From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-dev+bounces-82509-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id B07131396D9
	for <garchives@archives.gentoo.org>; Sat, 28 Oct 2017 02:41:14 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 8DAB7E0CB8;
	Sat, 28 Oct 2017 02:41:08 +0000 (UTC)
Received: from smtp.gentoo.org (woodpecker.gentoo.org [IPv6:2001:470:ea4a:1:5054:ff:fec7:86e4])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 453EFE0C7A
	for <gentoo-dev@lists.gentoo.org>; Sat, 28 Oct 2017 02:41:08 +0000 (UTC)
Received: from [172.16.0.17] (cpe-72-227-68-175.maine.res.rr.com [72.227.68.175])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	(Authenticated sender: desultory)
	by smtp.gentoo.org (Postfix) with ESMTPSA id A01F933BEA7
	for <gentoo-dev@lists.gentoo.org>; Sat, 28 Oct 2017 02:41:06 +0000 (UTC)
Subject: Re: [gentoo-dev] [RFC] GLEP 74: Full-tree verification using Manifest
 files
To: gentoo-dev@lists.gentoo.org
References: <vunPpnZDFNKZhL/+SI/iq/@GfqW2F+BhpEyd/ogsqAfY>
 <D2EE0060-D25D-4A6F-9D16-FD8F0CE0A24F@gentoo.org>
From: Dean Stephens <desultory@gentoo.org>
Message-ID: <a78bbce3-a728-7d9e-7b21-91f27ae2c6a2@gentoo.org>
Date: Fri, 27 Oct 2017 22:41:03 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101
 Thunderbird/45.8.0
Precedence: bulk
List-Post: <mailto:gentoo-dev@lists.gentoo.org>
List-Help: <mailto:gentoo-dev+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-dev+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-dev+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-dev.gentoo.org>
X-BeenThere: gentoo-dev@lists.gentoo.org
Reply-to: gentoo-dev@lists.gentoo.org
MIME-Version: 1.0
In-Reply-To: <D2EE0060-D25D-4A6F-9D16-FD8F0CE0A24F@gentoo.org>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
X-Archives-Salt: a5c36e52-6ccf-4ac6-ae61-fd4761a30188
X-Archives-Hash: a96ee6041a6c118ef7d9b1acc445af69

On 10/27/17 02:22, Michał Górny wrote:
> Yes. We can't technically distinguish intentional package removal by user from malicious third party stripping them. This is something that a package manager extension might handle but it doesn't belong in the spec.
> 
"Implementations may provide mechanisms for verifying partial
repositories or accepting repositories which could not be fully
verified, such mechanisms are outside the scope of this document."

Especially given: "The package manager may reject any package or even
the whole repository if it may refer to files for which the verification
failed."