Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Request: Allow pubkey validation with pkg bootstrap #1309

Closed
lattera opened this issue Aug 22, 2015 · 5 comments
Closed

Feature Request: Allow pubkey validation with pkg bootstrap #1309

lattera opened this issue Aug 22, 2015 · 5 comments

Comments

@lattera
Copy link

lattera commented Aug 22, 2015

pkg bootstrap currently doesn't support signature_type="pubkey". It either needs to or the pubkey signature type should be removed entirely in favor of fingerprints. This is a problem with downstream distributions like HardenedBSD who use signature_type="pubkey" and haven't yet made the switch to fingerprints due to lack of documentation surrounding fingerprints.
@infracaninophile
Copy link
Member

On 22/08/2015 19:27, Shawn Webb wrote:

pkg bootstrap currently doesn't support signature_type="pubkey".
It either needs to or the pubkey signature type should be removed
entirely in favor of fingerprints. This is a problem with downstream
distributions like HardenedBSD who use signature_type="pubkey" and
haven't yet made the switch to fingerprints due to lack of
documentation surrounding fingerprints.

The pkg that checks signatures during bootstrap is pkg(7) which is part
of the base system. This is not something that can be changed that
readily in release branches. It doesn't necessarily support all of the
signature types available to the full pkg(8).

It is probably going to be more productive for you to investigate
exactly how fingerprints work and satisfy yourself they are an effective
means of authenticating the initial installation of pkg(8).

Cheers,

Matthew

@lattera
Copy link
Author

lattera commented Aug 24, 2015

I guess the question stems down to: should pubkey signature type be added to pkg(7) or removed from pkg(8)? In case of the former, FreeBSD's bugzilla would likely be the place. In case of the latter, this bug report is the place.

@bapt
Copy link
Member

bapt commented Aug 24, 2015

The former, given pubkey is for now our only "simple mechanism" for signing. I have been willing to add it to pkg(7) for a while, but never found time

@lattera
Copy link
Author

lattera commented Aug 24, 2015

Yeah. It really would've been nice to have it supported. I'm having to rework how we in HardenedBSD build packages. It seems that Poudriere doesn't support building package repos that use the fingerprint signature type. I end up having to re-run the pkg repo command with the signing_command option. I also have to manually generate the .sig file for pkg.txz. How does FreeBSD do it?

@lattera
Copy link
Author

lattera commented Aug 24, 2015

Bugzilla ticket opened in FreeBSD: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=202622

@lattera lattera closed this as completed Aug 24, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@bapt @lattera @infracaninophile