On Thu, 2008-04-03 at 00:24 +0300, Ville Skyttä wrote: > Reuse is not sad per se, but if this is indeed for checking package > signatures, rpm can do it and I assume the functionality to do it is > exposed > to python from it - wouldn't it be better to reuse it from rpm instead > of > pulling in an additional library for doing the same thing? Of course, > there > may be good reasons to do it this way; I'm nowhere near familiar > enough with > yum or rpm APIs or their development directions to be able to tell. > > WAG: Or perhaps this is for checking signatures on something else > than > packages, eg. repodata? It's actually for both: - checking sigs on repodata - eventually for checking sigs on packages - mainly so we don't have to open up the rpmdb to check sigs - as you do right now b/c of the gpg keys being stored in the rpmdb. -sv -- fedora-devel-list mailing list fedora-devel-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-devel-list
