Re: [gentoo-dev] [News item review] Portage rsync tree verification (v5)

2018-01-29 Thread Michał Górny
Please may it be the last! --- Title: Portage rsync tree verification Author: Michał Górny Posted: 2018-01-xx Revision: 1 News-Item-Format: 2.0 Display-If-Installed: sys-apps/portage Starting with sys-apps/portage-2.3.22, Portage will verify the Gentoo repository after rsync

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v4)

2018-01-28 Thread Robin H. Johnson
On Sun, Jan 28, 2018 at 09:30:31PM +0100, Andrew Barchuk wrote: > Hi everyone, > > > three possible solutions for splitting distfiles were listed: > There's another option to use character ranges for each directory > computed in a way to have the files distributed evenly. One way to do > that is

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v4)

2018-01-28 Thread Andrew Barchuk
Hi everyone, > three possible solutions for splitting distfiles were listed: > > a. using initial portion of filename, > > b. using initial portion of file hash, > > c. using initial portion of filename hash. > > The significant advantage of the filename option was simplicity. With > that

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v4)

2018-01-28 Thread Michał Górny
Hopefully the final version. --- Title: Portage rsync tree verification Author: Michał Górny Posted: 2018-01-xx Revision: 1 News-Item-Format: 2.0 Display-If-Installed: sys-apps/portage Starting with sys-apps/portage-2.3.22, Portage will verify the Gentoo repository after

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-27 Thread R0b0t1
On Sat, Jan 27, 2018 at 8:27 AM, Michał Górny wrote: > W dniu czw, 25.01.2018 o godzinie 15∶55 -0600, użytkownik R0b0t1 > napisał: >> On Thu, Jan 25, 2018 at 3:45 PM, Michał Górny wrote: >> > W dniu czw, 25.01.2018 o godzinie 21∶37 +, użytkownik Robin H.

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v3)

2018-01-27 Thread Nils Freydank
Am Samstag, 27. Januar 2018, 15:26:44 CET schrieb Michał Górny: > [...] > > The new verification is intended for users who syncing via rsync. > Verification mechanisms for other methods of sync will be provided > in future. s/who syncing/who are syncing/ ("who sync via rsync" would sound a bit

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v3)

2018-01-27 Thread M. J. Everitt
On 27/01/18 14:26, Michał Górny wrote [excerpted]: > The verification is implemented via using app-portage/gemato. Currently, > the whole repository is verified after syncing. > I would drop either 'via' or 'using' - they both are the same verb/meaning and one is hence redundant. Just my 2c as a

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-27 Thread Michał Górny
W dniu czw, 25.01.2018 o godzinie 15∶55 -0600, użytkownik R0b0t1 napisał: > On Thu, Jan 25, 2018 at 3:45 PM, Michał Górny wrote: > > W dniu czw, 25.01.2018 o godzinie 21∶37 +, użytkownik Robin H. > > Johnson napisał: > > > On Thu, Jan 25, 2018 at 01:35:17PM +0100, Michał

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v3)

2018-01-27 Thread Michał Górny
Next round: Title: Portage rsync tree verification Author: Michał Górny Posted: 2018-01-xx Revision: 1 News-Item-Format: 2.0 Display-If-Installed: sys-apps/portage Starting with sys-apps/portage-2.3.22, Portage will verify the Gentoo repository after rsync by default. The

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread Alon Bar-Lev
On 26 January 2018 at 00:21, Robin H. Johnson wrote: > On Thu, Jan 25, 2018 at 11:55:58PM +0200, Alon Bar-Lev wrote: >> I did not looked into the detailed implementation, however, please >> make sure integrity check handles the same cases we have applied to >> emerge-webrsync

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread Robin H. Johnson
On Thu, Jan 25, 2018 at 11:55:58PM +0200, Alon Bar-Lev wrote: > I did not looked into the detailed implementation, however, please > make sure integrity check handles the same cases we have applied to > emerge-webrsync in the past, including: Gemato is the implementation of GLEP74/MetaManifest,

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread Alon Bar-Lev
Hi, On 25 January 2018 at 14:35, Michał Górny wrote: > > Starting with sys-apps/portage-2.3.22, Portage enables cryptographic > verification of the Gentoo rsync repository distributed over rsync > by default. This aims to prevent malicious third parties from altering > the

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread R0b0t1
On Thu, Jan 25, 2018 at 3:45 PM, Michał Górny wrote: > W dniu czw, 25.01.2018 o godzinie 21∶37 +, użytkownik Robin H. > Johnson napisał: >> On Thu, Jan 25, 2018 at 01:35:17PM +0100, Michał Górny wrote: >> > Title: Portage rsync tree verification >> > Author: Michał Górny

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread Michał Górny
W dniu czw, 25.01.2018 o godzinie 21∶37 +, użytkownik Robin H. Johnson napisał: > On Thu, Jan 25, 2018 at 01:35:17PM +0100, Michał Górny wrote: > > Title: Portage rsync tree verification > > Author: Michał Górny > > Posted: 2018-01-xx > > Revision: 1 > > News-Item-Format:

Re: [gentoo-dev] [News item review] Portage rsync tree verification

2018-01-25 Thread M. J. Everitt
On 25/01/18 11:01, Kristian Fiskerstrand wrote: > On 01/25/2018 11:04 AM, Michał Górny wrote: > >> The verification is implemented using app-portage/gemato. Currently, > ... "implemented in", as opposed to "using"? its implemented using > various cryptographic primitives, but gemato is the

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread Robin H. Johnson
On Thu, Jan 25, 2018 at 01:35:17PM +0100, Michał Górny wrote: > Title: Portage rsync tree verification > Author: Michał Górny > Posted: 2018-01-xx > Revision: 1 > News-Item-Format: 2.0 > Display-If-Installed: Starting with sys-apps/portage-2.3.22, Portage enables cryptographic

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread Ulrich Mueller
> On Thu, 25 Jan 2018, Michał Górny wrote: > Here's the updated version: > --- > Starting with sys-apps/portage-2.3.22, Portage enables cryptographic > verification of the Gentoo rsync repository distributed over rsync > by default. Looks like there's one "rsync" too much in that sentence.

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread Aaron W. Swenson
On 2018-01-25 13:35, Michał Górny wrote: > Display-If-Installed: =2.3.22 this same information? I know we don’t have expires, yet. How about making it signature.asc Description: Digital signature

Re: [gentoo-dev] [News item review] Portage rsync tree verification (v2)

2018-01-25 Thread Michał Górny
Here's the updated version: --- Title: Portage rsync tree verification Author: Michał Górny Posted: 2018-01-xx Revision: 1 News-Item-Format: 2.0 Display-If-Installed: https://www.gentoo.org/downloads/signatures/ --- -- Best regards, Michał Górny

Re: [gentoo-dev] [News item review] Portage rsync tree verification

2018-01-25 Thread Michał Górny
W dniu czw, 25.01.2018 o godzinie 12∶01 +0100, użytkownik Kristian Fiskerstrand napisał: > On 01/25/2018 11:04 AM, Michał Górny wrote: > > Hi, > > > > Thanks for your work on this! > > > This one would be committed once new sys-apps/portage release is > > wrapped up and hits ~arch. > > > > ---

Re: [gentoo-dev] [News item review] Portage rsync tree verification

2018-01-25 Thread Kristian Fiskerstrand
On 01/25/2018 11:04 AM, Michał Górny wrote: > Hi, > Thanks for your work on this! > This one would be committed once new sys-apps/portage release is > wrapped up and hits ~arch. > > --- Title: Portage rsync tree verification Author: Michał Górny > Posted: 2018-01-xx