[Rpm-maint] [rpm-software-management/rpm] RFE: set up signing (semi-)automatically (Issue #3522)
Panu Matilainen
notifications at github.com
Wed Jan 15 08:15:30 UTC 2025
We want all packages coming out of rpmbuild to be signed in 6.0 (#1256, #1573) but we don't really want to make getting cozy with OpenPGP a pre-requisite of building rpms, rpm itself is plenty enough of learning curve for a first-timer. We should have a no-brainer procedure to set up an rpmbuild-specific signing key and configure rpmbuild to use it.
For this, we need to determine whether signing is configured at the start of an rpmbuild and either stop the build with a single command instruction to configure signing, or just automatically set it up on first run. So I guess the first step is to create a script that does the setup, with an option to use either users main gnupg/sq setup or rpm specific key.
At least for a fully automated rpmbuild specific key, it's best buried inside ~/.config/rpm and for that makes this at least partially depend on #3467.
--
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/3522
You are receiving this because you are subscribed to this thread.
Message ID: <rpm-software-management/rpm/issues/3522 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20250115/b8a43d34/attachment.htm>
More information about the Rpm-maint
mailing list