Skip to content

bahamat/illumos-closed-integrity

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 

Repository files navigation

illumos Closed Bits

There are, and always have been some closed bits as part of illumos. These bits were originally obtained by multiple parties from http://dlc.sun.com/osol/on/downloads/current/ during the time that OpenSolaris was open. The parts of the closed bins that are used are a few various drivers (e.g., mtp, bnx), the IPSEC IKE daemon, and pax(1). This came up on illumos-developer@ recently.

This repo is meant to be a record, and an independently verifiable source for ensuring that they haven't changed. You can fork this repo

This repo contains various hashes of closed tar files used during the SmartOS build process. If the integrity of a source is in question, you may verify them here.

There are known weaknesses in several hashing algorithms, but at current there is no known weakness effective at producing collisions in multiple algorithms simultaneously.

The hashes were generated from the tar files downloaded from the SmartOS build system locations and have verified against independent copies used for OmniOS and Nexenta. In order for these files to be a compromised by a malicious actor, all copies would need to be simultanously compromised, or a sufficient conspiracy.

The following can be used for cross reference. The checksum of the files can be verified against the Hashes file in this repository.

The official location for obtaining these objects is https://github.com/illumos/closed. There are also the following independent mirrors maintained by various illumos distributions.

For further integrity verification, you can clone this repo to ensure that I have not changed the hashes with a forced push.

About

Repo proving the integrity of illumos closed bits.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published