ostree

Commit Graph

Author	SHA1	Message	Date
Luca BRUNO	cefc1d7854	lib: misc static analysis fixes This fixes a few warnings from coverity, none of which really interesting.	2021-11-26 15:11:00 +00:00
Colin Walters	359435de84	Add an API to verify a commit signature explicitly We have a bunch of APIs to do GPG verification of a commit, but that doesn't generalize to signapi. Further, they require the caller to check the signature status explicitly which seems like a trap. This much higher level API works with both GPG and signapi. The intention is to use this in things that are doing "external pulls" like the ostree-ext tar import support. There we will get the commitmeta from the tarball and we want to verify it at the same time we import the commit.	2021-08-30 13:27:38 -04:00

Author

SHA1

Message

Date

Luca BRUNO

cefc1d7854

lib: misc static analysis fixes

This fixes a few warnings from coverity, none of which really
interesting.

2021-11-26 15:11:00 +00:00

Colin Walters

359435de84

Add an API to verify a commit signature explicitly

We have a bunch of APIs to do GPG verification of a commit,
but that doesn't generalize to signapi.  Further, they
require the caller to check the signature status explicitly
which seems like a trap.

This much higher level API works with both GPG and signapi.
The intention is to use this in things that are doing "external
pulls" like the ostree-ext tar import support.  There we will
get the commitmeta from the tarball and we want to verify it
at the same time we import the commit.

2021-08-30 13:27:38 -04:00

2 Commits