commit: cc5b1dd99e79b14347715da29c4838b59c06fa18 Author: Sam James <sam <AT> gentoo <DOT> org> AuthorDate: Sun Feb 15 16:34:25 2026 +0000 Commit: Sam James <sam <AT> gentoo <DOT> org> CommitDate: Sun Feb 15 16:56:50 2026 +0000 URL: https://gitweb.gentoo.org/proj/portage.git/commit/?id=cc5b1dd9
cnf: install binrepos.conf with verify-signature enabled for gentoo Install a binrepos.conf file which enable verify-signature for the following binhost names: 'gentoo', 'gentoobinhost', 'gentoo-x86-64-v3', which are the 3 known names used. We've phased out 'gentoobinhost' but we want to upgrade systems to the new default if they already have such a file which the wiki suggested + catalyst would create. We may want to add a [DEFAULT] section in future with verify-signature enabled but that will require a news item. Many people with their own binhosts may not have yet transitioned to using signing support which is still pretty new in the scheme of things. Bug: https://bugs.gentoo.org/945384 Bug: https://bugs.gentoo.org/969086 Signed-off-by: Sam James <sam <AT> gentoo.org> cnf/binrepos.conf | 8 ++++++++ cnf/meson.build | 2 ++ 2 files changed, 10 insertions(+) diff --git a/cnf/binrepos.conf b/cnf/binrepos.conf new file mode 100644 index 0000000000..03ea617902 --- /dev/null +++ b/cnf/binrepos.conf @@ -0,0 +1,8 @@ +[gentoo] +verify-signature = true + +[gentoo-x86-64-v3] +verify-signature = true + +[gentoobinhost] +verify-signature = true diff --git a/cnf/meson.build b/cnf/meson.build index abd1514653..f8b03baeec 100644 --- a/cnf/meson.build +++ b/cnf/meson.build @@ -9,6 +9,7 @@ install_data( extra_features = [] make_globals = 'make.globals' repos_conf = 'repos.conf' +binrepos_conf = 'binrepos.conf' if get_option('gentoo-dev') extra_features += [ @@ -114,6 +115,7 @@ install_data( make_conf_example, make_globals, repos_conf, + binrepos_conf, ], install_dir : portage_datadir / 'config' )
