Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Roadmap #358

Open
the-maldridge opened this issue Dec 11, 2020 · 1 comment
Open

Roadmap #358

the-maldridge opened this issue Dec 11, 2020 · 1 comment

Comments

@the-maldridge
Copy link
Member

13:02 ericonr: I don't see the point of merging things if we don't know how we are going forward

So lets have a roadmap. This is a simple problem to solve, lets set what we want XBPS to be able to do a year from now and then go from there.

I for one would like to have signing of the repo metadata as we've discussed for several years now. I think we'd agreed that signify would be the most appropriate mechanism for this, and we'd start out not rotating keys, but ideally maintain the capability for future use.
@ericonr
Copy link
Member

ericonr commented Dec 12, 2020

The new signature scheme can also be synced with #323 , if we move to BearSSL. BearSSL doesn't support reading a raw public key from PEM, so our current key verification scheme needs some glue between bearssl code and XBPS itself.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@the-maldridge @ericonr