On Tue, 2007-01-23 at 11:11 -0800, Stephen Hahn wrote: > That bring us to two choices for sha*sum:
There are more than two possible choices here. > A. These commands will be withdrawn from this case. As far as I > can see, the appropriate steps are: > > 1. File RFE against libmd5 for the new *_stream() interfaces. > > 2. Make upstream code corrections to sha*sum. > > 3. Await release of coreutils version with changes accepted. > > 4. File supplementary case, advertising inclusion of > additional commands. As there are no caller-visible interface changes to the commands I don't see any reason to hold off on integration until the changes are accepted by the upstream maintainer. > B. The commands will be provided, with requirements that > > 1. "Non-FIPS" disclaimer text will be added to required > manual pages. I believe this has an unacceptable risk of creating FUD both about our level of commitment to FIPS compliance and support of the GNU core utils; it is also (IMHO) more work than fixing sha*sum to use libmd. > (shred is already en route to handling similar to B. I don't believe this is an appropriate response.
