diff options
author | Luke Shumaker <lukeshu@parabola.nu> | 2018-01-03 00:47:36 -0500 |
---|---|---|
committer | Luke Shumaker <lukeshu@parabola.nu> | 2018-01-03 14:59:26 -0500 |
commit | bbd78fcfb86301ef761057a7c2b10fcb6d8402a1 (patch) | |
tree | 98a3d8f60c38c5fd56afeda62d7e7c755a40a7cb | |
parent | 16aa0f3eafce43527a10320b36ea1083d4b5dcbe (diff) | |
download | devtools-bbd78fcfb86301ef761057a7c2b10fcb6d8402a1.tar.xz |
makechrootpkg: Put "keyserver-options auto-key-retrieve" in gpg.conf
This allows signature verification by `makepkg --verifysource`, `git
verify-tag`, and such without requiring the user to manually retrieve
the keys first.
This is based off of devtools32 commit 009695b (2017-06-27) by
Erich Eckner <git@eckner.net>. There are 2 differences from that
commit:
- In this version, gpg.conf is owned by builduser, not by root
- In this version, we don't keep appending duplicate lines if we
re-use a chroot
-rw-r--r-- | makechrootpkg.in | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/makechrootpkg.in b/makechrootpkg.in index c92a786..d357b46 100644 --- a/makechrootpkg.in +++ b/makechrootpkg.in @@ -186,6 +186,7 @@ prepare_chroot() { [[ -r $USER_HOME/$x ]] || continue $install -m 644 "$USER_HOME/$x" "$copydir/build/$x" done + $install -m644 /dev/stdin "$copydir/build/.gnupg/gpg.conf" <<<'keyserver-options auto-key-retrieve' sed -e '/^MAKEFLAGS=/d' -e '/^PACKAGER=/d' -i "$copydir/etc/makepkg.conf" for x in BUILDDIR=/build PKGDEST=/pkgdest SRCPKGDEST=/srcpkgdest SRCDEST=/srcdest LOGDEST=/logdest \ |