Diffusion FreeBSD src repository 4e33c2e91835

pkg: add a pkgsign_verify_data callback
4e33c2e91835
Actions

Description

pkg: add a pkgsign_verify_data callback

This will be used to verify raw payloads, as if signed by pkg-key(8).
It will be used specifically in pkg(7) to verify .pubkeysig as published
by poudriere.

Amend verify_pubsignature() now to use it. For the RSA signer, we need
to verify using a sha256 of the data instead of the data itself.

Reviewed by: bapt

(cherry picked from commit 2e065d74a5b0ea32db7d4f6e3f78eaa17ee7685e)

Details

Provenance

kevans

Authored on Wed, Jan 1, 9:10 PM

Parents

rG082f3564f94d: pkg: abstract rsa out behind a pkgsign API

Branches

Unknown

Tags

Unknown

Event Timeline

kevans committed rG4e33c2e91835: pkg: add a pkgsign_verify_data callback (authored by kevans).Sat, Jan 11, 2:48 AM

Changes (3)

Path

Size

usr.sbin/

pkg/

pkg.c

pkg.h

rsa.c

rG4e33c2e91835

View Options

usr.sbin/pkg/pkg.c

View Options

usr.sbin/pkg/pkg.h

View Options

pkg: add a pkgsign_verify_data callback4e33c2e91835Actions

Description

Details

Event Timeline

Changes (3)

rG4e33c2e91835

usr.sbin/pkg/pkg.c

usr.sbin/pkg/pkg.h

usr.sbin/pkg/rsa.c

pkg: add a pkgsign_verify_data callback
4e33c2e91835
Actions