Module Name:	pkgsrc
Committed By:	agc
Date:		Tue Feb 22 21:01:10 UTC 2005

Modified Files:
	pkgsrc/mk: bsd.pkg.mk

Log Message:
As seen on tech-pkg - allow multiple digest algorithms to be used to
ensure the integrity of distfiles and dist patches.  For now, the
default algorithms are SHA1 and RMD160, set as a whitespace-separated
list in the DIGEST_ALGORITHMS definition.  The DIGEST_ALGORITHM
definition is deprecated.

Patchfiles will still use simply SHA1, since we are trying to detect a
binary "has this file changed", rather than proect against tampering.
In short, if someone can modify the patch file, they can modify the
distinfo file holding its digest information. This value is set in the
new PATCH_DIGEST_ALGORITHM definition.

Triggered by the breaking of SHA1, as reported in

	http://www.schneier.com/blog/archives/2005/02/sha1_broken.html


To generate a diff of this commit:
cvs rdiff -r1.1593 -r1.1594 pkgsrc/mk/bsd.pkg.mk

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.