Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 07 Feb 2001 02:02:23 -0700
From:      Wes Peters <wes@softweyr.com>
To:        Kris Kennaway <kris@obsecurity.org>
Cc:        Maxim Sobolev <sobomax@FreeBSD.org>, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject:   Re: cvs commit: src/usr.sbin/pkg_install/sign Makefile  READMEcheck.ccommon.c extern.h gzip.c gzip.h main.c pgp.h  pgp_check.cpgp_sign.cpkg_sign.1 sha1.c sign.c stand.c stand.h x509.c
Message-ID:  <3A810F1F.5C067310@softweyr.com>
References:  <200102060646.f166kgf65013@freefall.freebsd.org> <3A7FB338.57B1EE07@FreeBSD.org> <3A80324E.8F170DDF@softweyr.com> <20010206193030.A17973@mollari.cthul.hu>
next in thread | previous in thread | raw e-mail | index | archive | help 
Kris Kennaway wrote:
> 
> On Tue, Feb 06, 2001 at 10:20:14AM -0700, Wes Peters wrote:
> >
> > I'll be looking at ways to extend it to sign bzipped archives also, but the
> > intent is to provide a way to verify that packages have been correctly
> > transmitted across some distribution mechanism, and may mutate into something
> > that has nothing to do with the gzip header used now.
> 
> The long-talked about plan to use .zip for packageNG is also relevant
> here. The code which does the signing is independent of how it
> attaches the signatures to the archive.

See immediately previous conversation with Jeremy Lea in this forum.  The
gzip header wasn't an ideal location, it was just what the code inherited
from OpenBSD.  Adding an @sign {type} {data} directive to the packing list
was next on my list of things to do with this code, but it got shelved
last summer because this was working well enough for what it needed to do.
For FreeBSD, I'm perfectly willing to take the next (several, if necessary)
steps.

	(This week was spent dreaming up ways to make packages that 
	can be installed on a running system, or into a chroot image 
	on disk being prepared for duplication.  Augh!)

-- 
            "Where am I, and what am I doing in this handbasket?"

Wes Peters                                                         Softweyr LLC
wes@softweyr.com                                           http://softweyr.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A810F1F.5C067310>