From owner-freebsd-stable@freebsd.org Tue Sep 8 13:41:35 2015 Return-Path: Delivered-To: freebsd-stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 7F233A0015A for ; Tue, 8 Sep 2015 13:41:35 +0000 (UTC) (envelope-from freebsd-listen@fabiankeil.de) Received: from smtprelay04.ispgateway.de (smtprelay04.ispgateway.de [80.67.31.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 3FA2F1989 for ; Tue, 8 Sep 2015 13:41:34 +0000 (UTC) (envelope-from freebsd-listen@fabiankeil.de) Received: from [78.35.135.116] (helo=fabiankeil.de) by smtprelay04.ispgateway.de with esmtpsa (TLSv1.2:AES128-GCM-SHA256:128) (Exim 4.84) (envelope-from ) id 1ZZJ6b-0003FH-La; Tue, 08 Sep 2015 15:38:37 +0200 Date: Tue, 8 Sep 2015 15:38:02 +0200 From: Fabian Keil To: Marko =?UTF-8?B?Q3VwYcSH?= Cc: freebsd-stable@freebsd.org Subject: Re: 10.2-RELEASE-p2 lost ability to bootstrap pkg with signature_type="pubkey" Message-ID: <71b353bf.343f9c90@fabiankeil.de> In-Reply-To: <20150908123838.238e5e74@efreet> References: <20150908123838.238e5e74@efreet> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; boundary="Sig_/EvQfR9/JqRH49OyNquhHe6X"; protocol="application/pgp-signature" X-Df-Sender: Nzc1MDY3 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 08 Sep 2015 13:41:35 -0000 --Sig_/EvQfR9/JqRH49OyNquhHe6X Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Marko Cupa=C4=87 wrote: > I just found out that 10.2-RELEASE-p2 lost ability to bootstrap pkg > with signature_type=3D"pubkey". >=20 > Quick search returns: > https://github.com/freebsd/pkg/issues/1309 > https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D202622 >=20 > I guess it is not hard to switch repo to fingerprints, however I would > not expect to lose this functionality by updating to patchlevel. The "functionality" pkg(7) "lost" is silently ignoring unsupported signature types which is dangerous if the network can't be trusted: https://www.freebsd.org/security/advisories/FreeBSD-EN-15:15.pkg.asc https://www.fabiankeil.de/gehacktes/hardenedbsd/ If you absolutely want to, you can still bootstrap insecurely by temporarily setting the signature type to none. Fabian --Sig_/EvQfR9/JqRH49OyNquhHe6X Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iEYEARECAAYFAlXu5LcACgkQBYqIVf93VJ3BvQCgjDqpvYNfkXMLwPCJADFnMGUt 8HkAn142kVNscD69TSmhh1IQgKI4jqSf =7wtA -----END PGP SIGNATURE----- --Sig_/EvQfR9/JqRH49OyNquhHe6X--