[PATCH] submit signed .buildinfo files to buildinfo.debian.net

Holger Levsen holger at layer-acht.org
Mon Oct 31 23:52:13 UTC 2016

On Mon, Oct 31, 2016 at 11:00:18PM +0000, Chris Lamb wrote:
> > > we might use gpg signing for other purposes, so I removed that
> > > constraint…
> Constraint? I'd really prefer it if each node had its own key. That way I
> can throw away the nasty ?node=$NODE blah of the submission.

sure. but you prefented it from being executed on some hosts which at
least currently are still used to run jobs. *that* constraint :)

> [hostname -f/-a/-s discussion]

thanks, that was useful and made me choose $HOSTNAME, which works
nicely! ;-)

still, there is this glitch:

gpg: skipping control `%no-ask-passphrase' ()
gpg: skipping control `%no-protection' ()

Is that harmless?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 811 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/reproducible-builds/attachments/20161031/b6d38b57/attachment.sig>

More information about the Reproducible-builds mailing list