[tycho-user] Signing jars and P2

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[tycho-user] Signing jars and P2

From: Benson Margulies <bimargulies@xxxxxxxxx>
Date: Fri, 2 Sep 2011 07:24:23 -0400
Delivered-to: tycho-user@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/tycho-user>
List-help: <mailto:tycho-user-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/tycho-user>, <mailto:tycho-user-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/tycho-user>, <mailto:tycho-user-request@eclipse.org?subject=unsubscribe>

I'm having a discussion at ASF about how we could set up a signature
infrastructure, and I was hoping that Igor or someone could help me
understand some parameters.

Is it really required to sign the jars 'in the middle of the process'?
If I left signing out of the picture, and made a P2 repository, can I
then sign all the jars in plugins and features and achieve the desired
result?

Quite aside from the ASF, this to me suggests a slightly hackish
alternative to the lifecycle problem: a new that is built by
inheriting from the implementation of the jarsigner plugin. It's only
purpose is to not be in the standard lifecycle, so that the tycho
lifecycle could put it in the right place.

Follow-Ups:
- Re: [tycho-user] Signing jars and P2
  - From: Igor Fedorenko

Prev by Date: [tycho-user] Target Plattform not completely available in Surefire Test with 0.13.0
Next by Date: [tycho-user] Converting a P2 update-site into a maven repository
Previous by thread: [tycho-user] Target Plattform not completely available in Surefire Test with 0.13.0
Next by thread: Re: [tycho-user] Signing jars and P2
Index(es):
- Date
- Thread

Breadcrumbs