blob: d9a42c0a351466c411b1ff7090053bf96f1b2b36 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
|
# Gentoo-keys configuration file
#
[base]
# keyserver: server to use to obtain the keys from
keyserver: pool.sks-keyservers.net
# gkeysdir: Base directory to use as the path prefix to use
# for the gkey directories, keyring settings
# eg: '/' for root if absolute paths are used
# for sub-directories, keyrings
# eg: /var/lib/gentoo/gkeys if using relative paths
gkeysdir: /var/lib/gentoo/gkeys
# keyring: The directory where the official keyring with the specified keys
# will be exported.
keyring: %(gkeysdir)s/keyrings
# The default keyring to use
# for verification if not specified
verify-keyring: gentoo
# Base directory to use as the path prefix to use
# for the signing capable keyrings, keyring settings
# eg: '/' for root if absolute paths are used for homedir, keyring
# eg: %(gkeysdir)s if using relative paths
sign-keydir: %(gkeysdir)s/sign
# seedsdir: The directory for all seed files
# used when searching all seed files.
seedsdir: %(gkeysdir)s/seeds
# logfile directory
logdir: /var/log/gkeys
[permissions]
# Permissions settings (octal)
# chmod setting (octal)
directories: 0o775
#umask setting (octal)
files: 0o002
[seeds]
# file is a json text file of: nick, name, keydir, fingerprint
# one file per line
# category = category or seedfile name
# these categories/seedfile nmaes are used for the
# -C, --category input value validations
# eg: category: filepath
gentoo: %(seedsdir)s/gentoo.seeds
gentoo-devs: %(seedsdir)s/gentoo-devs.seeds
[seedurls]
# Use the filenames as the keys.
# The will be paired to the seed file of the same name for fetching, updating
gentoo: https://api.gentoo.org/gentoo-keys/seeds/gentoo.seeds
gentoo-devs: https://api.gentoo.org/gentoo-keys/seeds/gentoo-devs.seeds
[verify-seeds]
# mapping of the seedfile category name
# to the category-name and gpg-key keydir to use to verify the seedfile
# seedfile-name: category keydir
gentoo: gentoo gkeys
gentoo-devs: gentoo gkeys
[sign]
# GKEY nick used for verification of seeds and other gkey files
#nick = foo
# The home or key directory to use for signing files
#keydir: foo
# keyring to use if not the default
# keyring: bar
# The key fingerprint to use for signing
# key: 0x01234567891012345
# the gpg signature option to use for signing
# type: detach-sign
|
GitWeb