X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:content-type
	:content-transfer-encoding:date:from:to:subject:message-id; q=
	dns; s=default; b=GUqMOVPSYPs4N4gUeTlw/edxGRmTM0YFKfXB9S571gRhBa
	8nK55K56JBhx70O4CMhqze1lKvKIj3lctyMcJVxUUCs0eUEfTN+1FDi5EG0AR3Iy
	YAT5yaAIoAFByqUEqxtYoZoupoaySV+cx6gEeGNXl51DxcayLC17YqJYcvZWs=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:mime-version:content-type
	:content-transfer-encoding:date:from:to:subject:message-id; s=
	default; bh=qsjDZBGiHCk/HWGlHxiGDGq/Ilk=; b=uPjA+O7dG2ZuEIG1VeM6
	vOO/VYl/q3oIqcoYL4wX9TZJWCqugV0wRhxV9HYr2Ur1an8wmq9qooY9EYtLl2eT
	4ZMJ2TtJl1vgJP4EfCn0/uo2+JxYTGMegQy3sLT9ZBvPZ3nAs/2sNZrRW4fobgdp
	5yqYYQMvwpwG6C+0Hg+0hzA=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-1.6 required=5.0 tests=AWL,BAYES_00,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=ham version=3.3.2 spammy=Hx-languages-length:1285, package!, integrity, H*UA:Webmail
X-HELO: lb2-smtp-cloud3.xs4all.net
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; format=flowed
Content-Transfer-Encoding: 7bit
Date: Mon, 18 Apr 2016 11:37:36 +0200
From: Houder <houder AT xs4all DOT nl>
To: cygwin AT cygwin DOT com
Subject: No checksum recorded for tar-1.28-1-src, cannot determine integrity of package!
Message-ID: <2f0d9de5cbc1d30ba8a26ef508ef0f07@xs4all.nl>
X-Sender: houder AT xs4all DOT nl (GEuNiRgjKkE0Yt4a6S7GFg==)
User-Agent: XS4ALL Webmail
X-IsSubscribed: yes

Hi,

For the record ...

After "installing" the source code tarball (tar), the following message 
in file
/var/log/setup.log.full made me inspect IniDBBuilderPackage.cc:

No checksum recorded for tar-1.28-1-src, cannot determine integrity of 
package!

-----
IniDBBuilderPackage.cc:

void
IniDBBuilderPackage::buildInstallSHA512 (unsigned char const *sha512)
{
   if (sha512 && !cbpv.source()->sha512_isSet) {
     memcpy (cbpv.source()->sha512sum, sha512, sizeof 
cbpv.source()->sha512sum);
     cbpv.source()->sha512_isSet = true;
   }
}

void
IniDBBuilderPackage::buildSourceSHA512 (unsigned char const *sha512)
{
   if (sha512 && !cbpv.source()->sha512_isSet) {
              >>> cbpv => cspv <<<

     memcpy (cspv.source()->sha512sum, sha512, sizeof 
cspv.source()->sha512sum);
     cbpv.source()->sha512_isSet = true;
   }
}

     I believe the developer meant to check the current source package 
version,
     not the current BINARY package version ...

void
IniDBBuilderPackage::buildInstallMD5 (unsigned char const *md5)
{
   if (md5 && !cbpv.source()->md5.isSet())
     cbpv.source()->md5.set(md5);
}

void
IniDBBuilderPackage::buildSourceMD5 (unsigned char const *md5)
{
   if (md5 && !cspv.source()->md5.isSet())
     cspv.source()->md5.set(md5);
}

Regards,
Henri

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple