[Rpm-maint] [rpm-software-management/rpm] Implement a new openpgp.cert.d based keystore (Issue #3341)

Panu Matilainen notifications at github.com
Fri Oct 4 06:30:19 UTC 2024


Currently importing a key into rpm(db) implies trusting that key. That's not something we'd want to do for keys dropped into a directory by random packages.

Differentiating between known keys and trusted keys, basically for the purposes of determining whether a package can be installed or not, is something we've needed to do for a long time, but that's a topic for a ticket of its own.

-- 
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/3341#issuecomment-2392922747
You are receiving this because you are subscribed to this thread.

Message ID: <rpm-software-management/rpm/issues/3341/2392922747 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20241003/b311910f/attachment-0001.html>


More information about the Rpm-maint mailing list