> From: Vitaly Zaitsev via devel [mailto:devel@xxxxxxxxxxxxxxxxxxxxxxx] > Sent: Thursday, December 30, 2021 12:16 PM > On 29/12/2021 21:53, Michel Alexandre Salim wrote: > > If/when something like this gets shipped, I hope Fedora limits itself to > > shipping a policy that is the equivalent of SELinux's 'targeted' policy: > > protect the RPMs that Fedora ships from being tampered with, let users > > do whatever on top. > > What about if the user wants to replace Fedora's version with another > from mock/COPR? I have a good example for that. I'm using myself a COPR repository to build the kernel package with the DIGLIM patches. That kernel also includes my own GPG key generated for me by COPR. This has not been decided yet, but likely the Fedora kernel will contain the official Fedora keys, and the user will decide to add new keys (including those from COPR). A simple way to find which keys you need will be from the RPM DB: rpm -qa | grep gpg-pubkey- Roberto HUAWEI TECHNOLOGIES Duesseldorf GmbH, HRB 56063 Managing Director: Li Peng, Zhong Ronghua _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
