diff options
| author |   Andreas K. Hüttel <dilfridge@gentoo.org> | 2023-08-30 19:57:19 +0200 |
|---|---|---|
| committer |   Mike Gilbert <floppym@gentoo.org> | 2023-09-03 14:07:28 -0400 |
| commit | 3e56f8a6498cd90a7d5fe472febf586455c3bad7 (patch) | |
| tree | 6c61c1d3b07831a7c6544e23f5373ffabb3d6da3 /cnf | |
| parent | emerge: ensure paths are UTF-8 encoded in _needs_move() (diff) | |
| download | portage-3e56f8a6498cd90a7d5fe472febf586455c3bad7.tar.gz portage-3e56f8a6498cd90a7d5fe472febf586455c3bad7.tar.bz2 portage-3e56f8a6498cd90a7d5fe472febf586455c3bad7.zip | |
Run PORTAGE_TRUST_HELPER before remote binary package operations
Right now this is somewhat suboptimal because the helper is only
called if FEATURES="binpkg-request-signature" is set, but existing
signatures are also verified otherwise.
Closes: https://github.com/gentoo/portage/pull/1085
Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org>
Signed-off-by: Mike Gilbert <floppym@gentoo.org>
Diffstat (limited to 'cnf')
| -rw-r--r-- | cnf/make.globals | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/cnf/make.globals b/cnf/make.globals index f951bb317..bfefcc523 100644 --- a/cnf/make.globals +++ b/cnf/make.globals @@ -150,6 +150,9 @@ PORTAGE_ELOG_MAILFROM="portage@localhost" # Signing command used by egencache PORTAGE_GPG_SIGNING_COMMAND="gpg --sign --digest-algo SHA256 --clearsign --yes --default-key \"\${PORTAGE_GPG_KEY}\" --homedir \"\${PORTAGE_GPG_DIR}\" \"\${FILE}\"" +# Trust helper executable for installing and updating package verification keys +PORTAGE_TRUST_HELPER="/usr/bin/getuto" + # btrfs.* attributes are irrelevant, see bug #527636. # security.* attributes may be special (see bug 461868), but # security.capability is specifically not excluded (bug 548516). |