Re: signed packages documentation

To: Havard Eidnes <he%NetBSD.org@localhost>
Subject: Re: signed packages documentation
From: Greg Troxel <gdt%lexort.com@localhost>
Date: Fri, 24 Jul 2020 09:00:31 -0400

Havard Eidnes <he%NetBSD.org@localhost> writes:

>>   set GPG to /usr/pkg/bin/pgp2
>
> There's a typo there?  Should have been /usr/pkg/bin/gpg2?

you are right.  shows how long I have been using PGP...

> However, if you
>
>>   build packages normally
>
> using pbulk, the above path to gpg2 is problematic, because pbulk
> will remove all installed packages in the "default path" to
> provide a pristine environment with only the required and
> declared dependent packages prior to each pkg build.
>
> So you need to install gpg2 elsewhere, using a different prefix
> and a different pkg database.  If you installed pbulk into
> (chroot)/usr/pbulk, and the pkg database is the same, that could
> be re-used for the gnupg2 package.

I now understand that packages are signed with pkg_admin after creation,
not at pkg_create time, so yes you need it in the path when you sign but
there is no reason to do that in the chroot, so I think this is a
non-issue.

References:
- signed packages documentation
  - From: Greg Troxel
- Re: signed packages documentation
  - From: Joerg Sonnenberger
- Re: signed packages documentation
  - From: Greg Troxel
- Re: signed packages documentation
  - From: Havard Eidnes

Prev by Date: daily pkgsrc CVS update output
Next by Date: daily pkgsrc CVS update output
Previous by Thread: Re: signed packages documentation
Next by Thread: mono6 conflicts with chicken 5
Indexes:

Home | Main Index | Thread Index | Old Index