From: "Ferry Toth" <fntoth@gmail.com>
To: openembedded-core@lists.openembedded.org
Cc: Richard Purdie <richard.purdie@linuxfoundation.org>,
Xavier Berger <xavier.berger@bio-logic.net>,
Alexander Kanavin <alex@linutronix.de>
Subject: package_manager: support for signed DEB package feeds
Date: Sun, 3 Apr 2022 21:50:42 +0200 [thread overview]
Message-ID: <20220403195046.7060-1-fntoth@gmail.com> (raw)
[PATCH v2 0/3] package_manager: support for signed DEB package feeds
[PATCH v2 1/3] gpg-sign: Add parameters to gpg signature function
[PATCH v2 2/3] package_manager: sign DEB package feeds
[PATCH v2 3/3] apt: add apt selftest to test signed package feeds
Since Gatesgarth apt (1.8.2) has become more strict and doesn’t allow unsigned repositories by default.
Currently when building images this requirement is worked around by using [allow-insecure=yes] and
equivalently when performing selftest.
Patches "gpg-sign: Add parameters to gpg signature function" and "package_manager: sign deb package feeds"
enable signed deb package feeds. This patch adds a runtime test for apt derived from the test_testimage_dnf
test. It creates a signed deb package feed, runs a qemu image to install the key and performs some package
management. To be able to install the key the gnupg package is added to the testimage.
These patches makes deb a first class citizen as ipk and rpm.
Patches have been in use in meta-intel-edison since Gatesgarth,
see https://edison-fw.github.io/meta-intel-edison/5.0-Creating-a-deb-repository.html
Changes in V2:
- Added runtime test for signed deb package feeds (Richard Purdie)
next reply other threads:[~2022-04-03 19:50 UTC|newest]
Thread overview: 22+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-04-03 19:50 Ferry Toth [this message]
2022-04-03 19:50 ` [PATCH v2 0/3] *** SUBJECT HERE *** Ferry Toth
2022-04-03 19:50 ` [PATCH v2 1/3] gpg-sign: Add parameters to gpg signature function Ferry Toth
2022-04-03 19:50 ` [PATCH v2 2/3] package_manager: sign DEB package feeds Ferry Toth
2022-04-03 19:50 ` [PATCH v2 3/3] apt: add apt selftest to test signed " Ferry Toth
2022-04-04 13:58 ` Richard Purdie
2022-04-04 17:35 ` Ferry Toth
2022-04-04 20:39 ` Richard Purdie
2022-04-05 15:23 ` Ferry Toth
2022-04-06 11:40 ` Richard Purdie
2022-04-06 14:43 ` Ferry Toth
2022-04-06 15:23 ` Richard Purdie
2022-04-06 19:44 ` Ferry Toth
2022-04-06 21:05 ` Richard Purdie
2022-04-07 9:59 ` Ferry Toth
2022-04-06 10:10 ` [OE-core] " Alexandre Belloni
2022-04-06 15:16 ` Ferry Toth
-- strict thread matches above, loose matches on Subject: below --
2022-04-11 20:42 package_manager: support for signed DEB " Ferry Toth
2022-04-11 20:50 Ferry Toth
2022-04-13 20:37 Ferry Toth
2022-04-19 13:21 ` Richard Purdie
2022-04-19 19:39 ` Ferry Toth
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20220403195046.7060-1-fntoth@gmail.com \
--to=fntoth@gmail.com \
--cc=alex@linutronix.de \
--cc=openembedded-core@lists.openembedded.org \
--cc=richard.purdie@linuxfoundation.org \
--cc=xavier.berger@bio-logic.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.