228962 – Pkgbase include manifest for verified-exec signing

Bug 228962 - Pkgbase include manifest for verified-exec signing

Summary: Pkgbase include manifest for verified-exec signing

Status:	Open

Alias:	None

Product:	Base System
Classification:	Unclassified
Component:	bin (show other bugs)
Version:	CURRENT
Hardware:	Any Any

Importance:	--- Affects Only Me
Assignee:	Simon J. Gerraty

URL:
Keywords:	feature, needs-qa, pkgbase

Depends on:
Blocks:

Reported:	2018-06-12 16:36 UTC by Rodney W. Grimes
Modified:	2022-12-16 03:49 UTC (History)
CC List:	5 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Rodney W. Grimes freebsd_committer

2018-06-12 16:36:58 UTC

Pkgbase include manifest for verified-exec signing
This would be nice to have

Comment 1 Simon J. Gerraty freebsd_committer

2018-09-05 20:20:05 UTC

Note: The manifest content can be as simple as

bin/cat sha256=440d6545530abfb6feb02bb625e3902e5b21974d41922b1d5e945a46de3a12bc

and entry is needed in a manifest for each file in a package that should be "signed".

The manifest should ideally be signed.

Comment 2 Ed Maste freebsd_committer

2022-05-30 19:13:07 UTC

In what context will the manifest be processed? Is there an opportunity to either access the pkg database, or generate the manifest from the pkg database? (Since it already has hashes of each package's files.)

Comment 3 Simon J. Gerraty freebsd_committer

2022-05-31 03:53:33 UTC

In a system that wants to only use signed binaries - enforced by mac_veriexec,
each package contains a signed manifest is loaded into the kernel so it can verify  all the package content.

The simplest arrangement is for the manifest to be generated and signed at the same time as the package.

Comment 4 Graham Perrin freebsd_committer

2022-12-16 03:49:34 UTC

Triage: if this is a feature request, then reduced severity is inherent.