Message ID | 20160818030035.5044ae5a@mir |
---|---|
State | Not Applicable |
Headers | show
Return-Path: <lede-dev-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org> X-Original-To: incoming@patchwork.ozlabs.org Delivered-To: patchwork-incoming@bilbo.ozlabs.org Received: from bombadil.infradead.org (bombadil.infradead.org [IPv6:2001:1868:205::9]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 3sF7Bm16G9z9t1K for <incoming@patchwork.ozlabs.org>; Thu, 18 Aug 2016 11:03:28 +1000 (AEST) Received: from localhost ([127.0.0.1] helo=bombadil.infradead.org) by bombadil.infradead.org with esmtp (Exim 4.85_2 #1 (Red Hat Linux)) id 1baBhm-0006ya-LE; Thu, 18 Aug 2016 01:01:10 +0000 Received: from mout.gmx.net ([212.227.15.15]) by bombadil.infradead.org with esmtps (Exim 4.85_2 #1 (Red Hat Linux)) id 1baBhi-0006ws-RD for lede-dev@lists.infradead.org; Thu, 18 Aug 2016 01:01:08 +0000 Received: from mir ([79.203.31.206]) by mail.gmx.com (mrgmx001) with ESMTPSA (Nemesis) id 0MSuMn-1bhika1QCT-00RpTG; Thu, 18 Aug 2016 03:00:37 +0200 Date: Thu, 18 Aug 2016 03:00:35 +0200 From: Stefan Lippers-Hollmann <s.l-h@gmx.de> To: Karl Palsson <karlp@tweak.net.au> Message-ID: <20160818030035.5044ae5a@mir> In-Reply-To: <UERdh8L4FyV3IvYc2X6izMrsez3g6GTJBNwLNpmg2143@mailpile> References: <20160817234128.14b92e77@mir> <UERdh8L4FyV3IvYc2X6izMrsez3g6GTJBNwLNpmg2143@mailpile> X-Mailer: Claws Mail 3.14.0 (GTK+ 2.24.30; x86_64-pc-linux-gnu) MIME-Version: 1.0 X-Provags-ID: V03:K0:+x5t4iuDSuHDLug2l9SZoVkj2Ca17Eyb2Nju6Of4xSLGL2vxkbT wK8okRHbvLoh3LdeXtPJjXrlcRli0eM5yOHKeb03zeE0KdngkKwinMKl7R0tnso1dZwl3GS oaWc1huOFUOoeUHFGNdE9miOsWdJu3oBgBtlnhc6wjgFqiYiAP2/f/eOqUpw6Ta8B1dpv6n UUvX+10r7al8vpHfajYeg== X-UI-Out-Filterresults: notjunk:1; V01:K0:MoPH0YF6IzE=:hpNmeroYVIaueWjHFCk6O0 PR21eaoFKvGnV5aYWCHCbMfQd5jjNQY62MyvG7ludSKavhefL2GmnOUEvJR1KPLiHxhrH1Dsl lETc5apgFkkQN7wUz0ygwY97OgTItKAnfZ0pjuPqV75l/3EvEwwGi4nmPISJjmGBzWJT1A8OZ eVilNYSpO7GlMgzgFIeibWx4SZsTHvAb9ROO0HbL5Zn/zpmh62Vjtdb9RNwV56NicU/6KuuVQ iNfatPEbQXIaHq1OFY0KflrxDNV1sEEG7uBwGv/JiOTXE7UOf+rO9HutCdq0a5od6b8VooI6a iUgBleIMxfkHrb+JdRLvVPGeK4qgXFepWe6hbdNqE8+95WeYq3OdNSLs7bA2PBBPanfJlDNKc jdddJRnqhcg2MyryKmi8hmomoL1Ea5Cv5I/d6PV+/IhGspTwN0uguMHbtulZhKym3bT+qLdJq rf3hNgyQF2kVU2QT5wJ1PYv5xX53rhcYsCGQVZZhizz+55XrWIDy/6sG71kHdA9reQDCa6QZS W4bZxU00xlNN01OqzHo9Sgx4TG6GQrISVtysrVmvTcWysZVmXi1kmVZ9FPaLnFhQgRB+5NV8q cR8wfl4qF8cy4W5YSfWfMRlQ4e91Z+r4S6xtu4wDESfwQ+XaGi+mwp1/m81KvLQ8BWEQQpiDN 47+rS7CLfqshGfLPUD2r2erXNWH7kkTGT9hnjcqKaoxDBRE7H9XONdfXo559zImSulytSSLw2 Yjwu3wzjCyEgBkfVMFK0vVGT4mgA/ADC/OjLNh3JbzcVbljWPNw7joaivco= X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 X-CRM114-CacheID: sfid-20160817_180107_215056_FE3E9CBF X-CRM114-Status: UNSURE ( 7.21 ) X-CRM114-Notice: Please train this message. X-Spam-Score: -2.6 (--) X-Spam-Report: SpamAssassin version 3.4.0 on bombadil.infradead.org summary: Content analysis details: (-2.6 points) pts rule name description ---- ---------------------- -------------------------------------------------- -0.7 RCVD_IN_DNSWL_LOW RBL: Sender listed at http://www.dnswl.org/, low trust [212.227.15.15 listed in list.dnswl.org] -0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2) [212.227.15.15 listed in wl.mailspike.net] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (s.l-h[at]gmx.de) -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1% [score: 0.0000] Subject: Re: [LEDE-DEV] [PATCH] build: reintroduce md5 checksums for generated firmware images X-BeenThere: lede-dev@lists.infradead.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: <lede-dev.lists.infradead.org> List-Unsubscribe: <http://lists.infradead.org/mailman/options/lede-dev>, <mailto:lede-dev-request@lists.infradead.org?subject=unsubscribe> List-Archive: <http://lists.infradead.org/pipermail/lede-dev/> List-Post: <mailto:lede-dev@lists.infradead.org> List-Help: <mailto:lede-dev-request@lists.infradead.org?subject=help> List-Subscribe: <http://lists.infradead.org/mailman/listinfo/lede-dev>, <mailto:lede-dev-request@lists.infradead.org?subject=subscribe> Cc: lede-dev@lists.infradead.org, Jo-Philipp Wich <jo@mein.io> Content-Type: multipart/mixed; boundary="===============4820649193240613568==" Sender: "Lede-dev" <lede-dev-bounces@lists.infradead.org> Errors-To: lede-dev-bounces+incoming=patchwork.ozlabs.org@lists.infradead.org |
--- a/package/utils/busybox/Config-defaults.in +++ b/package/utils/busybox/Config-defaults.in @@ -705,7 +705,7 @@ config BUSYBOX_DEFAULT_SHA1SUM default n config BUSYBOX_DEFAULT_SHA256SUM bool - default n + default y config BUSYBOX_DEFAULT_SHA512SUM bool default n
Hi On 2016-08-18, Karl Palsson wrote: > Why not just add sha256 sum rather than going back to md5? [...] Generating md5sums in addition to sha256sums files only affects build time slightly, but doesn't increase the firmware size itself. Given that apparently nothing currently requires a sha256sum binary at firmware runtime, I'd personally consider it to be cheaper not bumping busybox' size needlessly. While it's obvious that MD5 can't be considered cryptographically secure anymore, it does still work nicely for checking file integrity in regards to potential transmission errors. $ ./scripts/diffconfig.sh CONFIG_TARGET_ar71xx=y CONFIG_TARGET_ar71xx_generic=y CONFIG_TARGET_ar71xx_generic_Default=y $ ls -gG no-sha256sum/busybox with-sha256sum/busybox -rwxr-xr-x 1 300437 Aug 17 23:38 no-sha256sum/busybox -rwxr-xr-x 1 304405 Aug 17 23:38 with-sha256sum/busybox Giving it a quick/ rough compressed size estimate (-6, with a dictionary size of 8 MB, would need 9 MB RAM for decompressing, which would be too much for 32 MB RAM devices, so the actual compressed size delta of the squashfs image is probably slightly larger): $ xz -6 no-sha256sum/busybox $ xz -6 with-sha256sum/busybox $ ls -gG no-sha256sum/busybox.xz with-sha256sum/busybox.xz -rwxr-xr-x 1 173188 Aug 17 23:38 no-sha256sum/busybox.xz -rwxr-xr-x 1 174704 Aug 17 23:38 with-sha256sum/busybox.xz The difference between "no-sha256sum/busybox" and "with-sha256sum/busybox": Regards Stefan Lippers-Hollmann