Encrypt ppa signing key with non-deprecated algorithm #1169
Assignees
Comments
|
I'm forwarding this to @fancycode, who is maintaining the PPA. |
|
Looks like it's not possible to manually recreate the PPA signing key: However, Ubuntu will update the keys of all PPAs over time: Unfortunately I don't know if this already started or how long it will take to reach our libde265 / libheif PPAs. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Mentioning this here for lack of a better place (I can't seem to create a bug here).
Signing keys for strukturag PPAs are encrypted using rsa1024 (link), which is deprecated (link). This is preventing my organization from using these PPAs on FIPS compliant machines that have removed this cipher (specifically Ubuntu 22.04 pro w/ FIPS enabled - link).
Can your signing keys please be re-encrypted with something else, like rsa4096? My organization is specifically using
libde265andlibheif, if that's helpful.Thanks in advance! Please let me know if there's a more appropriate place for this issue!
The text was updated successfully, but these errors were encountered: