Why do local patches need checksums in distinfo files?

To: tech-pkg%pkgsrc.org@localhost
Subject: Why do local patches need checksums in distinfo files?
From: Roland Illig <roland.illig%gmx.de@localhost>
Date: Sun, 4 Nov 2018 22:11:46 +0100

Hi,

https://www.netbsd.org/docs/pkgsrc/components.html#components.distinfo says:

> The distinfo file also contains the checksums for all the patches
> found in the patches directory (see Section 11.3, "patches/*").

I understand why the distfiles to be downloaded need to have
cryptographic checksums in a trusted place (the local distinfo file).
That is also explained in the pkgsrc guide.

But the same argument cannot hold for the local patches since these are
in a place as trustworthy as the distinfo file. Therefore I don't
understand why they need to have checksums after all.

Some background: I wanted to add an explanation to pkglint as to why the
patches need this checksum, but I couldn't think of one. Can anyone help
me here?

Best,
Roland

Follow-Ups:
- Re: Why do local patches need checksums in distinfo files?
  - From: maya
- Re: Why do local patches need checksums in distinfo files?
  - From: Joerg Sonnenberger
- Re: Why do local patches need checksums in distinfo files?
  - From: Thomas Klausner

Prev by Date: daily pkgsrc CVS update output
Next by Date: Re: Why do local patches need checksums in distinfo files?
Previous by Thread: Window manager duplication (icewm, bb*)
Next by Thread: Re: Why do local patches need checksums in distinfo files?
Indexes:

Home | Main Index | Thread Index | Old Index