Bug 86173
Summary: | scripts for checking source distribution signatures. | ||
---|---|---|---|
Product: | [Retired] Red Hat Linux | Reporter: | Jeremiah Johnson <jjohnson> |
Component: | rpm | Assignee: | Paul Nasrat <nobody+pnasrat> |
Status: | CLOSED WONTFIX | QA Contact: | Mike McLean <mikem> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 8.0 | CC: | mitr |
Target Milestone: | --- | Keywords: | FutureFeature |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Enhancement | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2005-09-26 21:36:25 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Jeremiah Johnson
2003-03-15 22:09:23 UTC
The scripts look useful, but need the following changes: a) the signature checking loads key to keyring, assumes that there is a keyring attached to the user building a package, and that the user has configured hkp server, etc. This isn't generally true with, say, a automated build system. Could you try loading key into local keyring from file? Assume that argv[1] follows usual *.sig *.asc gpg conventions.\ b) The colorization assumes a linux console. Could you remove, or, (even better) extract parameters from configured TERM if present? Any of dialog/slang/expect (or your favorite interpreter) might be useful. Thanks. The scripts are no longer available - please reopen mail rpm-devel-list if you still wish this for consideration for a future rpm release |