https://github.com/qbit/signing
A repository of pubkeys used in the OpenBSD ports tree
https://github.com/qbit/signing
Last synced: 10 days ago
JSON representation
A repository of pubkeys used in the OpenBSD ports tree
- Host: GitHub
- URL: https://github.com/qbit/signing
- Owner: qbit
- Created: 2018-03-27T12:32:00.000Z (about 8 years ago)
- Default Branch: master
- Last Pushed: 2018-03-31T22:34:25.000Z (about 8 years ago)
- Last Synced: 2025-01-16T13:29:06.929Z (over 1 year ago)
- Language: Shell
- Size: 16.6 KB
- Stars: 3
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Signing
This is a repository of public keys used to validate upstream dist files.
You will need [git lfs](https://git-lfs.github.com/) installed to be able to commit / push changes to this repo.
# Using
Currently you will need to add the following to your mk.conf file:
```
.if exists(/usr/local/share/signing/signing.mk)
.include "/usr/local/share/signing/signing.mk"
.endif
```
SIG_SUFX should be set per port. Currently only validating detatched
signatures is supported.
# Adding keys
## gnupg
```
$ git clone https://github.com/qbit/signing.git
$ cd signing
$ pkill gpg-agent; export GNUPGHOME=$PWD/gnupg
$ gpg2 --import newpubkey
```
## opmsg
```
$ git clone https://github.com/qbit/signing.git
$ cd signing
$ opmsg -c ./opmsg --import --in release-key-v1.opmsg --name opmsg-rkey-v1 --phash sha256
```
# Deleting keys
## gnupg
## opmsg