#2711 F36 Change: Enable fs-verity in RPM
Opened a month ago by bcotton. Modified 6 days ago

Enable the use of fsverity for installed RPM files validation.


The discussion on the mailing list is still going on.

* leaving token -1 vote until the discussion quiets down to prevent auto-approval *

Metadata Update from @zbyszek:
- Issue tagged with: meeting

a month ago

This issue will be discussed during today's meeting.

* leaving token -1 vote until the discussion quiets down to prevent auto-approval *

Please don't lift that before the end of the year.

I recommend against this change as it increases the attack surface of RPM. There was a recent bug in RPM where a malformed package could (if I recall correctly) cause a heap-based buffer overflow, which is a potentially exploitable security vulnerability. If fsverity signatures were moved from the signature header (which is not signed) to the main header (which is), and were ignored if they were in the signature header, I would be fine with this.

Login to comment on this ticket.

Metadata