Summary: | Sign 'release' file for Sisyphus with RSA 4096 key DA2773BB | ||
---|---|---|---|
Product: | Infrastructure | Reporter: | Vitaly Chikunov <vt> |
Component: | girar | Assignee: | placeholder <placeholder> |
Status: | CLOSED FIXED | QA Contact: | Andrey Cherepanov <cas> |
Severity: | normal | ||
Priority: | P5 | CC: | at, glebfm, ldv |
Version: | unspecified | ||
Hardware: | x86 | ||
OS: | Linux |
Description
Vitaly Chikunov
2021-08-03 09:28:07 MSK
А почему apt-repo-tools? Пожалуйста, перевешивайте на боле подходящий компонент. (In reply to Vitaly Chikunov from comment #2) > Пожалуйста, перевешивайте на боле подходящий компонент. Мне кажется, что в пакетах всё необходимое уже есть. Да, ключ давно есть в alt-gpgkeys и vendors.list.d/alt.list, достаточно только в сборочнице переключить. Давайте тогда переключим! Should be fixed now. Confirm that `/ALT/Sisyphus/x86_64/base/release` is signed using sha512 with key 0xFF979DEDDA2773BB which is self-signed with sha256. (In reply to Vitaly Chikunov from comment #7) > Confirm that `/ALT/Sisyphus/x86_64/base/release` is signed using sha512 with > key 0xFF979DEDDA2773BB which is self-signed with sha256. It's already self-signed using sha512 in http://git.altlinux.org/people/ldv/packages/?p=alt-gpgkeys.git;a=commit;h=3df9145c01a4515c073d1243dfd18f97a34f6a0d and will hopefully be included in the next release of alt-gpgkeys. |