[pacman-dev] [PATCH 0/6] Package signing patches

Pang Yan Han pangyanhan at gmail.com
Sat May 28 10:37:30 EDT 2011

This is a series of patches which can hopefully take package signing a small
step forward.

Patch 1/6 lets pacman -v print the GPG Dir

Patch 2/6 updates the pacman manpage's --gpgdir section and adds a commented
GPGDir option in pacman.conf which shows the user the default gpgdir.

Patch 3/6 updates Makefile.am to create the default gpgdir, pubring.gpg and
trustdb.gpg if they do not exist.

Patch 4/6 adds a --verify option to pacman which lets the user control the
level of signature verification. Valid arguments to --verify include "always",
"optional", "never". Think of this as a way to override the "VerifySig" option
in pacman.conf .

In addition Patch 4/6 updates configure.ac to output gpgdir at the end of

Patch 5/6 updates the help text of pacman-key with regards to --gpgdir.

Patch 6/6 adds a --import-trustdb option to pacman-key. This allows the user
to import a selected trustdb upon confirmation.

For Patch 6/6, Bash is not really my strong point and I took quite some time
to get it right. Please help me check it. Thanks!

Pang Yan Han (6):
  Let pacman -v print GPG Dir
  Update pacman manpage and pacman.conf for gpgdir
  Update Makefile.am and configure.ac for gpgdir
  Add --verify option for signature level
  pacman-key: print default gpgdir in usage
  pacman-key: add --import-trustdb option

 Makefile.am              |    7 +++-
 configure.ac             |    1 +
 doc/pacman-key.8.txt     |    4 ++
 doc/pacman.8.txt         |   16 ++++++---
 etc/pacman.conf.in       |    1 +
 scripts/pacman-key.sh.in |   83 +++++++++++++++++++++++++++++++++++++++++++++-
 src/pacman/conf.h        |    3 +-
 src/pacman/pacman.c      |   16 +++++++++
 8 files changed, 122 insertions(+), 9 deletions(-)


More information about the pacman-dev mailing list