Re: dpkg-sig support wanted?

To: Simon Richter <Simon.Richter@hogyros.de>
Cc: Anthony Towns <aj@azure.humbug.org.au>, debian-devel@lists.debian.org
Subject: Re: dpkg-sig support wanted?
From: Goswin von Brederlow <brederlo@informatik.uni-tuebingen.de>
Date: Fri, 25 Nov 2005 15:22:37 +0100
Message-id: <[🔎] 87k6ewzu1e.fsf@informatik.uni-tuebingen.de>
In-reply-to: <[🔎] 4386EAB1.4090602@hogyros.de> (Simon Richter's message of "Fri, 25 Nov 2005 11:42:57 +0100")
References: <[🔎] 877jb0iswl.fsf@nahar.marcbrockschmidt.de> <[🔎] 87fypntzzo.fsf@mid.deneb.enyo.de> <[🔎] 20051123160817.GB13417@cyan.localnet> <[🔎] 20051123220920.GD5414@hezmatt.org> <[🔎] 20051124023037.GE15019@cyan.localnet> <[🔎] 20051124131345.GE17550@khazad-dum.debian.net> <[🔎] 20051125025707.GD19298@cyan.localnet> <[🔎] 4386EAB1.4090602@hogyros.de>

Simon Richter <Simon.Richter@hogyros.de> writes:

>>>IF this means we can switch the effort to a detached signature that is more
>>>powerful than a .changes file (or we are allowed to have multiple signatures
>>> in a .changes file),
>
> That is already possible with gnupg, just not well-documented; I'm not
> entirely sure what interesting breakage would occur if one were to
> upload a changes file with multiple signatures.

It gives a parse error and the DAK rejects the file.

>>>where dpkg would simply refuse
>>>per user-set policy any non-signed deb or any deb without a specific
>>>signature...
>
>> I'm sorry, but you're back to the snakeoil use for deb sigs. Expecting
>> a signature by a random Debian developer to mean something is not
>> reasonable.

A signature in the deb by a random developer is as trustworthy as the
changes file and you already trust that. So we are going from snakeoil
to snakoil. No harm done.

> That's why there can be multiple signatures. There would be one from
> the maintainer/buildd, a few from the Debian archive (for example, you
> could add one sig for "officially in Debian unstable", one for
> "migrated to testing" and one for "in a stable release") and if the
> idea of adding description/template translations later on catches on,
> also some from the translators/translation system.

Although that would alter the packages md5sum and even alter a package
while still being in a distribution (the unstable deb would suddenly
gain a signature). It would be a big change to allow this.

>     Simon

Reply to:

Follow-Ups:
- Re: dpkg-sig support wanted?
  - From: Matthew Palmer <mpalmer@debian.org>

References:
- dpkg-sig support wanted?
  - From: Marc 'HE' Brockschmidt <he@debian.org>
- Re: dpkg-sig support wanted?
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: dpkg-sig support wanted?
  - From: Anthony Towns <aj@azure.humbug.org.au>
- Re: dpkg-sig support wanted?
  - From: Matthew Palmer <mpalmer@debian.org>
- Re: dpkg-sig support wanted?
  - From: Anthony Towns <aj@azure.humbug.org.au>
- Re: dpkg-sig support wanted?
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: dpkg-sig support wanted?
  - From: Anthony Towns <aj@azure.humbug.org.au>
- Re: dpkg-sig support wanted?
  - From: Simon Richter <Simon.Richter@hogyros.de>

Prev by Date: Re: Secret changes for binNMUs
Next by Date: Re: There must be bug. But where?
Previous by thread: Re: dpkg-sig support wanted?
Next by thread: Re: dpkg-sig support wanted?
Index(es):
- Date
- Thread