tests/qemu: Pin most of the tarball hashes - wireguard-monolithic-historical - Historical monolithic WireGuard repository, split into wireguard-tools, wireguard-linux, and wireguard-linux-compat.

diff options

author	Jonathan Neuschäfer <j.neuschaefer@gmx.net>	2018-05-14 16:13:22 +0200
committer	Jonathan Neuschäfer <j.neuschaefer@gmx.net>	2018-05-14 18:08:33 +0200
commit	665fa3ea449ff040103689dc2206f7a9dc9666f9 (patch)
tree	77b7327056044d2b30ca6799bfbe6e538a20a007 /README.md
parent	version: bump snapshot (diff)
download	wireguard-monolithic-historical-jn/qemu-hash.tar.xz wireguard-monolithic-historical-jn/qemu-hash.zip

tests/qemu: Pin most of the tarball hashesjn/qemu-hash

When src/tests/qemu/Makefile downloads tarballs, they may be corrupted by accident or malice. Detect such errors by comparing the downloaded files to their known-good hashes. In the case of iperf there is actually a chance of a successful MitM attack because the tarball is downloaded over plain HTTP if the mirror (https://download.wireguard.com/...) isn't reachable for some reason. Only the kernel tarball isn't checked, because the makefile needs to work with many different kernel versions. Signed-off-by: Jonathan Neuschäfer <j.neuschaefer@gmx.net>

Diffstat (limited to 'README.md')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: