GNU bug report logs - #40017
hplip-3.20.2 source tarball hash mismatch

Previous Next

Full log

Message #10 received at 40017-done <at> debbugs.gnu.org (full text, mbox):

From: Tobias Geerinckx-Rice <me <at> tobias.gr>
To: Mark H Weaver <mhw <at> netris.org>
Cc: 40017-done <at> debbugs.gnu.org
Subject: Re: hplip-3.20.2 source tarball hash mismatch
Date: Tue, 10 Mar 2020 22:05:03 +0100

[Message part 1 (text/plain, inline)]

Mark,

Mark H Weaver 写道：
> The following commit updated hplip to 3.20.2, but the actual 
> hash of the
> source tarball does not match the expected hash in the commit.

[…]

> sha256 hash mismatch for 
> /gnu/store/xnqrxpngp4505228zib9zp8b5n7v4ri6-hplip-3.20.2.tar.gz:
>   expected hash: 
>   1hkiyj29vzmz14cy68g94i617ymxinzvjvcsfdd78kcbd1s9vi4h
>   actual hash: 
>   00vcbpnp478l2v61mlxb4kr6q3gzkxspm4lwfky39f6ck72pqxb7

Thanks.  This happens, although I wish it would stop.

The differences are: timestamps, differing .ppd.gz file order in 
.inc files, and a modified pre-compiled binary (locatedriver). 
Luckily, the latter is snippeted out, leaving only harmless 
changes AFAICT.

Here's the original diff, although the list will probably scrub 
it:

[hplipdiff.lz (application/octet-stream, attachment)]

[Message part 3 (text/plain, inline)]

The world would be a better place if $big_hosters didn't allow 
rewriting tarballs in-place.  But then people would upload their 
privkeys and cry.

Fixed with 6048241f10210c79925ca40b75c8697d2b2a5848.

Kind regards,

T G-R

[signature.asc (application/pgp-signature, inline)]

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.