On 25-08-20, Paul Spooren wrote: > On 24.08.20 05:07, Baptiste Jonglez wrote: > > From: Baptiste Jonglez <g...@bitsofnetworks.org> > > > > Currently, package index signatures are only checked when opkg runs on the > > OpenWrt device. The verification script is hard-coded to a path in > > /usr/sbin/. > > > > Making this path configurable is a first step to implement signature > > verification in host builds of opkg (e.g. in the imagebuilder). > > > > Signed-off-by: Baptiste Jonglez <g...@bitsofnetworks.org> > > Great, I was just looking for something like that! Thank you very much. > > Tested via an ImageBuilder moving a `exit 0` script to the host machine at > `/usr/sbin/opkg-key` and afterwards defining a custom place, both worked > fine.
Thanks for testing. > The openwrt.git/opkg-key (not opkg.git/opkg-key) script uses currently a > hard coded key position (`/etc/opkg/keys`) which should be patched next. Yes, several more changes need to be done in the openwrt build system. But for opkg this change should be enough to get things going. Baptiste
signature.asc
Description: PGP signature
_______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
