Difference between revisions of "Talk:Pacman/Package signing"
(→Debian Keyring: re) |
(→Verifying the five Master Keys: new section) |
||
(One intermediate revision by one other user not shown) | |||
Line 1: | Line 1: | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
== Custom Built Pacakges Using ABS == | == Custom Built Pacakges Using ABS == | ||
Line 24: | Line 9: | ||
: For exact instructions and explanations see {{Ic|man pacman-key}}, {{Ic|man gpg}} and [[GnuPG]]. | : For exact instructions and explanations see {{Ic|man pacman-key}}, {{Ic|man gpg}} and [[GnuPG]]. | ||
: --[[User:AlexanderR|AlexanderR]] 10:07, 12 April 2012 (EDT) | : --[[User:AlexanderR|AlexanderR]] 10:07, 12 April 2012 (EDT) | ||
+ | |||
+ | == Verifying the five Master Keys == | ||
+ | |||
+ | When using chroot on both an unsquashed fs image and a LiveCD rescue environment, the "pacman-key --populate archlinux" command would not work without manually installing the archlinux-keyring package. That package could not be installed without disabling signature checking in pacman.conf. A real "gotcha" for a newbie. |
Revision as of 11:15, 10 October 2012
Custom Built Pacakges Using ABS
Can someone add info on how to sign AND trust custom built packages, e.g. a package I've built using ABS? --sjnims 06:05, 12 April 2012 (EST)
- Note: This should actually be placed in Package signing instead of current useless redirect to outdated developers' article
- Create personal key with gnupg (it will be located in user's default keychain independantly from stuff in pacman's
/etc/pacman.d/gnupg/
):gpg --gen-key
. - Import generated key into pacman's keychain (
pacman-key --import
) from your~/.gnupg
. - Add your signing key to trusted ones, like you did with developers' keys (again {Ic|pacman-key}}).
- Optional: configure
gpg-agent
and other such stuff (see~/.gnupg/gpg.conf
).
- For exact instructions and explanations see
man pacman-key
,man gpg
and GnuPG. - --AlexanderR 10:07, 12 April 2012 (EDT)
Verifying the five Master Keys
When using chroot on both an unsquashed fs image and a LiveCD rescue environment, the "pacman-key --populate archlinux" command would not work without manually installing the archlinux-keyring package. That package could not be installed without disabling signature checking in pacman.conf. A real "gotcha" for a newbie.