X-Git-Url: https://git.decadent.org.uk/gitweb/?a=blobdiff_plain;ds=sidebyside;f=dak%2Fgenerate_releases.py;h=e483e6c22bba3f977e96d3491bffa302fce10dbc;hb=14c267e0eaa8b921307574f6c10cd3964ee0a381;hp=6a1bf84e2dee455f163c6be24ab6738c72d4fa52;hpb=4f60e9d90d7b65f37de1137ebcfc34e8b75de7e2;p=dak.git diff --git a/dak/generate_releases.py b/dak/generate_releases.py index 6a1bf84e..e483e6c2 100755 --- a/dak/generate_releases.py +++ b/dak/generate_releases.py @@ -83,7 +83,7 @@ def sign_release_dir(suite, dirname): if cnf.has_key("Dinstall::SigningPubKeyring"): keyring += " --keyring \"%s\"" % cnf["Dinstall::SigningPubKeyring"] - arguments = "--no-options --batch --no-tty --armour" + arguments = "--no-options --batch --no-tty --armour --personal-digest-preferences=SHA256" relname = os.path.join(dirname, 'Release') @@ -95,20 +95,14 @@ def sign_release_dir(suite, dirname): if os.path.exists(inlinedest): os.unlink(inlinedest) - # We can only use one key for inline signing so use the first one in - # the array for consistency - firstkey = True - + defkeyid="" for keyid in suite.signingkeys or []: - defkeyid = "--default-key %s" % keyid - - os.system("gpg %s %s %s --detach-sign <%s >>%s" % - (keyring, defkeyid, arguments, relname, dest)) + defkeyid += "--local-user %s " % keyid - if firstkey: - os.system("gpg %s %s %s --clearsign <%s >>%s" % - (keyring, defkeyid, arguments, relname, inlinedest)) - firstkey = False + os.system("gpg %s %s %s --detach-sign <%s >>%s" % + (keyring, defkeyid, arguments, relname, dest)) + os.system("gpg %s %s %s --clearsign <%s >>%s" % + (keyring, defkeyid, arguments, relname, inlinedest)) class ReleaseWriter(object): def __init__(self, suite): @@ -176,7 +170,7 @@ class ReleaseWriter(object): out.write("Architectures: %s\n" % (" ".join([a.arch_string for a in architectures]))) - components = [ c.component_name for c in session.query(Component) ] + components = [ c.component_name for c in suite.components ] out.write("Components: %s\n" % (" ".join(components)))