path: root/dev/archive/signing.mdwn
diff options
authorPatrick McDermott <pehjota>2019-04-07 17:05:43 (EDT)
committer Patrick McDermott <pehjota>2019-04-07 17:06:49 (EDT)
commitc1c3a195512eca6f92b9375b6c3b9ddcc93a137e (patch)
tree4c83b27dee075fc99359002663a14dded191fb17 /dev/archive/signing.mdwn
parent653a95064a2891313e24988c604f846b35cdc43f (diff)
dev/archive/signing: Note switch to opkg-lede, usign, and Ed25519
Diffstat (limited to 'dev/archive/signing.mdwn')
1 files changed, 10 insertions, 4 deletions
diff --git a/dev/archive/signing.mdwn b/dev/archive/signing.mdwn
index 43904bc..5d3b0d0 100644
--- a/dev/archive/signing.mdwn
+++ b/dev/archive/signing.mdwn
@@ -11,6 +11,10 @@ retrieve packages from the archive.
+**TODO:** ProteanOS is implementing [Ed25519][ed25519] signatures, likely
+without OpenPGP PKI. The pro-archman and prokit sections below will need some
ProteanOS Archive Manager
@@ -63,9 +67,9 @@ Suggestions welcome.
-The opkg source package now builds opkg-gpg and opkg binary packages with and
-without support for package feed verification using the [GnuPG Made Easy (GPGME)
-library][gpgme] and its dependencies.
+ProteanOS [[now|dev/opkg/future]] uses [opkg-lede][] with [usign][], a
+lightweight implementation of the [Ed25519][ed25519] public-key signature
Archive Keyring
@@ -75,4 +79,6 @@ Key transitions, expiration changes, and revocations will be performed by
revisions to this package. It should possibly be upgraded automatically to
ensure that installed systems always have up-to-date keys.