Webrev:
http://cr.opensolaris.org/~bpytlik/ips-11611-v1/
This is the initial potential putback for manifest signing. I believe
it's fully functional but it does lack several features that might be
desired. For the initial putback, the default setting is ignore signatures.
I plan on writing some additional tests while this is out for review as
I anticipate it taking a while to converge given it's size and span.
Here is the list of features/bugs that are not currently part of this
set of changes but that are things that need to be done. Please let me
know if there's a reason this initial putback can't be done without one
or more of the following being done.
X509 features:
1) verify valid dates for certs
2) policy checks
3) add in support for alternative names
4) check that leaf cert's purpose is code signing/digital signature
5) support for oscp
6) support delta CRLs
7) support for DER formated certificates
Items needed to make the default behavior to be verify signatures
1) zones coordination
2) ai coordination
3) support for pub-meta data update so that new ca certs appear to the
client
when posted on the server
Other items:
1) api testing
2) add a pub check to make sure we're not publishing with a cert with
unsupported critical extensions
3) support for uri's other than http for crls
4) allow obsolete and renamed packages to be signed
5) properly handle variant tagged signatures
6) support for signing inflight transactions
7) change default policy to be verify instead of ignore
8) have pkgsign sign the most recent version of a package if no timestamp is
provided
9) have pkgsign sign all the packages in a repo that are not already signed
10) support for password protected private key files
11) verify that intermediate certificates are certificates during
publication
12) verify that signing certificates are certificates during publication
Thanks for taking a look,
Brock
_______________________________________________
pkg-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/pkg-discuss
