On 5/8/24 14:17, Jonathan Wright via devel wrote:
Thanks for the feedback and examples.My latest commit to rawhide adds signature verification and updates the source URL to https.https://src.fedoraproject.org/rpms/mdadm/c/c8d54b071aea9605ab75f3c5ff67d44d306e7fb2?branch=rawhide <https://src.fedoraproject.org/rpms/mdadm/c/c8d54b071aea9605ab75f3c5ff67d44d306e7fb2?branch=rawhide>Updated build is building in the side tag: https://koji.fedoraproject.org/koji/taskinfo?taskID=117444420 <https://koji.fedoraproject.org/koji/taskinfo?taskID=117444420>On Wed, May 8, 2024 at 3:56 PM Leon Fauster via devel <devel@lists.fedoraproject.org <mailto:devel@lists.fedoraproject.org>> wrote:Am 08.05.24 um 22:44 schrieb Jonathan Wright via devel: > I was having trouble finding the public key(s). I'll look more into > this now. > > They sign the tar archive before it is compressed, so I'll have to stray > from the standard way of verifying the sigs in the docs a little. > Here is an example of including the validation https://src.fedoraproject.org/rpms/webkit2gtk4.0/blob/main/f/webkit2gtk4.0.spec#_203 <https://src.fedoraproject.org/rpms/webkit2gtk4.0/blob/main/f/webkit2gtk4.0.spec#_203> BTW, the source and url uris in the spec file could be switched to https?! https://src.fedoraproject.org/rpms/mdadm/blob/rawhide/f/mdadm.spec#_8 <https://src.fedoraproject.org/rpms/mdadm/blob/rawhide/f/mdadm.spec#_8>-- Leon-- _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org <mailto:devel@lists.fedoraproject.org> To unsubscribe send an email to devel-le...@lists.fedoraproject.org <mailto:devel-le...@lists.fedoraproject.org> Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ <https://docs.fedoraproject.org/en-US/project/code-of-conduct/> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines <https://fedoraproject.org/wiki/Mailing_list_guidelines> List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org <https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org> Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue <https://pagure.io/fedora-infrastructure/new_issue> -- Jonathan Wright AlmaLinux Foundation Mattermost: chat <https://chat.almalinux.org/almalinux/messages/@jonathan> -- _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
OpenPGP_signature.asc
Description: OpenPGP digital signature
-- _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
