[Rpm-maint] [rpm-software-management/rpm] rpmkeys --list and --delete must work for unloadable keys (Issue #3375)
Panu Matilainen
notifications at github.com
Mon Oct 14 13:09:10 UTC 2024
Given how fast crypto stuff becomes obsolete and even inaccessible these days, a key imported today might not be loadable at all in a few years. There needs to be a way to get rid of such keys without resorting to 'rm -rf' tactics, and to be deletable they need to be listable. For rpmdb keystore, the gpg-pubkey headers can be alternatively removed through the transaction API, thus side-skirting the issue, but that's not really a sane design.
So rpmkeys needs to have means to list the underlying keystore contents (presumably by fingerprint) without even trying to load them, and it needs to be able to delete a key found this way. And of course to do that it'll need corresponding APIs in librpm.
--
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/3375
You are receiving this because you are subscribed to this thread.
Message ID: <rpm-software-management/rpm/issues/3375 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20241014/999a98a7/attachment.html>
More information about the Rpm-maint
mailing list