| 1 |
W dniu wto, 24.10.2017 o godzinie 13∶56 +0200, użytkownik Chí-Thanh |
| 2 |
Christopher Nguyễn napisał: |
| 3 |
> Michał Górny schrieb: |
| 4 |
> > Oh, and most notably, the speed loss will be mostly visible to users. |
| 5 |
> > An attacker would have to compute the additional hashes only |
| 6 |
> > if the fastest hash already matched, i.e. rarely. Users will have to |
| 7 |
> > compute them all the time. |
| 8 |
> |
| 9 |
> That is currently the case with portage, but not an inevitable consequence of |
| 10 |
> having 3 hash functions in the Manifest. Portage could be made to check only |
| 11 |
> one or two of them (even by default), giving the tie-breaking ability to |
| 12 |
> those who need it, and speeding up things for those who don't. |
| 13 |
|
| 14 |
No, it can't. The specification (GLEP 59) requires it to check all hashes. |
| 15 |
|
| 16 |
-- |
| 17 |
Best regards, |
| 18 |
Michał Górny |
Archives