[arch-releng] [PATCH] pacman 4.1 compatibility
Gerardo Exequiel Pozzi
vmlinuz386 at yahoo.com.ar
Sat Apr 13 13:08:46 EDT 2013
On 04/13/2013 10:58 AM, Pierre Schmitz wrote:
> * Remove the unattended-keyring-init patch as this was applied by upstream with pacamn 4.1
> * Update our pacman.conf following the new upstream default
>
> Signed-off-by: Pierre Schmitz <pierre at archlinux.de>
> ---
> configs/releng/build.sh | 1 -
> .../pacman-key-4.0.3_unattended-keyring-init.patch | 32 ----------------------
> configs/releng/pacman.conf | 14 ++++------
> 3 files changed, 5 insertions(+), 42 deletions(-)
> delete mode 100644 configs/releng/pacman-key-4.0.3_unattended-keyring-init.patch
>
> diff --git a/configs/releng/build.sh b/configs/releng/build.sh
> index 560fda2..6e9e2f8 100755
> --- a/configs/releng/build.sh
> +++ b/configs/releng/build.sh
> @@ -79,7 +79,6 @@ make_setup_mkinitcpio() {
> make_customize_root_image() {
> cp -af ${script_path}/root-image ${work_dir}/${arch}
>
> - patch ${work_dir}/${arch}/root-image/usr/bin/pacman-key < ${script_path}/pacman-key-4.0.3_unattended-keyring-init.patch
> curl -o ${work_dir}/${arch}/root-image/etc/pacman.d/mirrorlist 'https://www.archlinux.org/mirrorlist/?country=all&protocol=http&use_mirror_status=on'
>
> lynx -dump -nolist 'https://wiki.archlinux.org/index.php/Installation_Guide?action=render' >> ${work_dir}/${arch}/root-image/root/install.txt
> diff --git a/configs/releng/pacman-key-4.0.3_unattended-keyring-init.patch b/configs/releng/pacman-key-4.0.3_unattended-keyring-init.patch
> deleted file mode 100644
> index 0a5117f..0000000
> --- a/configs/releng/pacman-key-4.0.3_unattended-keyring-init.patch
> +++ /dev/null
> @@ -1,32 +0,0 @@
> -Author: Pierre Schmitz <pierre at archlinux.de>
> -
> -* pacman-key: Use lsign_keys function in --populate
> -* pacman-key: reduce verbosity of --populate
> -
> ---- pacman-key 2012-07-10 18:45:32.000000000 -0300
> -+++ pacman-key 2012-07-18 16:38:18.264110004 -0300
> -@@ -376,7 +376,7 @@
> - # Add keys from requested keyrings
> - for keyring in "${KEYRINGIDS[@]}"; do
> - msg "$(gettext "Appending keys from %s.gpg...")" "$keyring"
> -- "${GPG_PACMAN[@]}" --import "${KEYRING_IMPORT_DIR}/${keyring}.gpg"
> -+ "${GPG_PACMAN[@]}" --quiet --import "${KEYRING_IMPORT_DIR}/${keyring}.gpg"
> - done
> -
> - # Read the trusted key IDs to an array. Because this is an ownertrust
> -@@ -403,12 +403,13 @@
> - msg "$(gettext "Locally signing trusted keys in keyring...")"
> - for key_id in "${!trusted_ids[@]}"; do
> - msg2 "$(gettext "Locally signing key %s...")" "${key_id}"
> -- "${GPG_PACMAN[@]}" --quiet --lsign-key "${key_id}"
> -+ KEYIDS=("${key_id}")
> -+ lsign_keys
> - done
> - msg "$(gettext "Importing owner trust values...")"
> - for keyring in "${KEYRINGIDS[@]}"; do
> - if [[ -f "${KEYRING_IMPORT_DIR}/${keyring}-trusted" ]]; then
> -- "${GPG_PACMAN[@]}" --import-ownertrust "${KEYRING_IMPORT_DIR}/${keyring}-trusted"
> -+ "${GPG_PACMAN[@]}" --import-ownertrust "${KEYRING_IMPORT_DIR}/${keyring}-trusted" 2>/dev/null
> - fi
> - done
> - fi
> diff --git a/configs/releng/pacman.conf b/configs/releng/pacman.conf
> index 821f9a5..45fe03d 100644
> --- a/configs/releng/pacman.conf
> +++ b/configs/releng/pacman.conf
> @@ -15,11 +15,10 @@
> #LogFile = /var/log/pacman.log
> #GPGDir = /etc/pacman.d/gnupg/
> HoldPkg = pacman glibc
> -# If upgrades are available for these packages they will be asked for first
> -SyncFirst = pacman
> #XferCommand = /usr/bin/curl -C - -f %u > %o
> #XferCommand = /usr/bin/wget --passive-ftp -c -O %o %u
> #CleanMethod = KeepInstalled
> +#UseDelta = 0.7
> Architecture = auto
>
> # Pacman won't upgrade packages listed in IgnorePkg and members of IgnoreGroup
> @@ -31,7 +30,7 @@ Architecture = auto
>
> # Misc options
> #UseSyslog
> -#UseDelta
> +#Color
> #TotalDownload
> # We cannot check disk space from within a chroot environment
> #CheckSpace
> @@ -39,7 +38,9 @@ Architecture = auto
>
> # By default, pacman accepts packages signed by keys that its local keyring
> # trusts (see pacman-key and its man page), as well as unsigned packages.
> -#SigLevel = Optional TrustedOnly
> +SigLevel = Required DatabaseOptional
> +LocalFileSigLevel = Optional
> +#RemoteFileSigLevel = Required
>
> # NOTE: You must run `pacman-key --init` before first using pacman; the local
> # keyring can then be populated with the keys of all official Arch Linux
> @@ -69,23 +70,18 @@ Architecture = auto
> # after the header, and they will be used before the default mirrors.
>
> #[testing]
> -#SigLevel = PackageRequired
> #Include = /etc/pacman.d/mirrorlist
>
> [core]
> -SigLevel = PackageRequired
> Include = /etc/pacman.d/mirrorlist
>
> [extra]
> -SigLevel = PackageRequired
> Include = /etc/pacman.d/mirrorlist
>
> #[community-testing]
> -#SigLevel = PackageRequired
> #Include = /etc/pacman.d/mirrorlist
>
> [community]
> -SigLevel = PackageRequired
> Include = /etc/pacman.d/mirrorlist
>
> # An example of a custom package repository. See the pacman manpage for
>
Nice!
The reference to the "patch" package can be removed now from
docs/README.build and from depends=() from PKGBUID ;)
Thanks.
--
Gerardo Exequiel Pozzi
\cos^2\alpha + \sin^2\alpha = 1
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 555 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.archlinux.org/pipermail/arch-releng/attachments/20130413/d3646d83/attachment.asc>
More information about the arch-releng
mailing list