-
I am looking for volunteers willing to tackle Taproot support. Here is an overview of what works and what not:
- [x] bech32m encoding for the addresses
- [x] P2TR (segwit version 1) output creation …
bbrtj updated
1 month ago
-
The only mention I can see of revocation is for retrieving, how do I revoke a token?
-
When performing operations such as uploading a package, deb-s3 fetches existing manifest and release files and trusts them fully without verifying that they are signed by a trusted key. This allows fo…
-
Currently we have separate APIs for "un-encapsulate an ostree commit" and "pull a possibly layered image".
The former supports GPG verification, the latter does not.
Today rpm-ostree always uses…
-
When a user is verifying under a company's ccla, the event log is recording the time the row for the signature was created in the signatures table instead of the time the user actually verified.
Us…
-
### Description
We would like to support dual signature verification for the transition to ROM_EXT and owner firmware. This means the image manifest needs to support two signatures, one for tradition…
jettr updated
5 months ago
-
Let's say you have a big RPM package available online. When you run "dnf install http://example.com/mypkg.rpm", dnf downloads the whole package and installs it. But if there is a dependency problem (l…
-
One obvious use for multiple signatures on a message is to allow graceful change in certificates. Say I am using a certificate to sign my messages but it will expire soon. I would like to be able to…
-
I have set both _Verify DKIM signatures_ and _Read Authentication-Results header_. However, a message having:
``` email
Authentication-Results: wmail.tana.it;
spf=pass smtp.mailfrom=mailop.org;
…
-
Currently, if a transaction is received that is signed with a different consensus branch ID, the error returned is either a plain signature failure (if fully-shielded), or more commonly a rather inscr…
str4d updated
2 years ago