When SignTool is run on a .tar.gz archive that contains hard links, the resulting tarball becomes corrupted.
Specifically, the hard link entries in the archive are not preserved correctly. After signing:
- Hard-linked files are not located in the correct directory structure.
- Hard link entries do not correctly reference their intended targets.
- The resulting archive no longer faithfully represents the original tarball layout.
This behavior is likely caused by underlying .NET runtime library limitations around hard links. Adding library support is tracked with:
dotnet/runtime#74404
This issue is intended as a tracking item in Arcade to capture the impact on SignTool and to coordinate resolution once the underlying runtime limitation is addressed.
When
SignToolis run on a.tar.gzarchive that contains hard links, the resulting tarball becomes corrupted.Specifically, the hard link entries in the archive are not preserved correctly. After signing:
This behavior is likely caused by underlying .NET runtime library limitations around hard links. Adding library support is tracked with:
dotnet/runtime#74404
This issue is intended as a tracking item in Arcade to capture the impact on SignTool and to coordinate resolution once the underlying runtime limitation is addressed.