I'd like to use https://wiki.gentoo.org/wiki/Integrity_Measurement_Architecture on my Gentoo systems. This uses an xattr with a hash of what the file was measured to be at some point in time and I would like to pull this hash out of what portage saw when it installed the file. MD5 is not usable with IMA, and SHA1 is also considered shattered - could we please have the hash recorded in CONTENTS to be SHA256? Reproducible: Always
See also bugs: https://bugs.gentoo.org/654122 https://bugs.gentoo.org/605082