| Message ID | 20250205043637.2649428-2-zboszor@gmail.com |
|---|---|
| State | New |
| Headers | show |
| Series | [v6,1/3] rpm-sequoia: New recipe for version 1.7.0 | expand |
diff --git a/meta/classes/sign_rpm.bbclass b/meta/classes/sign_rpm.bbclass index ee0c4808fa..0bcd10d1f3 100644 --- a/meta/classes/sign_rpm.bbclass +++ b/meta/classes/sign_rpm.bbclass @@ -40,6 +40,9 @@ RPM_GPG_BACKEND ?= 'local' RPM_FILE_CHECKSUM_DIGEST ?= '8' RPM_GPG_SIGN_CHUNK ?= "${BB_NUMBER_THREADS}" +# The file "rpm-sequoia.config" is shipped by rpm-sequoia[-native]. +# Use it to sign rpms. +export SEQUOIA_CRYPTO_POLICY = "${RECIPE_SYSROOT_NATIVE}${sysconfdir}/crypto-policies/back-ends/rpm-sequoia.config" python () { if d.getVar('RPM_GPG_PASSPHRASE_FILE'):
Set SEQUOIA_CRYPTO_POLICY to the path of the crypto policy file shipped by rpm-sequoia-native. This allows signing rpm packages on hosts that do not have the crypto policy file for rpm-sequoia. Signed-off-by: Zoltán Böszörményi <zboszor@gmail.com> --- meta/classes/sign_rpm.bbclass | 3 +++ 1 file changed, 3 insertions(+)