[SOLVED] Re: Question about repository signing

To: deity@lists.debian.org
Cc: David Kalnischkies <david@kalnischkies.de>
Subject: [SOLVED] Re: Question about repository signing
From: "Joshua J. Kugler" <joshua@azariah.com>
Date: Mon, 11 Nov 2019 14:48:54 -0900
Message-id: <[🔎] 3876593.sE5LVb6ae9@hosanna>
In-reply-to: <[🔎] 30270378.2pet0LAYcc@hosanna>
References: <[🔎] 13120953.fuEvBn5Apq@hosanna> <[🔎] 5238071.X1lNIxYqvE@hosanna> <[🔎] 30270378.2pet0LAYcc@hosanna>

For some reason, gpg on this new system was defaulting to SHA1 to sign 
documents. I added this to ~/.gnupg/gpg.conf and reprerpo is now producing 
valid repos. Probably should be an option reprepro passes to gpg. :)

personal-digest-preferences SHA256

Thanks for all the pointers and help!

j

On Monday, November 11, 2019 2:42:25 PM AKST Joshua J. Kugler wrote:
> Sending again because my mailer somehow sent a blank message.
> 
> Found a possible issue
> Old repo:
> Second line of dists/cmpny/InRelease
> Hash: SHA256
> 
> on our new packages:
> second line of 18/dists/cmpny/InRelease
> Hash: SHA1
> 
> Now to figure out how to get gpg/reprepro to use updated hashes.
> 
> I've already updated the gpg.conf, but that didn't seem to have any effect.
> 
> j


-- 
Joshua J. Kugler -- Fairbanks, AK
Blogs: http://jjncj.com/blog/ (Family) -- http://joshuakugler.com (Geek)
Philippians 2:9-11

Reply to:

References:
- Question about repository signing
  - From: "Joshua J. Kugler" <joshua@azariah.com>
- Re: Question about repository signing
  - From: "Joshua J. Kugler" <joshua@azariah.com>
- Re: Question about repository signing
  - From: "Joshua J. Kugler" <joshua@azariah.com>

Prev by Date: Re: Question about repository signing
Next by Date: Virtual Package installation priority
Previous by thread: Re: Question about repository signing
Next by thread: Re: Question about repository signing
Index(es):
- Date
- Thread