Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add verification for downloads of update.sh #63

Closed
wants to merge 2 commits into from
Closed

Add verification for downloads of update.sh #63

wants to merge 2 commits into from

Conversation

jturner314
Copy link
Contributor

Before, during the build process, packages were downloaded over http
without authentication. Now, the Release file and packages are properly
verified. If verification fails, a warning will be presented to the
user with the option to ignore it.

Note that in order to perform GPG verification of the Release file, the
user must have the Raspbian signing key in their keyring. The key can
be obtained from public keyservers (0x9165938D90FDDD2E) or from
https://archive.raspbian.org/raspbian.public.key.

Edit: I added another commit to use the Release file to check the available compression formats instead of using wget --spider. These two commits should resolve #55.

Note that I made the assumption that the last checksums in the Release file are SHA256 sums, which is true now but may change in the future.

@jturner314
Add verification for downloads of update.sh
40d5ee6 
Before, during the build process, packages were downloaded over http
without authentication. Now, the Release file and packages are properly
verified. If verification fails, a warning will be presented to the
user with the option to ignore it.

Note that in order to perform GPG verification of the Release file, the
user must have the Raspbian signing key in their keyring. The key can
be obtained from public keyservers (0x9165938D90FDDD2E) or from
https://archive.raspbian.org/raspbian.public.key.
@jturner314
Use Release file to check available extensions
d679622
@diederikdehaas diederikdehaas mentioned this pull request Jun 16, 2014
Closed
@diederikdehaas
Copy link
Member

Nice! I'll review it ASAP.

@jturner314 jturner314 mentioned this pull request Jun 22, 2014
Merged
@jturner314
Copy link
Contributor Author

Please see #66 instead, which is a superset of this pull request.

@jturner314 jturner314 closed this Jun 22, 2014
@jturner314 jturner314 deleted the auth-update branch June 22, 2014 07:52
hoehnp pushed a commit to hoehnp/raspbian-ua-netinst that referenced this pull request Jul 14, 2019
@FooDeas
installer: add capability to configure apt via conf-files (debian-pi#63)
b931654
hoehnp pushed a commit to hoehnp/raspbian-ua-netinst that referenced this pull request Jul 14, 2019
@FooDeas
installer: add apt-cacher(-ng) capability for installation process (d…
ed6fadf 
…ebian-pi#63)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Improve the download of packages process
2 participants
@jturner314 @diederikdehaas