From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 64E59139084 for ; Sat, 25 Nov 2017 20:49:40 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id E1DB2E0E43; Sat, 25 Nov 2017 20:49:38 +0000 (UTC) Received: from smtp.gentoo.org (woodpecker.gentoo.org [IPv6:2001:470:ea4a:1:5054:ff:fec7:86e4]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id BF554E0E3C for ; Sat, 25 Nov 2017 20:49:38 +0000 (UTC) Received: from oystercatcher.gentoo.org (unknown [IPv6:2a01:4f8:202:4333:225:90ff:fed9:fc84]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id F115833FE60 for ; Sat, 25 Nov 2017 20:49:37 +0000 (UTC) Received: from localhost.localdomain (localhost [IPv6:::1]) by oystercatcher.gentoo.org (Postfix) with ESMTP id 52F8AA780 for ; Sat, 25 Nov 2017 20:49:35 +0000 (UTC) From: "Michał Górny" To: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: 8bit Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Michał Górny" Message-ID: <1511642955.3afd98c035ebdbcb3cb06a89ad68c88285f52b76.mgorny@gentoo> Subject: [gentoo-commits] data/glep:master commit in: / X-VCS-Repository: data/glep X-VCS-Files: glep-0074.rst X-VCS-Directories: / X-VCS-Committer: mgorny X-VCS-Committer-Name: Michał Górny X-VCS-Revision: 3afd98c035ebdbcb3cb06a89ad68c88285f52b76 X-VCS-Branch: master Date: Sat, 25 Nov 2017 20:49:35 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org X-Archives-Salt: 1d83fc5a-af0a-41ef-a0cb-cbb29d18b307 X-Archives-Hash: 78849928886b0978ae91bd36ee4565ff commit: 3afd98c035ebdbcb3cb06a89ad68c88285f52b76 Author: Michał Górny gentoo org> AuthorDate: Mon Nov 13 16:56:46 2017 +0000 Commit: Michał Górny gentoo org> CommitDate: Sat Nov 25 20:49:15 2017 +0000 URL: https://gitweb.gentoo.org/data/glep.git/commit/?id=3afd98c0 glep-0074: Clarify timestamp handling of sub-Manifests glep-0074.rst | 17 ++++++++++++----- 1 file changed, 12 insertions(+), 5 deletions(-) diff --git a/glep-0074.rst b/glep-0074.rst index b4dd7a0..e8fc849 100644 --- a/glep-0074.rst +++ b/glep-0074.rst @@ -162,7 +162,7 @@ for which the verification failed. Timestamp verification ---------------------- -The Manifest file can contain a ``TIMESTAMP`` entry to account +The top-level Manifest file can contain a ``TIMESTAMP`` entry to account for attacks against tree update distribution. If such an entry is present, it should be updated every time at least one of the Manifests changes. Every unique timestamp value must correspond @@ -180,6 +180,11 @@ using a secure channel from a trusted source for exact comparison. The exact details of such a solution are outside the scope of this specification. +``TIMESTAMP`` entries may also be present in sub-Manifests. Those +timestamps must not be newer than the timestamp of the top-level +Manifest (if present). This specification does not define any specific +use for them. + Modern Manifest tags -------------------- @@ -190,10 +195,9 @@ The Manifest files can specify the following tags: Specifies a timestamp of when the Manifest file was last updated. The timestamp must be a valid second-precision ISO8601 extended format combined date and time in UTC timezone, i.e. using the following - ``strftime()`` format string: ``%Y-%m-%dT%H:%M:%SZ``. Optionally used - in the top-level Manifest file. The package manager can use it - to detect an outdated repository checkout as described in `Timestamp - verification`_. + ``strftime()`` format string: ``%Y-%m-%dT%H:%M:%SZ``. Optional. + The package manager can use it to detect an outdated repository + checkout as described in `Timestamp verification`_. ``MANIFEST ...`` Specifies a sub-Manifest. The sub-Manifest must be verified like @@ -605,6 +609,9 @@ in the distribution process, past the Manifest generation phase. Those files will most likely receive ``IGNORE`` entries and therefore be not suitable to safe use. +The specification permits additional timestamps in sub-Manifest files +for local use. A generic testing tool should ignore them. + New vs deprecated tags ----------------------