[dak/master] Use SHA256 for signatures.

To: debian-dak@lists.debian.org,dak@commit.ganneff.de
Subject: [dak/master] Use SHA256 for signatures.
From: Ansgar Burchardt <ansgar@debian.org>
Date: Sat, 12 Oct 2013 12:01:38 +0000
Message-id: <[🔎] E1VUxt4-0002hF-BI@franck.debian.org>

As dak passes --no-options to gpg, setting preferences in gpg.conf does
not help.

Bug: http://bugs.debian.org/612657
---
 dak/generate_releases.py |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/dak/generate_releases.py b/dak/generate_releases.py
index a86c33c..e483e6c 100755
--- a/dak/generate_releases.py
+++ b/dak/generate_releases.py
@@ -83,7 +83,7 @@ def sign_release_dir(suite, dirname):
         if cnf.has_key("Dinstall::SigningPubKeyring"):
             keyring += " --keyring \"%s\"" % cnf["Dinstall::SigningPubKeyring"]
 
-        arguments = "--no-options --batch --no-tty --armour"
+        arguments = "--no-options --batch --no-tty --armour --personal-digest-preferences=SHA256"
 
         relname = os.path.join(dirname, 'Release')
 
-- 
1.7.10.4

Reply to:

Prev by Date: [dak/master] Import daklib.utils, not utils.
Next by Date: [dak/master] README.stable-point-release: updates from Debian Wheezy 7.2
Previous by thread: [dak/master] Import daklib.utils, not utils.
Next by thread: [dak/master] README.stable-point-release: updates from Debian Wheezy 7.2
Index(es):
- Date
- Thread