Hash, Certificate and Bug
Hash, Certificate and Bug
- Subject: Hash, Certificate and Bug
- From: Iceberg-Dev <email@hidden>
- Date: Wed, 17 Feb 2010 17:35:00 +0100
Hash:
-----
When you create a referenced package (http, x-disc) in a
distribution, a hash-sha256 key-value couple is added to the
Distribution script for the related pkg-ref.
It just happens that if you try this in the Terminal:
openssl dgst sha256 thepackage.ref
you don't get the same hash result.
Considering this is not documented in the official documentation,
would there be a farmer at Cupertino who could describe where this
hash-sha256 value is coming from?
Certificate:
------------
If you use a Certificate for a distribution, the certificate is used
to sign both the distribution and the packages that are related to
the distribution but not embedded in the distribution.
Let's say I import a signed package inside a signed distribution
project and I don't embed it into the distribution, does it make
sense to replace the signature for the package with the one of the
distribution or to keep the original one?
Bug:
----
There's a bug in PackageMaker (Snow Leopard). If you remove a choice
from the list, import a package and build, the final name of the
package is not correct. You can save the project, quit and try again,
same result.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Installer-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden