summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorLuke Shumaker <lukeshu@parabola.nu>2018-01-03 00:47:36 -0500
committerLuke Shumaker <lukeshu@parabola.nu>2018-01-03 14:59:26 -0500
commitbbd78fcfb86301ef761057a7c2b10fcb6d8402a1 (patch)
tree98a3d8f60c38c5fd56afeda62d7e7c755a40a7cb
parent16aa0f3eafce43527a10320b36ea1083d4b5dcbe (diff)
downloaddevtools-bbd78fcfb86301ef761057a7c2b10fcb6d8402a1.tar.xz
makechrootpkg: Put "keyserver-options auto-key-retrieve" in gpg.conf
This allows signature verification by `makepkg --verifysource`, `git verify-tag`, and such without requiring the user to manually retrieve the keys first. This is based off of devtools32 commit 009695b (2017-06-27) by Erich Eckner <git@eckner.net>. There are 2 differences from that commit: - In this version, gpg.conf is owned by builduser, not by root - In this version, we don't keep appending duplicate lines if we re-use a chroot
-rw-r--r--makechrootpkg.in1
1 files changed, 1 insertions, 0 deletions
diff --git a/makechrootpkg.in b/makechrootpkg.in
index c92a786..d357b46 100644
--- a/makechrootpkg.in
+++ b/makechrootpkg.in
@@ -186,6 +186,7 @@ prepare_chroot() {
[[ -r $USER_HOME/$x ]] || continue
$install -m 644 "$USER_HOME/$x" "$copydir/build/$x"
done
+ $install -m644 /dev/stdin "$copydir/build/.gnupg/gpg.conf" <<<'keyserver-options auto-key-retrieve'
sed -e '/^MAKEFLAGS=/d' -e '/^PACKAGER=/d' -i "$copydir/etc/makepkg.conf"
for x in BUILDDIR=/build PKGDEST=/pkgdest SRCPKGDEST=/srcpkgdest SRCDEST=/srcdest LOGDEST=/logdest \