RPM Community Forums

Mailing List Message of <rpm-devel>

(no subject)

From: Jeff Johnson <n3npq@mac.com>
Date: Tue 14 Aug 2007 - 20:07:07 CEST
Message-Id: <9BBBEF9B-1D29-467C-8241-E0B70B9AECF2@mac.com> 
As threatened here
     https://lists.dulug.duke.edu/pipermail/rpm-devel/2007-May/ 
002677.html
I've marked RPMv3 header+payload signing code and defaulted to not  
compile.

The next issue will be to secure the header+payload MD5 digest by  
including
in the signed metadata header, not as a detached element in a signature
header.

There are no simple and transparent ways to achieve adding a digest  
to the
header without zero'ing (or otherwise initializing) the data in the  
header before checking
the digest.

The 16b in a header immutable region trailer are the likeliest  
candidate, with initialization
to the immutable region header before verifying the header+payload  
digest, is the
obvious implementation imho.

But I'll listen to other suggestions, if any.

73 de Jeff
  • application/pkcs7-signature attachment: smime.p7s
Received on Tue Aug 14 20:07:17 2007
Driven by Jeff Johnson and the RPM project team.
Hosted by OpenPKG and Ralf S. Engelschall.
Powered by FreeBSD and OpenPKG.