From: "Fabian Grünbichler" <f.gruenbichler@proxmox.com>
To: Proxmox VE development discussion <pve-devel@lists.proxmox.com>
Subject: Re: [pve-devel] [PATCH v6 0/4] fix #5207: apt: check signature of repos with proxmox-pgp
Date: Fri, 07 Nov 2025 11:13:36 +0100 [thread overview]
Message-ID: <1762510326.l213rfyx7o.astroid@yuna.none> (raw)
In-Reply-To: <20251030132844.188242-1-n.frey@proxmox.com>
other than the small comments on two of the patches I just sent, this
seems to do the job!
it does somewhat rely on APT internals, but those are unlikely to change
any time soon, and if they do, we just lose a tiny bit of info, so it's
not too grave either..
On October 30, 2025 2:28 pm, Nicolas Frey wrote:
> This patch series moves in pgp verification code from POM into its
> own micro-crate `proxmox-pgp` to reuse it to verify a package is of
> Proxmox Origin, which fixes #5207.
>
> If this patch series is applied, then `proxmox-offline-mirror` should
> use the `proxmox-pgp` crate.
>
> The last patch again adds in the local file fallback in case that the
> URI starts with `file://` for (IMO) better UX. I'm fine with this
> being dropped if it's not desired, though.
>
> Changes since v5 (thanks @Shannon):
> * changed imports to be module level and correct ordering
> * adjust the signature verification to make it more viable to be in
> a library by collecting the errors and returning it as one
> instead of directly printing to `stderr`
> * cleaned up some minor nits
>
> Changes since v4 (thanks @Thomas for feedback):
> * added `proxmox-pgp` micro-crate and moved code from POM
> * removed reliance on gpgv in favor of now available `verify_signature`
> function in `proxmox-pgp`
> * removed http(s) fallback for cached InRelease file
> * split up initial patch into smaller commits
>
> Changes since v3:
> * Moved found_uri_or_signed to function and to the end of bool chain
> to prevent redundant signage checks to improve performance
> * Added fallback to the cached InRelease file to get it from repos URI
>
> Changes since v2:
> * correct the mapping in `gpg_signed`
>
> Changes since v1:
> * rewrite test so it compiles
>
> Nicolas Frey (4):
> add proxmox-pgp subcrate, move POM verifier code to it
> fix #5207: apt: check signature of repos with proxmox-pgp
> apt: add tests for POM release filenames
> apt: check for local POM InRelease as fallback
>
> Cargo.toml | 2 +
> proxmox-apt/Cargo.toml | 1 +
> proxmox-apt/src/repositories/repository.rs | 94 ++++++++--
> proxmox-pgp/Cargo.toml | 17 ++
> proxmox-pgp/debian/changelog | 5 +
> proxmox-pgp/debian/control | 40 +++++
> proxmox-pgp/debian/copyright | 18 ++
> proxmox-pgp/debian/debcargo.toml | 7 +
> proxmox-pgp/src/lib.rs | 5 +
> proxmox-pgp/src/verifier.rs | 194 +++++++++++++++++++++
> 10 files changed, 373 insertions(+), 10 deletions(-)
> create mode 100644 proxmox-pgp/Cargo.toml
> create mode 100644 proxmox-pgp/debian/changelog
> create mode 100644 proxmox-pgp/debian/control
> create mode 100644 proxmox-pgp/debian/copyright
> create mode 100644 proxmox-pgp/debian/debcargo.toml
> create mode 100644 proxmox-pgp/src/lib.rs
> create mode 100644 proxmox-pgp/src/verifier.rs
>
> --
> 2.47.3
>
>
> _______________________________________________
> pve-devel mailing list
> pve-devel@lists.proxmox.com
> https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
>
>
>
_______________________________________________
pve-devel mailing list
pve-devel@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
prev parent reply other threads:[~2025-11-07 10:13 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-10-30 13:28 Nicolas Frey
2025-10-30 13:28 ` [pve-devel] [PATCH v6 1/4] add proxmox-pgp subcrate, move POM verifier code to it Nicolas Frey
2025-11-07 10:14 ` Fabian Grünbichler
2025-10-30 13:28 ` [pve-devel] [PATCH v6 2/4] fix #5207: apt: check signature of repos with proxmox-pgp Nicolas Frey
2025-11-07 10:11 ` Fabian Grünbichler
2025-10-30 13:28 ` [pve-devel] [PATCH v6 3/4] apt: add tests for POM release filenames Nicolas Frey
2025-10-30 13:28 ` [pve-devel] [PATCH v6 4/4] apt: check for local POM InRelease as fallback Nicolas Frey
2025-11-07 10:13 ` Fabian Grünbichler [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1762510326.l213rfyx7o.astroid@yuna.none \
--to=f.gruenbichler@proxmox.com \
--cc=pve-devel@lists.proxmox.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.