<p>Add support for multiple, named signatures per package.<br>
Named signatures are stored as a name:base64 encoded string array in<br>
RPMTAG_OPENPGPHEADER, name is an arbitrary \0-terminated string<br>
and is part of the signed data (appended after actual package data).</p>
<p>These are always header-only signatures, and can co-exist with<br>
"traditional" signatures: if no name is specified when signing then<br>
the new signature replaces any old traditional signature the package<br>
may have. If name is specified then the signature is merely appended<br>
to RPMTAG_OPENPGPHEADER.</p>
<p>Use:</p>
<pre><code>rpmsign --addsign --name=<name> <package>
</code></pre>
<p>Not implemented yet:</p>
<ul>
<li>name sanity checks (limit to alphanumeric and punctuation?)</li>
<li>named signatures are not checked for duplicates when signing</li>
<li>there's no way to delete just one named signature</li>
<li>...</li>
</ul>
<p>Misc notes:<br>
We could trivially support signatures without names too in the same<br>
tag, but the question then becomes what to do with "traditional"<br>
signatures when name isn't specified - only putting named signatures<br>
into the new tag makes that simple(r). People will still need those<br>
legacy signatures for some time due to older versions not supporting<br>
the new.</p>

<hr>

<h4>You can view, comment on, or merge this pull request online at:</h4>
<p>  <a href='https://github.com/rpm-software-management/rpm/pull/1050'>https://github.com/rpm-software-management/rpm/pull/1050</a></p>

<h4>Commit Summary</h4>
<ul>
  <li>Add support for multiple, named OpenPGP signatures per package</li>
</ul>

<h4>File Changes</h4>
<ul>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-0">lib/package.c</a>
    (1)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-1">lib/rpmtag.h</a>
    (2)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-2">lib/rpmvs.c</a>
    (53)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-3">lib/rpmvs.h</a>
    (1)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-4">rpmsign.c</a>
    (6)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-5">sign/rpmgensig.c</a>
    (79)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-6">sign/rpmsign.h</a>
    (1)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-7">tests/rpmgeneral.at</a>
    (1)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-8">tests/rpmsigdig.at</a>
    (38)
  </li>
  <li>
    <strong>M</strong>
    <a href="https://github.com/rpm-software-management/rpm/pull/1050/files#diff-9">tests/rpmvfylevel.at</a>
    (1)
  </li>
</ul>

<h4>Patch Links:</h4>
<ul>
  <li><a href='https://github.com/rpm-software-management/rpm/pull/1050.patch'>https://github.com/rpm-software-management/rpm/pull/1050.patch</a></li>
  <li><a href='https://github.com/rpm-software-management/rpm/pull/1050.diff'>https://github.com/rpm-software-management/rpm/pull/1050.diff</a></li>
</ul>

<p style="font-size:small;-webkit-text-size-adjust:none;color:#666;">—<br />You are receiving this because you are subscribed to this thread.<br />Reply to this email directly, <a href="https://github.com/rpm-software-management/rpm/pull/1050?email_source=notifications&email_token=ADLPZU7G6XX2NY62G5YJN6TRBKYTRA5CNFSM4KQKQDTKYY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4ILGIVYA">view it on GitHub</a>, or <a href="https://github.com/notifications/unsubscribe-auth/ADLPZU6VYTSO4SNAA6OLMRDRBKYTRANCNFSM4KQKQDTA">unsubscribe</a>.<img src="https://github.com/notifications/beacon/ADLPZU6EWVRDJGWBTMYNMODRBKYTRA5CNFSM4KQKQDTKYY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4ILGIVYA.gif" height="1" width="1" alt="" /></p>
<script type="application/ld+json">[
{
"@context": "http://schema.org",
"@type": "EmailMessage",
"potentialAction": {
"@type": "ViewAction",
"target": "https://github.com/rpm-software-management/rpm/pull/1050?email_source=notifications\u0026email_token=ADLPZU7G6XX2NY62G5YJN6TRBKYTRA5CNFSM4KQKQDTKYY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4ILGIVYA",
"url": "https://github.com/rpm-software-management/rpm/pull/1050?email_source=notifications\u0026email_token=ADLPZU7G6XX2NY62G5YJN6TRBKYTRA5CNFSM4KQKQDTKYY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4ILGIVYA",
"name": "View Pull Request"
},
"description": "View this Pull Request on GitHub",
"publisher": {
"@type": "Organization",
"name": "GitHub",
"url": "https://github.com"
}
}
]</script>