This is probably a stupid idea, but I was thinking to allow multiple named
[overrides] sections, e.g.,
[overrides.EXAMPLE]. The name (
EXAMPLE) can be referred to in the
[priorities] section. That way, we can overcome the limitation of priority strings and also define soft-disablement in a declarative manner in a single place.
[overrides.EXAMPLE1] insecure-sig = rsa-sha1 [overrides.EXAMPLE2] insecure-sig = rsa-sha256 [priorities] EXAMPLE1 = EXAMPLE1 EXAMPLE2 = EXAMPLE2 SYSTEM = NORMAL