View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0029397 | Community | Website:Git | public | 2017-12-21 16:56 | 2017-12-21 19:54 |
| Reporter | Assigned To | ||||
| Priority | normal | Severity | minor | ||
| Status | closed | Resolution | fixed | ||
| Summary | 0029397: GitWeb produces different snapshot tarballs for the same commit | ||||
| Description | The problem has been reported by external user: ~~~~~ If I run the following two times in a row, I will get a different sha - note I am specify the V7_2_0 tag. $ curl -L -o opencascade-7.2.0.tgz "http://git.dev.opencascade.org/gitweb/?p=occt.git;a=snapshot;h=refs/tags/V7_2_0;sf=tgz" $ openssl sha -sha256 opencascade-7.2.0.tgz SHA256(opencascade-7.2.0.tgz)= 7aecff59b9f4bc3dda87059c7b91f6d6be1ff0f4d80aef2704e11df51cc4dd1e $ curl -L -o opencascade-7.2.0.tgz "http://git.dev.opencascade.org/gitweb/?p=occt.git;a=snapshot;h=refs/tags/V7_2_0;sf=tgz" $ openssl sha -sha256 opencascade-7.2.0.tgz SHA256(opencascade-7.2.0.tgz)= 0747951dee19c4fc644843d90218349e5d3192500da5282f5d3a923fe9c77448 So the tarball creation/download process must mutate the tarball slightly, even when used for a static tag like V7_2_0. Perhaps there is a configuration setting on the occt server that could be set to ensure that downloading a tagged snapshot will always produce an identical tarball? ~~~~~ The reason of this problem is a bug in GitWeb: it calls gzip without option "-n", so it adds timestamp in the archive each time it is generated. See http://git.661346.n2.nabble.com/PATCH-supply-n-to-gzip-to-produce-identical-tarballs-td6258329.html | ||||
| Steps To Reproduce | Download archive from URL http://git.dev.opencascade.org/gitweb/?p=occt.git;a=snapshot;h=refs/tags/V7_2_0;sf=tgz several times and compute check sum of these archives -- they should be equal | ||||
| Tags | No tags attached. | ||||
| Test case number | |||||
|
|
The problem is fixed by adding option "-n" to call to gzip in gitweb.cgi settings |
|
|
Checksums are now stable. For archive downloaded by URL http://git.dev.opencascade.org/gitweb/?p=occt.git;a=snapshot;h=refs/tags/V7_2_0;sf=tgz > md5sum occt-V7_2_0.tar.gz 34fd3038227c29c81161cf2fd76892c3 *occt-V7_2_0.tar.gz > openssl sha -sha256 occt-V7_2_0.tar.gz SHA256(occt-V7_2_0.tar.gz)= adb6fc44efebdb09e30a487fa412afae9599992dc771b0039b4e bf306891a558 |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2017-12-21 16:56 |
|
New Issue | |
| 2017-12-21 16:56 |
|
Assigned To | => aiv |
| 2017-12-21 16:59 |
|
Note Added: 0073076 | |
| 2017-12-21 16:59 |
|
Status | new => resolved |
| 2017-12-21 16:59 |
|
Steps to Reproduce Updated | |
| 2017-12-21 16:59 |
|
Assigned To | aiv => abv |
| 2017-12-21 19:54 |
|
Note Added: 0073078 | |
| 2017-12-21 19:54 |
|
Status | resolved => closed |
| 2017-12-21 19:54 |
|
Resolution | open => fixed |