Le 27/02/2018 à 17:16, Emiel Wiedijk via arch-projects a écrit :
> Previously, makechrootpkg hardcoded ~/.gnupg. Therefore, if a user
> uses a custom GPG home directory, the siganture checking would fail.
> Now makechrootpkg uses $GNUPGHOME, with a fallback to ~/.gnupg.
>
> Signed-off-by: Emiel Wiedijk <m...@aimileus.nl>
> ---
> makechrootpkg.in | 5 +++--
> 1 file changed, 3 insertions(+), 2 deletions(-)
>
> diff --git a/makechrootpkg.in b/makechrootpkg.in
> index afcd121..653847f 100644
> --- a/makechrootpkg.in
> +++ b/makechrootpkg.in
> @@ -252,7 +252,8 @@ download_sources() {
> chmod 1777 "$builddir"
>
> # Ensure sources are downloaded
> - sudo -u "$makepkg_user" env SRCDEST="$SRCDEST" BUILDDIR="$builddir" \
> + sudo -u "$makepkg_user" --preserve-env=GNUPGHOME \
> + env SRCDEST="$SRCDEST" BUILDDIR="$builddir" \
> makepkg --config="$copydir/etc/makepkg.conf" --verifysource -o
> ||
> die "Could not download sources."
>
> @@ -341,7 +342,7 @@ main() {
> [[ -n $makepkg_user && -z $(id -u "$makepkg_user") ]] && die 'Invalid
> makepkg user.'
> makepkg_user=${makepkg_user:-${SUDO_USER:-$USER}}
>
> - check_root SOURCE_DATE_EPOCH
> + check_root SOURCE_DATE_EPOCH,GNUPGHOME
>
> # Canonicalize chrootdir, getting rid of trailing /
> chrootdir=$(readlink -e "$passeddir")Does not seem to work for me: GNUPGHOME=/path/to/svn-community/.gnupg/ extra-x86_64-build … ==> Verifying source file signatures with gpg... flickcurl-1.26.tar.gz ... FAILED (unknown public key 43EC92504F71955A) … (I have previously retrieved this key using `GNUPGHOME=/path/to/svn-community/.gnupg/ gpg --recv-keys 43EC92504F71955A` of course)
signature.asc
Description: OpenPGP digital signature
