Teach SUMA to sign repository metadata
an invention by mcalmer
Updated about 4 years ago. 1 hackers ♥️.

Signing metadata requires a lot of manual interaction and knowledge of the customer. This was the reason why we never implemented it for SUMA as the benefit was very low.

Now with the change in the zypp stack to not allow installing unsigned RPMs without user interaction or completly disabling GPG checks the benefit of such a feature increased.

I plan to implement this without any GUI support.

  • the customer need to create an own GPG key pair
  • the customer need to enable this feature in the config and configure the keyid and the password
  • during metadata generation the taskomatic task check, if metadata signing is configured and only then sign them
  • if metadata signing is configured, we need to change the GPG check options of the repos.

Looking for hackers with the skills:

susemanager uyuni

This project is part of:

Hack Week 17

Activity

  • almost 5 years ago: dmaiocchi liked this project.
  • almost 5 years ago: mcalmer added keyword "susemanager" to this project.
  • almost 5 years ago: mcalmer added keyword "uyuni" to this project.
  • almost 5 years ago: mcalmer started this project.
  • almost 5 years ago: mcalmer originated this project.


    • Comments

    Be the first to comment!

    Similar Projects

    Deploy Uyuni proxy using Elemental and Fleet by cbosdonnat

    Project Description

    Now that Uyuni proxy ...

    Uyuni test suite improvements by dgedon

    Project Description

    Uyuni is the upstream...

    Container images for building the Uyuni docs by juliogonzalezgil

    Project Description

    The Uyuni doc require...

    Testing and adding GNU/Linux distributions on Uyuni by juliogonzalezgil

    Join the Gitter channel! [https://gitter.im/uy...

    Uyuni: add SLE-Micro acceptance tests by mbussolotto

    Project Description

    Uyuni: add SLE-Micro ...