mirror of
https://git.dpkg.org/git/dpkg/debsig-verify.git
synced 2025-08-16 23:22:55 +00:00
6650fef29d
Add support for fetching fingerprints from keys and signatures, to make possible a smooth transition from OpenPGP based long keyIDs for database directories to ones using fingerprints.
23 lines
814 B
XML
23 lines
814 B
XML
<?xml version="1.0"?>
|
|
<!DOCTYPE Policy SYSTEM "https://www.debian.org/debsig/1.0/policy.dtd">
|
|
<Policy xmlns="https://www.debian.org/debsig/1.0/">
|
|
|
|
<!-- This is mainly a sanity check, since our filename is that of the ID
|
|
anyway. -->
|
|
<Origin Name="Debsig" id="FAD46790DE88C7E2" Description="Debsig testing"/>
|
|
|
|
<!-- This is required to match in order for this policy to be used. We
|
|
reject the release Type, since we want a different rule set for
|
|
that. -->
|
|
<Selection>
|
|
<Required Type="origin" File="pubring.pgp" id="FAD46790DE88C7E2"/>
|
|
</Selection>
|
|
|
|
<!-- Once we decide to use this policy, this must pass in order to verify
|
|
the package. -->
|
|
<Verification MinOptional="0">
|
|
<Required Type="origin" File="pubring.pgp" id="FAD46790DE88C7E2"/>
|
|
</Verification>
|
|
|
|
</Policy>
|