Mailinglist Archive: opensuse-autoinstall (33 mails)

[Uwe Gansert <ug@xxxxxxx>]

On Thursday 18 September 2008, Jochen Schaefer wrote:

> I didn't know to store the id in xml file.

since 10.3 you can store the key id's in the signature-handling section of 
an add-on
http://www.suse.de/~ug/autoyast_doc/CreateProfile.Software.html

> As I learned I have to put the public keys into initial initrd which
> is used during boot to prevent installer error messages about unknown
> signed packages.

No, it's not a must that the key is in the initrd but if it's in the initrd 
it will be accepted automatically always and everything signed by that key 
is valid automatically.
http://www.suse.de/~ug/AutoYaST_FAQ.html#bB

> The idea is to retrieve the public key which signed our addon product
> from somewhere (web) during pre installation and present it somehow the
> installer. Such I don't have to put it into the initrd.
>
> Will this work or did I miss something.

you can put them on the installation source instead of into the initrd but 
then you have to accept the key in the XML file.

-- 
ciao, Uwe Gansert

Uwe Gansert, Server Technologies Team
SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nürnberg)
Business: http://www.suse.de/~ug
--
To unsubscribe, e-mail: opensuse-autoinstall+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-autoinstall+help@xxxxxxxxxxxx