On 01/15/2018 11:57 AM, Luke Shumaker wrote: > From: Luke Shumaker <luke...@parabola.nu> > > This allows signature verification by `makepkg --verifysource`, `git > verify-tag`, and such without requiring the user to manually retrieve > the keys first. > > This is based off of devtools32 commit 009695b (2017-06-27) by > Erich Eckner <g...@eckner.net>. There are 2 differences from that > commit: > - In this version, gpg.conf is owned by builduser, not by root > - In this version, we don't keep appending duplicate lines if we > re-use a chroot
We use --skipinteg inside the chroot anyway, since 75fdff1811a0487f82c75b2e260da905102b4eea -- but this reminds me I need to submit my patch to disable copying of the keyring altogether. -- Eli Schwartz Bug Wrangler and Trusted User
signature.asc
Description: OpenPGP digital signature