Closed Bug 1185508 Opened 10 years ago Closed 10 years ago

funsize balrog publisher should verify MAR signatures

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: rail, Assigned: rail)

References

Details

Rail Aliiev [:rail]

Assignee

Description

•

10 years ago

It'd be great tot verify the signatures before uploading them to s3 and publishing to balrog.

Nick Thomas [:nthomas] (UTC+12)

Comment 1

•

10 years ago

Do you mean the detached GPG sig, and/or embedded sig in the mar file ?

Rail Aliiev [:rail]

Assignee

Comment 2

•

10 years ago

The embeded ones for now. We don't publish their GPG signatures yet.

Rail Aliiev [:rail]

Assignee

Comment 3

•

10 years ago

This is done now

Status: NEW → RESOLVED

Closed: 10 years ago

Resolution: --- → FIXED

Nobody; OK to take it and work on it

Updated

•

7 years ago

Component: General Automation → General

You need to log in before you can comment on or make changes to this bug.

Bugzilla

funsize balrog publisher should verify MAR signatures

Categories

(Release Engineering :: General, defect)

Tracking

(Not tracked)

People

(Reporter: rail, Assigned: rail)

References

Details

Crash Data

Security

(public)

User Story

Description

Comment 1

Comment 2

Comment 3

Updated