On 12/2/21 4:32 PM, Davide Cavalca via devel wrote:
There's support in robosignatory to ask to sign files (used for the
short lived IMA stuff), but I suspect it would need a new ability for
this.
Finally who is going to write this? Change owners?
Or do you expect robosignatory maintainers to do so?
Thanks for clarifying! Yes, I think robosignatory is likely what we
want here. We (the Change owners) expect to do the work, though we'll
likely need some advice/help around code review, testing and
deployment.
Could this be directly added to rpm instead of an external tool set?
rpm --addsign ./$RPM
to
rpm --addsign --addfsverity ./$RPM
I'm thinking about those who might also want to use it... end-users and third-party
repos such as RPMFusion.
_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
