On Wed, Feb 12, 2020 at 03:22:21PM +, Glen Barber wrote:
> > Have you considered the possibility of simply publishing a detached
> > signature with every MANIFEST, in a similar manner to what is done for
> > the installer images?
> >
>
> I have not, as a change to the misc/freebsd-release-man
On Tue, Feb 11, 2020 at 11:31:32PM +, Nathan Dorfman wrote:
> > The patch I have at the moment looks for the MANIFEST (rather, the
> > --) file in the location they are
> > installed by the misc/freebsd-release-manifests package.
>
> This seems reasonable, but I think the checksum script is al
Sorry for my delayed response.
On Mon, Feb 03, 2020 at 01:57:10PM +, Glen Barber wrote:
> First, if one installs from a snapshot, the MANIFEST file would only be
> valid until the next snapshot build.
>
> The second and third problems are somewhat related: the various
> distribution sets (bas
On Sat, Feb 01, 2020 at 11:34:20PM +, Nathan Dorfman wrote:
> On Thu, Jan 30, 2020 at 01:22:39PM +, Glen Barber wrote:
> > I honestly wasn't aware there was a jail subcommand to bsdinstall.
> > I think, rather than creating /usr/freebsd-dist on the host system, we
> > should instead check i
On Thu, Jan 30, 2020 at 01:22:39PM +, Glen Barber wrote:
> I honestly wasn't aware there was a jail subcommand to bsdinstall.
> I think, rather than creating /usr/freebsd-dist on the host system, we
> should instead check if the misc/freebsd-release-manifests package is
> installed and bail if
Hello all,
I really hope I'm missing something here, and we can all have a nice
chuckle at my expense.
But I can't see any way the integrity of the installer sets (base.txz,
kernel.txz and friends) can be verified cryptographically? There is a
MANIFEST file containing SHA256 checksums, but it its
Hi Nathan,
On Thu, Jan 30, 2020 at 12:50:06AM +, Nathan Dorfman wrote:
> On Mon, Jan 27, 2020 at 04:42:01PM +, Glen Barber wrote:
> > No, this last part is not true. The installer always verifies the
> > checksums against /usr/freebsd-dist/MANIFEST on the installation medium.
> >
> > In
On Mon, Jan 27, 2020 at 04:42:01PM +, Glen Barber wrote:
> No, this last part is not true. The installer always verifies the
> checksums against /usr/freebsd-dist/MANIFEST on the installation medium.
>
> In particular, this was done in r293223, where the LOCAL_DISTRIBUTIONS
> variable explici
On Sat, Jan 25, 2020 at 08:00:07PM +, Nathan Dorfman wrote:
> Hello all,
>
> I really hope I'm missing something here, and we can all have a nice
> chuckle at my expense.
>
> But I can't see any way the integrity of the installer sets (base.txz,
> kernel.txz and friends) can be verified crypt
Hello all,
I really hope I'm missing something here, and we can all have a nice
chuckle at my expense.
But I can't see any way the integrity of the installer sets (base.txz,
kernel.txz and friends) can be verified cryptographically? There is a
MANIFEST file containing SHA256 checksums, but it its
10 matches
Mail list logo
