-
Notifications
You must be signed in to change notification settings - Fork 426
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Auto-generate OTC PGP ids #591
Comments
Oh, really nice find! We run the automated invocations of We could do something clever there to have it only update the list when the version of OpenSSL changes, but I don't know that it's actually worth the complexity (we typically just don't push effectively no-op automated changes like that downstream until there's a bigger change like a version bump to go with them). Given that this doesn't give us a list per version or even major.minor, we probably want to fetch the whole list once at the beginning of the script, and then just embed the result in the For our sake, it might be worth keeping that whole object so that automated changes to it are easier to review/verify/understand (instead of simplifying it to just a list of IDs), but I suppose we could do something like (See https://github.com/docker-library/golang/blob/326acd5eed36954174ba8b3b6d0efda96087e18a/Dockerfile-linux.template#L75-L102 for an example of another template that generates something kind of similar with a set of complex/list-form data if this is something you want to tackle. I'm also totally OK if you want to make me do the integration work here now that you've found all the details of where we can get a solid source of data! 😄) |
I'm happy to do this, or review it if you beat me to it. Just leave a comment if you start work so we don't duplicate it. Obviously this isn't high-priority as manually updating the PGP information has worked fine so far. |
I did some poking around how the openssl.org website is generated, and found my way to this document:
https://github.com/openssl/omc-tools/blob/master/QueryApp/RESTAPI.txt
Turns out with a couple API queries, we can get the OTC team member's PGP key IDs.
@tianon - in the interest of politeness, I'm assuming that we wouldn't want to fetch this data frequently. Do you imagine a manual process, monthly cron job, something like that? I'm assuming it would then end up as an input file to
apply-templates.sh
?The text was updated successfully, but these errors were encountered: