rpmkeys: --checksig should require valid signatures #1630
Closed
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
rpmkeys --checksig
exists specifically to verify the signatures on apackage. Therefore, it should imply
--define=_pkgverify_level all
and--define=_pkgverify_flags 0x0
. The current behavior is bothcounterintuitive and dangerous.
The RPM testsuite relies heavily on controlling the package verification
level via
--define=_pkgverify_level $lvl
. Therefore, add two newflags:
--no-require-digests
and--allow-unsigned
. These areequivalent to
--nodigests
and--nosignatures
, respectively, exceptthat they only change whether digests (resp. signatures) are required,
not whether they are checked at all. Additionally, update the testsuite
to use the new flags and expect the new NOTFOUND lines. This accounts
for most of the changes.