Skip to content

Commit

Permalink
re-enable SHA1 on alma9
Browse files Browse the repository at this point in the history 
also use rpm key from alma server; in-container file (currently?) runs into
```
+ rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux
error: /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux: import read failed(2).
```
  • Loading branch information
@h-vetinari
h-vetinari committed Nov 11, 2024
1 parent 22a5362 commit 5e3cc81
Showing 1 changed file with 6 additions and 1 deletion.
7 changes: 6 additions & 1 deletion scripts/fix_rpm
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,8 +16,13 @@ if [[ "${DISTRO_NAME}${DISTRO_VER}" == "centos7" ]]; then
fi
elif [ "${DISTRO_NAME}${DISTRO_VER}" = "ubi8" ]; then
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-redhat-release
elif [ "${DISTRO_NAME}" = "almalinux" ]; then
elif [ "${DISTRO_NAME}${DISTRO_VER}" = "almalinux8" ]; then
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-AlmaLinux
elif [ "${DISTRO_NAME}${DISTRO_VER}" = "almalinux9" ]; then
# alma9 removed SHA1 availability by default, but it's still needed for the
# RPM key; re-enable it. Details: https://access.redhat.com/articles/3666211
update-crypto-policies --set LEGACY
rpm --import https://repo.almalinux.org/almalinux/RPM-GPG-KEY-AlmaLinux
fi

rm -rf "/tmp/rpm-repos"

0 comments on commit 5e3cc81

Please sign in to comment.