diff options
| author | Bryan Drewery <bdrewery@FreeBSD.org> | 2013-10-26 03:43:02 +0000 |
|---|---|---|
| committer | Bryan Drewery <bdrewery@FreeBSD.org> | 2013-10-26 03:43:02 +0000 |
| commit | f12db248e7103a02ef63683a5d3054a5d88e9a5d (patch) | |
| tree | 7b91e0c37db66bdb804e9a06b551ac88c520b6e4 /etc/pkg/FreeBSD.conf | |
| parent | 95073c2d2e0dbcea302e089f936780a484ef3f40 (diff) | |
| download | src-f12db248e7103a02ef63683a5d3054a5d88e9a5d.tar.gz src-f12db248e7103a02ef63683a5d3054a5d88e9a5d.zip | |
Support checking signature for pkg bootstrap.
If the pkg.conf is configured with SIGNATURE_TYPE: FINGERPRINTS,
and FINGERPRINTS: /etc/keys/pkg then a pkg.sig file is fetched along
with pkg.txz. The signature contains the signature provided by the
signing server, and the public key. The .sig is the exact output
from the signing server in the following format:
SIGNATURE
<openssl signed>
CERT
<rsa public key>
END
The signature is verified with the following logic:
- If the .sig file is missing, it fails.
- If the .sig doesn't validate, it fails.
- If the public key in the .sig is not in the known trusted fingerprints,
it fails.
- If the public key is in the revoked key list, it fails.
Approved by: bapt
MFC after: 2 days
Discussed by: bapt with des, jonathan, gavin
Notes
Notes:
svn path=/head/; revision=257147
Diffstat (limited to 'etc/pkg/FreeBSD.conf')
| -rw-r--r-- | etc/pkg/FreeBSD.conf | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/etc/pkg/FreeBSD.conf b/etc/pkg/FreeBSD.conf index b36d20f26b9d..42ef769ae274 100644 --- a/etc/pkg/FreeBSD.conf +++ b/etc/pkg/FreeBSD.conf @@ -2,5 +2,7 @@ FreeBSD: { url: "pkg+http://pkg.freebsd.org/${ABI}/latest", mirror_type: "srv", + signature_type: "fingerprints", + fingerprints: "/etc/keys/pkg", enabled: "yes" } |