, Oct 08, 2011 at 02:45:02PM -0700, "Paweł Hajdan, Jr." wrote: > >> I checked > >> <http://www.gentoo.org/doc/en/handbook/handbook-x86.xml?part=1&chap=5> > >> and the Handbook only mentions validating MD5 checksums. > >> > >> There are two possible issues: > >> > >> 1. Why are we using _only_ MD5 and SHA1 as the checksums? Shouldn't we > >> be using something stronger? > > Fixed in Catalyst now. > > http://git.overlays.gentoo.org/gitweb/?p=proj/catalyst.git;a=commit;h=42b4f6608682cf03954918ecce7923330a1656fe > > So when the stagebuilders update their Catalyst, they will be generated > > with newer hashes. > > Well, almost. > > The changes you made are in the master branch (for catalyst-3), but > since catalyst-3 isn't really going anywhere fast, you should > cherry-pick your patches back to the catalyst_2 branch so they'll be > available in the next 2.0.6.919 release. Done already.
-- Robin Hugh Johnson Gentoo Linux: Developer, Trustee & Infrastructure Lead E-Mail : [email protected] GnuPG FP : 11AC BA4F 4778 E3F6 E4ED F38E B27B 944E 3488 4E85
