-
Notifications
You must be signed in to change notification settings - Fork 24
RPM package signatures and digests
Panu Matilainen edited this page Jun 26, 2020
·
7 revisions
Table describing signatures and digests used in RPM:
| RPMSIGTAG_ | RPMTAG_ | Version | Algorithm | Location | Range |
|---|---|---|---|---|---|
| MD5 | SIGMD5 | 3.0 | MD5 | S | HP |
| PGP | SIGPGP | 3.0 | OpenPGP/RSA | S | HP |
| GPG | SIGGPG | 3.0 | OpenPGP/DSA | S | HP |
| SHA1 | SHA1HEADER | 4.0 | SHA1 | S | H |
| RSA | RSAHEADER | 4.0 | OpenPGP/RSA | S | H |
| DSA | DSAHEADER | 4.0 | OpenPGP/DSA | S | H |
| SHA256 | SHA256HEADER | 4.14 | SHA256 | S | H |
| - | PAYLOADDIGEST | 4.14 | SHA256 (*) | H | Pc |
| - | PAYLOADDIGESTALT | 4.16 | SHA256 (*) | H | P |
| - | FILEMD5 | 3.0 | MD5 | H | F |
| - | FILEDIGESTS | 4.6 | SHA256 (**) | H | F |
- S = Signature header
- H = Main header
- P = Payload
- F = Files in the payload (uncompressed)
- c = compressed content
- (*) = Configurable, defaults to SHA256
- (**) = Configurable, defaults to SHA256 in rpm >= 4.14, MD5 in older