Signed checksums for source packets #5244

issue nilsh opened this issue on November 8, 2014
  1. nilsh commented at 2:52 PM on November 8, 2014: none

    On https://bitcoin.org/en/download you provide checksums and download links for binary packets, but not for the linked source archives. It would be very good to be able to verify the source code archives hosted at github. Many packagers (for example at various linux distros) include them as source in their packages, and it is desireable for an end user to be able to verify that the source code used to build a package is unmodified. The only current way to achieve this includes cloning and verifying the git repo and diff it against the sources that the packager used, but it's alot of overhead imo.

  2. laanwj commented at 11:33 AM on December 5, 2014: member

    Duplicate of #2476. Source tarballs will be part of the release downloads with 0.10 (as of #4727), and thus also parts of SHA256SUMS.asc, so you can consider this issue solved.

  3. laanwj closed this on Dec 5, 2014
  4. bitcoin locked this on Sep 8, 2021
Contributors
nilshlaanwj
Linked (view graph)
#2476 no separate source code tarball download available#4727 Gitian descriptors overhaul
github-metadata-mirror

This is a metadata mirror of the GitHub repository bitcoin/bitcoin. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2026-05-20 06:55 UTC