Opened 10 years ago

Last modified 4 years ago

#1348 closed enhancement (fixed)

check downloaded files known-good crypto checksum — at Version 2

Reported by: erinn Owned by: erinn
Priority: High Milestone:
Component: Applications/Tor bundles/installation Version:
Severity: Keywords: easy
Cc: erinn, arma, Sebastian, phobos Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description (last modified by erinn)

(This is about Makefile.linux and Makefile.osx in https://svn.torproject.org/svn/torbrowser/trunk)

The packages currently downloaded in the fetch-source target are not verified against known-good checksums. Add this functionality so that we don't embarrass ourselves if someone tries to pass off a corrupt file.

Ideally this would be generalized across the Makefiles, like in a common.mk/.sh shared by both.

Child Tickets

Change History (3)

comment:1 Changed 9 years ago by erinn

Description: modified (diff)
Keywords: easy added

comment:2 Changed 9 years ago by erinn

Description: modified (diff)
Version: 0.2.1.25
Note: See TracTickets for help on using tickets.