@pmatilai so here is what I would *like* to see:
1. Duplicate tags in signature headers are not allowed.
2. Signature headers are not allowed to duplicate tags found in the immutable
header, after fixups.
3. Signatures are verified before headers are imported.
4. `rpmReadPackageFile` is deprecated, in favor of `rpmReadPackageFileEx` which
takes a verification level argument.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/1484#issuecomment-759174330
_______________________________________________
Rpm-maint mailing list
Rpm-maint@lists.rpm.org
http://lists.rpm.org/mailman/listinfo/rpm-maint
