]> git.saurik.com Git - apt.git/commit
projects / apt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d84da49) | patch
unsigned Release files can expire, too
authorDavid Kalnischkies <david@kalnischkies.de>
Sun, 12 Apr 2015 09:20:55 +0000 (11:20 +0200)
committerDavid Kalnischkies <david@kalnischkies.de>
Sat, 18 Apr 2015 23:13:09 +0000 (01:13 +0200)
commitde1c9b8ad208ae677fc6e916a907e319f246b1e8
tree274e676efe68bc63792ffef3ac5d3f8dcc5f74catree | snapshot
parentd84da4995df24329e96d57a22136683a9e370f4ecommit | diff
unsigned Release files can expire, too

Checking Valid-Until on an unsigned Release file doesn't give us any
security brownie points as an attacker could just change the date and in
practice repositories with unsigned Release files will very likely not
have a Valid-Until date, but for symetry and the fact that being
unsigned is currently just a warning, while expired is a fatal error.
apt-pkg/acquire-item.cc diff | blob | blame | history
APT (for Cydia)