Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Signed dictionary #37

Open
jheretic opened this issue Jan 3, 2024 · 1 comment
Open

Signed dictionary #37

jheretic opened this issue Jan 3, 2024 · 1 comment

Comments

@jheretic
Copy link

jheretic commented Jan 3, 2024

I'm very interested in using bita for a software update project I'm working on, but it would be extremely useful if it were possible to be able to verify the release image with a cryptographic signature (probably PGP). My understanding is that simply signing the archive file wouldn't be very useful because you'd need to download the entire archive in order to verify the signature, defeating the point of the incremental downloads.

However, because the dictionary contains cryptographic hashes of all the chunks, I believe it would be sufficient to simply provide a signature to authenticate the dictionary, which would then validate the integrity of all the associated chunks. I would propose using the Sequoia library to generate a <archive filename>.sig file at compression time that contains a detached signature of the dictionary, and that bita/bitar would download and use that signature, if present, when fetching the archive in order to authenticate the dictionary.

Does that sound like a reasonable approach?
@oll3
Copy link
Owner

oll3 commented Jan 3, 2024

That's interesting idea and I have too thought about signing archives from time to time. And yes, I think signing the dictionary (or the full header, or the header checksum) should be a sufficient, and efficient, way of signing an archive.

Using a separate signature file would be one way to do it. My main objection to this approach is that it might give the impression that the signature file is for the full archive and could be validated with some external tool which do not understand the archive format, while it can't. This might just be me though.

Another approach would be to embed the signature with the archive (probably appending it after the header checksum).
I think this would be preferable to me. For one, not having to keep signature files around. And I think this might be easier to integrate with the bitar library. And in the name of silly optimizations it would potentially result in one less http request. And it should be possible to do in a backwards compatible way.

What do you think, are there any obvious drawbacks with the "embed" approach compared to the separate file approach, as you see it?

I would propose using the Sequoia

sequoia-openpgp would be the lib to use? I haven't used it before but I guess it would do the work. Possibly a bit disturbing that it's depending on openssl and has quite a heavy list of other dependencies too.

I don't have any alternative to propose atm, but I think I would prefer if it was a lighter lib and without external c libraries. Mainly since small is nice and no external C libs makes building and deploying on different targets simpler. Do you have any alternatives at hand?

Other than that I would like to see this feature added and hope we can find a good way forward!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@oll3 @jheretic