Bug#846892: pkg-mozilla-archive-keyring: build generates a keybox file instead of a gpg transferable key
Clint Adams
clint at debian.org
Sat Dec 3 23:33:25 UTC 2016
Package: pkg-mozilla-archive-keyring
Version: 1.1
Tags: patch
User: reproducible-builds at lists.alioth.debian.org
Usertags: timestamps
With gnupg 2 as the default, the $(KEYRING) target in debian/rules
generates a GPG keybox database version 1 instead of an RFC4880
OpenPGP Transferable Key, or "GPG key public ring".
All of the other keyrings in /etc/apt/trusted.gpg.d or /usr/share/keyrings
are in the latter format.
Also I suspect that this has an effect on the package's reproducibility
but I'm unsure because `kbxutil --cut` doesn't do what I expected it
to do.
Two ways this could be changed are
1) gpg --dearmor -o $@ $<
2) hot dearmor < $< > $@
More information about the pkg-mozilla-maintainers
mailing list