In case of later upload failures, record the SHA2-256 checksum and
ASCII-armored OpenPGP signature of each signed artifact to the job's
output stream so they can later be used for manual uploading.
Change-Id: Ifd136b95357d499e088c5509fa57daf76a246cf4
This is actually a noop for gpg, since the private key also contains
the public.
Change-Id: I60d4ebf0f3343911986a4e6c46a806539cda701b
Signed-off-by: Paul Belanger <pabelanger@redhat.com>
Because we used binary data, and it seems ansible had some issues with
that. Switch to asscii-armored versions and gpg import.
Change-Id: Ide400a2163c8fc08de0a28947ada7e9448d7675d
Signed-off-by: Paul Belanger <pabelanger@redhat.com>
We actually want to sign the items we found if greater then zero, as
it results the number of files found.
Change-Id: I48014bb437a575c1d639a8a68e76b7ed06df2278
Signed-off-by: Paul Belanger <pabelanger@redhat.com>