Bug 228962 - Pkgbase include manifest for verified-exec signing
Summary: Pkgbase include manifest for verified-exec signing
Status: Open
Alias: None
Product: Base System
Classification: Unclassified
Component: bin (show other bugs)
Version: CURRENT
Hardware: Any Any
: --- Affects Only Me
Assignee: Simon J. Gerraty
URL:
Keywords: feature, needs-qa, pkgbase
Depends on:
Blocks:
 
Reported: 2018-06-12 16:36 UTC by Rodney W. Grimes
Modified: 2022-12-16 03:49 UTC (History)
5 users (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Rodney W. Grimes freebsd_committer freebsd_triage 2018-06-12 16:36:58 UTC
Pkgbase include manifest for verified-exec signing
This would be nice to have
Comment 1 Simon J. Gerraty freebsd_committer freebsd_triage 2018-09-05 20:20:05 UTC
Note: The manifest content can be as simple as

bin/cat sha256=440d6545530abfb6feb02bb625e3902e5b21974d41922b1d5e945a46de3a12bc

and entry is needed in a manifest for each file in a package that should be "signed".

The manifest should ideally be signed.
Comment 2 Ed Maste freebsd_committer freebsd_triage 2022-05-30 19:13:07 UTC
In what context will the manifest be processed? Is there an opportunity to either access the pkg database, or generate the manifest from the pkg database? (Since it already has hashes of each package's files.)
Comment 3 Simon J. Gerraty freebsd_committer freebsd_triage 2022-05-31 03:53:33 UTC
In a system that wants to only use signed binaries - enforced by mac_veriexec,
each package contains a signed manifest is loaded into the kernel so it can verify  all the package content.

The simplest arrangement is for the manifest to be generated and signed at the same time as the package.
Comment 4 Graham Perrin freebsd_committer freebsd_triage 2022-12-16 03:49:34 UTC
Triage: if this is a feature request, then reduced severity is inherent.