From: Ulrich Mueller <ulm@gentoo.org>
To: "Michał Górny" <mgorny@gentoo.org>
Cc: gentoo-dev@lists.gentoo.org
Subject: Re: [gentoo-dev] [PATCH 3/5] app-crypt/openpgp-keys-miniupnp: Package keys used by miniupnp upst
Date: Tue, 06 Oct 2020 13:26:35 +0200 [thread overview]
Message-ID: <upn5vmw7o@gentoo.org> (raw)
In-Reply-To: <20201006095814.101719-3-mgorny@gentoo.org> ("Michał Górny"'s message of "Tue, 6 Oct 2020 11:58:12 +0200")
[-- Attachment #1: Type: text/plain, Size: 3225 bytes --]
>>>>> On Tue, 06 Oct 2020, Michał Górny wrote:
> Signed-off-by: Michał Górny <mgorny@gentoo.org>
> ---
> app-crypt/openpgp-keys-miniupnp/Manifest | 2 ++
> app-crypt/openpgp-keys-miniupnp/metadata.xml | 9 ++++++++
> .../openpgp-keys-miniupnp-20201006.ebuild | 23 +++++++++++++++++++
> 3 files changed, 34 insertions(+)
> create mode 100644 app-crypt/openpgp-keys-miniupnp/Manifest
> create mode 100644 app-crypt/openpgp-keys-miniupnp/metadata.xml
> create mode 100644 app-crypt/openpgp-keys-miniupnp/openpgp-keys-miniupnp-20201006.ebuild
> diff --git a/app-crypt/openpgp-keys-miniupnp/Manifest b/app-crypt/openpgp-keys-miniupnp/Manifest
> new file mode 100644
> index 000000000000..c8f82da42fa6
> --- /dev/null
> +++ b/app-crypt/openpgp-keys-miniupnp/Manifest
> @@ -0,0 +1,2 @@
> +DIST A31ACAAF.asc 3139 BLAKE2B 4574c3f37965fafa4e2d703276a585d1f17b0da862042620681bac591062b3b70c52cbe5481da543d3c3193a640c06e9d86c3cef1568ae3a3f62901a6ad200ab SHA512 ecad52850fdcc7c21bab81917b3cea85c48b751534427d3db5750c43cbce73916ec4879e4f5535d4b87b7eca927ad249e384c5597702a0052afa89c23c5719b9
> +DIST A5C0863C.asc 3098 BLAKE2B fdbc8629fd462b9cc72c568b0af5607951055abc03a1e344e4c1b411fb87bfa285c2e29d2781f9e9b02ec0bc63eacf55e5dc19198056a417ba3358dba445cc0c SHA512 adebff655374dbc8a045f9ab148f9fc343b043e80cb7e4e14c66aa56bfb2f0f5521e294c7600ca708893efc84679f788116d82ef5818370f1425f03dea0a77b9
> diff --git a/app-crypt/openpgp-keys-miniupnp/metadata.xml b/app-crypt/openpgp-keys-miniupnp/metadata.xml
> new file mode 100644
> index 000000000000..5a5a3aaf4299
> --- /dev/null
> +++ b/app-crypt/openpgp-keys-miniupnp/metadata.xml
> @@ -0,0 +1,9 @@
> +<?xml version="1.0" encoding="UTF-8"?>
> +<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd">
> +<pkgmetadata>
> + <maintainer type="person">
> + <email>mgorny@gentoo.org</email>
> + <name>Michał Górny</name>
> + </maintainer>
> + <stabilize-allarches/>
> +</pkgmetadata>
> diff --git a/app-crypt/openpgp-keys-miniupnp/openpgp-keys-miniupnp-20201006.ebuild b/app-crypt/openpgp-keys-miniupnp/openpgp-keys-miniupnp-20201006.ebuild
> new file mode 100644
> index 000000000000..4b07eeca6024
> --- /dev/null
> +++ b/app-crypt/openpgp-keys-miniupnp/openpgp-keys-miniupnp-20201006.ebuild
> @@ -0,0 +1,23 @@
> +# Copyright 1999-2020 Gentoo Authors
> +# Distributed under the terms of the GNU General Public License v2
> +
> +EAPI=7
> +
> +DESCRIPTION="OpenPGP keys used to sign miniupnp* packages"
> +HOMEPAGE="http://miniupnp.free.fr/files/"
> +SRC_URI="
> + http://miniupnp.free.fr/A31ACAAF.asc
> + http://miniupnp.free.fr/A5C0863C.asc
> +"
> +
> +LICENSE="public-domain"
> +SLOT="0"
> +KEYWORDS="~alpha amd64 arm arm64 hppa ~ia64 ~m68k ~mips ppc ppc64 ~riscv s390 sparc x86"
> +
> +S=${WORKDIR}
> +
> +src_install() {
> + local files=( ${A} )
> + insinto /usr/share/openpgp-keys
> + newins - miniupnp.asc < <(cat "${files[@]/#/${DISTDIR}/}")
> +}
> --
> 2.28.0
This relies again on Manifest digests for the integrity of the key
distfiles themselves. What do we gain by this indirection, as compared
to validating the distfiles of the target package by their Manifest?
Ulrich
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 507 bytes --]
next prev parent reply other threads:[~2020-10-06 11:26 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-10-06 9:58 [gentoo-dev] [PATCH 1/5] verify-sig.eclass: New eclass to verify OpenPGP sigs Michał Górny
2020-10-06 9:58 ` [gentoo-dev] [PATCH 2/5] use.desc: Add verify-sig flag Michał Górny
2020-10-06 9:58 ` [gentoo-dev] [PATCH 3/5] app-crypt/openpgp-keys-miniupnp: Package keys used by miniupnp upst Michał Górny
2020-10-06 11:26 ` Ulrich Mueller [this message]
2020-10-06 11:44 ` Michał Górny
2020-10-06 9:58 ` [gentoo-dev] [PATCH 4/5] net-libs/miniupnpc: Use verify-sig.eclass Michał Górny
2020-10-06 9:58 ` [gentoo-dev] [PATCH 5/5] dev-python/miniupnpc: " Michał Górny
2020-10-06 10:24 ` Alexey Sokolov
2020-10-06 11:47 ` Michał Górny
2020-10-06 11:17 ` [gentoo-dev] [PATCH 1/5] verify-sig.eclass: New eclass to verify OpenPGP sigs Ulrich Mueller
2020-10-06 11:49 ` Frédéric Pierret
2020-10-06 11:59 ` Ulrich Mueller
2020-10-06 11:18 ` Ulrich Mueller
2020-10-06 11:25 ` Michał Górny
2020-10-06 11:34 ` Ulrich Mueller
2020-10-06 11:46 ` Michał Górny
2020-10-06 12:06 ` Ulrich Mueller
2020-10-06 12:12 ` Michał Górny
2020-10-10 20:10 ` Thomas Deutschmann
2020-10-10 20:36 ` Michał Górny
2020-10-11 13:40 ` Thomas Deutschmann
2020-10-11 14:35 ` Joonas Niilola
2020-10-12 15:24 ` Alec Warner
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=upn5vmw7o@gentoo.org \
--to=ulm@gentoo.org \
--cc=gentoo-dev@lists.gentoo.org \
--cc=mgorny@gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox