Ticket #108 (assigned enhancement)

Opened 2 years ago

Last modified 4 months ago

Signature on Debian should be able to use a conf file passphrase

Reported by: bruno Owned by: bruno
Priority: major Milestone: 0.12.3
Component: pb Version: 0.11.3
Keywords: Cc:

Description

Signature on Debian should be able to use a conf file passphrase as on RPM, using the same params, to avoid having passwd asked interactively during build if user want so

Change History

comment:1 Changed 21 months ago by bruno

  • Milestone changed from 0.11.4 to 0.11.5

comment:2 Changed 19 months ago by bruno

  • Milestone 0.11.5 deleted

Milestone 0.11.5 deleted

comment:3 Changed 4 months ago by bruno

  • Status changed from new to assigned
  • Milestone set to 0.12.3

There is an issue to sign deb packages, as the signature infra shold be on the delivery server, which is contrary to how pb behaves (the delivery server is not trusted). So for RPMs signature is done after packages are brought back from VM, locally signed (trusted) and pushed. That doesn't seem to be possible for deb packages.

Will need to find a workaround (maybe have a local deb infrastructure to sign debs before pushing all what is required). Would need the help of a savy Debian developer.

Note: See TracTickets for help on using tickets.