Skip to content
GitLab
Projects Groups Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
  • Sign in
  • A archiso
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Graph
    • Compare
    • Locked Files
  • Issues 42
    • Issues 42
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
  • Merge requests 13
    • Merge requests 13
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
    • Test Cases
  • Deployments
    • Deployments
    • Releases
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • Arch LinuxArch Linux
  • archiso
  • Issues
  • #125
Closed
Open
Issue created May 01, 2021 by David Runge@dvzrv🐿Developer

Sign with ephemeral PGP key in CI

When building the images in CI we need to create an ephemeral PGP key to use for signing the squashfs/erofs image. Currently this is one of the main blockers of using the CI created images in deployment.

Using an ephemeral key is possible, because the check ensures, that during netboot the initramfs uses squashfs/erofs image, that is signed with a public key that is present in the initramfs.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking