From 3dab2300bfa48b358a5e217c170f072cf166654b Mon Sep 17 00:00:00 2001 From: Ansgar Burchardt Date: Sat, 12 Oct 2013 14:00:32 +0200 Subject: [PATCH] Use SHA256 for signatures. As dak passes --no-options to gpg, setting preferences in gpg.conf does not help. Bug: http://bugs.debian.org/612657 --- dak/generate_releases.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dak/generate_releases.py b/dak/generate_releases.py index a86c33ce..e483e6c2 100755 --- a/dak/generate_releases.py +++ b/dak/generate_releases.py @@ -83,7 +83,7 @@ def sign_release_dir(suite, dirname): if cnf.has_key("Dinstall::SigningPubKeyring"): keyring += " --keyring \"%s\"" % cnf["Dinstall::SigningPubKeyring"] - arguments = "--no-options --batch --no-tty --armour" + arguments = "--no-options --batch --no-tty --armour --personal-digest-preferences=SHA256" relname = os.path.join(dirname, 'Release') -- 2.39.5