[PATCH]: Optional explanation for options
Robey Pointer
robey at lag.net
Tue Sep 20 23:59:12 BST 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 19 Sep 2005, at 21:06, John A Meinel wrote:
> Robey Pointer wrote:
>
>> I think you're right that the best thing to do is to include a
>> verification hash (SHA1 or whatever) so we can detect munged patches
>> before trying to apply them... and encourage people to send
>> changesets
>> as attachments.
>>
>
> Well, the current changeset code does verify that all of the hashes
> are
> correct. But since we don't transmit the text hashes, it only
> figures it
> out once it has generated the inventory, which also means that it
> can't
> figure out which file is bogus, just that something is.
>
> Now, we could put a bunch more hashes into the changeset, but part of
> the goal was to remove as much noise as possible.
Yeah, what we were actually referring to was adding a hash to the
patch metadata. It would basically be a hash of everything between
the bzr header and footer sections, used for validating that the
patch didn't get corrupted in transit. (Obviously the header and
footer sections should be designed to not depend on formatting/
whitespace anyway.)
It's probably true that a lot of the noise could be condensed into a
little base64 block.
In re checking the per-file hashes or the inventory hash: hopefully
those would just be warnings, since applying a cset as a merge could
often cause the hashes to be different.
robey
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (Darwin)
iD8DBQFDMJRCQQDkKvyJ6cMRAs+nAJ9VqD6G/KE5gLyaxvNhQqUh80ZLpACeODAJ
LWYKYDDbj9zh/hv4rjsoxLM=
=79TU
-----END PGP SIGNATURE-----
More information about the bazaar
mailing list