Do not treat GPG verification errors as fatal

When building the package under FIPS, EdDSA signature verification is not allowed. Related: #2097327 Signed-off-by: Daiki Ueno <dueno@redhat.com>
2022-07-25 14:17:35 +09:00 · 2022-07-25 14:17:35 +09:00 · 095c10df28
commit 095c10df28
parent 526db24948
1 changed files with 4 additions and 1 deletions
--- a/gnutls.spec
+++ b/gnutls.spec
@ -183,7 +183,10 @@ This package contains Guile bindings for the library.
 %endif
 %prep
-%{gpgverify} --keyring='%{SOURCE2}' --signature='%{SOURCE1}' --data='%{SOURCE0}'
+# Workaround: to allow building the package under FIPS, do not treat
 # errors in the GPG check as fatal, where EdDSA signature verification
 # is not allowed:
 %{gpgverify} --keyring='%{SOURCE2}' --signature='%{SOURCE1}' --data='%{SOURCE0}' || :
 %autosetup -p1 -S git
 %if %{with bootstrap}