Project Talk:Portage/Repository verification

From Gentoo Wiki
Jump to:navigation Jump to:search
Before creating a discussion or leaving a comment, please read about using talk pages. To create a new discussion, click here. Comments on an existing discussion should be signed using ~~~~:
A comment [[User:Larry|Larry]] 13:52, 13 May 2024 (UTC)
: A reply [[User:Sally|Sally]] 19:22, 18 June 2024 (UTC)
:: Your reply ~~~~

Keys package incorrect

Talk status
This discussion is done.

>In order for verification work correctly, the user has to have an up-to-date Infrastructure OpenPGP public key installed. Currently, this is done through the app-crypt/gentoo-keys package. The key has a yearly expiration date, therefore the user needs to sync and upgrade the package before the previous key expires.

Is this still "current"? As of portage-2.3.40-r1, I don't have gentoo-keys installed, yet verification is working:

 * Running emerge --sync
>>> Syncing repository 'gentoo' into '/usr/portage'...
 * Using keys from /usr/share/openpgp-keys/gentoo-release.asc
 * Refreshing keys from keyserver ...                                                                                                      [ ok ]
>>> Starting rsync with rsync://

$ equery b /usr/share/openpgp-keys/gentoo-release.asc

* Searching for /usr/share/openpgp-keys/gentoo-release.asc ... 
app-crypt/openpgp-keys-gentoo-release-20180530 (/usr/share/openpgp-keys/gentoo-release.asc)

— The preceding unsigned comment was added by Thinrope (talkcontribs)

Thanks. Updated. --Grknight (talk) 19:08, 8 November 2018 (UTC)

Table outdated?

Talk status
This discussion is still ongoing.

My impression is that the information in the table is outdated. See git-mirror_repositories.

Equaeghe (talk) 10:11, 10 September 2019 (UTC)