From: Nicolas Frey <n.frey@proxmox.com>
To: pve-devel@lists.proxmox.com
Subject: [pve-devel] [PATCH proxmox v5 0/4] fix #5207: apt: check signage of repos with proxmox-pgp
Date: Thu, 23 Oct 2025 12:39:49 +0200 [thread overview]
Message-ID: <20251023103953.305810-1-n.frey@proxmox.com> (raw)
This patch series moves in pgp verification code from POM into its
own micro-crate `proxmox-pgp` to reuse it to verify a package is of
Proxmox Origin, which fixes #5207.
If this patch series is applied, then `proxmox-offline-mirror` should
use the `proxmox-pgp` crate.
The last patch again adds in the local file fallback in case that the
URI starts with `file://` for (IMO) better UX. I'm fine with this
being dropped if it's not desired, though.
Changes since v4 (thanks @Thomas for feedback):
* added `proxmox-pgp` micro-crate and moved code from POM
* removed reliance on gpgv in favor of now available `verify_signature`
function in `proxmox-pgp`
* removed http(s) fallback for cached InRelease file
* split up initial patch into smaller commits
Changes since v3:
* Moved found_uri_or_signed to function and to the end of bool chain
to prevent redundant signage checks to improve performance
* Added fallback to the cached InRelease file to get it from repos URI
Changes since v2:
* correct the mapping in `gpg_signed`
Changes since v1:
* rewrite test so it compiles
Nicolas Frey (4):
add proxmox-pgp subcrate, move POM verifier code to it
fix #5207: apt: check signage of repos with proxmox-pgp
apt: add tests for POM release filenames
apt: check for local POM InRelease as fallback
Cargo.toml | 2 +
proxmox-apt/Cargo.toml | 1 +
proxmox-apt/src/repositories/repository.rs | 94 ++++++++--
proxmox-pgp/Cargo.toml | 17 ++
proxmox-pgp/debian/changelog | 5 +
proxmox-pgp/debian/control | 40 +++++
proxmox-pgp/debian/copyright | 18 ++
proxmox-pgp/debian/debcargo.toml | 7 +
proxmox-pgp/src/lib.rs | 5 +
proxmox-pgp/src/verifier.rs | 200 +++++++++++++++++++++
10 files changed, 379 insertions(+), 10 deletions(-)
create mode 100644 proxmox-pgp/Cargo.toml
create mode 100644 proxmox-pgp/debian/changelog
create mode 100644 proxmox-pgp/debian/control
create mode 100644 proxmox-pgp/debian/copyright
create mode 100644 proxmox-pgp/debian/debcargo.toml
create mode 100644 proxmox-pgp/src/lib.rs
create mode 100644 proxmox-pgp/src/verifier.rs
--
2.47.3
_______________________________________________
pve-devel mailing list
pve-devel@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
next reply other threads:[~2025-10-23 10:40 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-10-23 10:39 Nicolas Frey [this message]
2025-10-23 10:39 ` [pve-devel] [PATCH proxmox v5 1/4] add proxmox-pgp subcrate, move POM verifier code to it Nicolas Frey
2025-10-23 10:39 ` [pve-devel] [PATCH proxmox v5 2/4] fix #5207: apt: check signage of repos with proxmox-pgp Nicolas Frey
2025-10-23 14:24 ` Nicolas Frey
2025-10-23 10:39 ` [pve-devel] [PATCH proxmox v5 3/4] apt: add tests for POM release filenames Nicolas Frey
2025-10-23 10:39 ` [pve-devel] [PATCH proxmox v5 4/4] apt: check for local POM InRelease as fallback Nicolas Frey
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20251023103953.305810-1-n.frey@proxmox.com \
--to=n.frey@proxmox.com \
--cc=pve-devel@lists.proxmox.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.