Add gpg files into /usr/share/ostree/trusted.gpg.d

cho2 · May 11, 2019, 10:01am

How to add gpg files into /usr/share/ostree/trusted.gpg.d?
Is there any spesific ostree command?

refi64 · May 11, 2019, 2:20pm

Not to that particular location since it’s read-only, but for gpg keys in general you can use ostree remote gpg-import to associate them with a remote. I believe they go in /etc.

walters · May 12, 2019, 5:06pm

That directory should be considered deprecated; the new model for libostree is to have “per-remote” GPG keys. Probably we should have a default directory for that in /etc so you can use gpgkeypath= nicely. @refi64’s suggestion is also fine, that will store them in the repository.

Can you be more precise on why you want to add a key? For the Fedora remotes we recommend doing gpgkeypath=/etc/pki/rpm-gpg/ to import all keys there.

cho2 · May 12, 2019, 5:21pm

Just trying to add gpg from Endless OS, so that i can install Endless apps from Endless flatpak repositories.

refi64 · May 12, 2019, 5:36pm

I believe Flatpak gpg keys are stored separately, they should be part of the .flatpakrepo file you use to import the repository, or you could run ostree gpg-import, passing --repo=/var/lib/flatpak/repo (or ~/.local/share/flatpak/repo for user installs).