Re: network-bootable simple-cdd
On Sun, Jan 14, 2007 at 03:48:54PM +0200, Tzafrir Cohen wrote:
> On Sun, Jan 14, 2007 at 12:58:39PM +0200, Tzafrir Cohen wrote:
> > Just a quick note:
> >
> > for internal testeing of our built installer we use a netboot setup
> > where we boot from the CD (we auto-mount the ISO image. This can also be
> > done manually, of course)
>
> After adding all the configurations below I have the installer fail
> mid-way because the apt source on the CD is not a signed packages
> source.
>
> The extra prompt regarding unsugned packages prevents apt-get -y from
> installing initramfs-tools .
Hmmm: I needed to add 'WithSign: yes' to the merged packages repository:
Index: mirror-tools/reprepro
===================================================================
--- mirror-tools/reprepro (revision 3043)
+++ mirror-tools/reprepro (working copy)
@@ -14,6 +14,7 @@
Components: main
Description: mirror for $CODENAME
Update: default default-base default-udebs $default_security $default_extra
+SignWith: yes
EOF
}
After that I needed to delete the dists subdirectory of the reprepro
mirror and then re-run ./build-simple-cdd (Actually I updated reprepro
manually, but I figure it wasn't necessary. Deleting the dists dir was
required).
So now I have a signed repository on the CD. However I still need to get
the installed system to respect that signature. I don't have any issues
with "self-signed": after all I'm in a good position to copy my public
key to the new CD without compromises. But now I need to add that key to
the newly-installed distributiuon.
Time to start looking at the udeb, I guess.
--
Tzafrir Cohen
icq#16849755 jabber:tzafrir@jabber.org
+972-50-7952406 mailto:tzafrir.cohen@xorcom.com
http://www.xorcom.com iax:guest@local.xorcom.com/tzafrir
Reply to: