Aydin Mercan
e02ab1d0be
Start working on "cute" signatures because why not? Cute signatures are inspired/ripped of from the signify and minisign design: Key (URL-Safe, padded base64): - 2 bytes of version tag (specifies the algorithm) - 16 bytes of key ID - Public/Private key (size depending on the version tag) Signature (raw): - 2 bytes of version tag (specifies the algorithm) - Signature depending (size depending on the version tag) The new scheme uses libsodium and thus the work of abstracting cryptographic operations from libcrypto should also be completed. Also, since the key of the signature is provided in the filename, there shouldn't be a need for ID There is also the possibility of using epheremal keys for signatures and sign the package's public key, signature and signing timestamp in the header such as: - 2 bytes of version tag - signing timestamp - epheremal public key used - epheremal signature - signature of the previous sections |
||
|---|---|---|
| doc | ||
| libfetch | ||
| portability | ||
| scripts | ||
| src | ||
| test | ||
| tests | ||
| .gitignore | ||
| .gitlab-ci.yml | ||
| .mailmap | ||
| AUTHORS | ||
| LICENSE | ||
| Make.rules | ||
| Makefile | ||
| README.md | ||
| meson.build | ||
| meson_options.txt | ||
README.md
Alpine Package Keeper
Alpine Package Keeper (apk) is a package manager developed for Alpine Linux.
Online documentation is available in the doc/ directory in the form of man pages.