Re: [CVS] RPM: rpm-5_3: rpm/tests/ref/ hkp

Jeff Johnson Tue, 25 Jan 2011 06:40:01 -0800

The "BAD" and "OK" that are checked in are highly dependent
on where I happen to check-in references. Caveat emptor.


You might look at at tests/thkp.c and add the pubkeys of
interest to Mandriva. There's means in thkp.c to do that
from simple manifests, not by recompiling thkp.c, as well.

And the real issue isn't whether hkp:// is enabled or not, but
rather whether pubkeys are available on client machines.

Until distro installers start proactively installing
pubkeys that are reliably available from known sources,
RPM is _FORCED_ to hkp:// in order to GUARANTEE that
a pubkey retrieval can/will be attempted. Making pubkeys
ALWAYS AVAILABLE is the necessary precursor for MANDATORY
package signature checking. hkp:// retrieval is hardly the
interesting or even a useful implementation, just distro
installer's aren't doing the job sufficiently reliably.

hth

73 de Jeff
On Jan 25, 2011, at 9:03 AM, Per Øyvind Karlsen wrote:

>  RPM Package Manager, CVS Repository
>  http://rpm5.org/cvs/
>  ____________________________________________________________________________
> 
>  Server: rpm5.org                         Name:   Per Øyvind Karlsen
>  Root:   /v/rpm/cvs                       Email:  pkarl...@rpm5.org
>  Module: rpm                              Date:   25-Jan-2011 15:03:19
>  Branch: rpm-5_3                          Handle: 2011012514031900
> 
>  Modified files:           (Branch: rpm-5_3)
>    rpm/tests/ref           hkp
> 
>  Log:
>    sync with HEAD to fix test
> 
>  Summary:
>    Revision    Changes     Path
>    1.1.2.4     +1  -1      rpm/tests/ref/hkp
>  ____________________________________________________________________________
> 
>  patch -p0 <<'@@ .'
>  Index: rpm/tests/ref/hkp
>  ============================================================================
>  $ cvs diff -u -r1.1.2.3 -r1.1.2.4 hkp
>  --- rpm/tests/ref/hkp        24 May 2010 15:36:55 -0000      1.1.2.3
>  +++ rpm/tests/ref/hkp        25 Jan 2011 14:03:19 -0000      1.1.2.4
>  @@ -4,7 +4,7 @@
>   NOKEY       0xa520e8f1cba29bf9
>   OK          0x9AC53D4D
>   BAD         0x7AD0BECB
>  -BAD         0x7C611479
>  +OK          0x7C611479
>   OK          0x1CFC22F3363DEAE3
>   OK          0xb873641b2039b291
>   OK          Jeff Johnson (ARS N3NPQ) <j...@redhat.com>
>  @@ .
> ______________________________________________________________________
> RPM Package Manager                                    http://rpm5.org
> CVS Sources Repository                                rpm-...@rpm5.org

______________________________________________________________________
RPM Package Manager                                    http://rpm5.org
Developer Communication List                        rpm-devel@rpm5.org

Re: [CVS] RPM: rpm-5_3: rpm/tests/ref/ hkp

Reply via email to