- Also drop the symlink that enables the timer
sq was upgraded in all Fedora branches to >= 1.0, and the sq CLI changed again
and the package doesn't build. Switch to precompiled keyrings so that we don't
need to do the local build. They are signed by the same upstream key
"02FD1C7A934E614545849F19A6234074498E9CEE (Christian Hesse (Arch Linux Package Signing)
<arch@eworm.de> (UNAUTHENTICATED))",
so the security level should be similar.
https://docs.fedoraproject.org/en-US/packaging-guidelines/#_source_file_verification
says a script should be used, but that script assumes that the signature
is detached. No provision for inline signatures was made. Also, the script
uses gpg… Let's just open-code a check with sq.
The timer was enabled in 5c058c1c02. I don't
think we want the timer to be enabled by default. We upgrade the package
regularly, whenever upstream makes a release, so users will get the new keyring
anyway.
Replaced a BuildRequires from the direct executable path (/usr/bin/sq) to the package name (sequoia-sq) to avoid ambiguity, as multiple packages (squirrel, ispell-sq) provide the sq executable.
... (rhbz#2269408)
This also reshuffles the patch situation a bit, notably:
- the patch for sq-keyring-linter is no longer necessary, since we have
sequoia-sq >= 0.31.0 in all active Fedora releases
- a new patch was added that reverts [0], since ATTOW in Fedora we have
sequoia-sq 0.33.0 which is from before the keyring module was moved
into the toolbox one; once Fedora gets sequoia-sq >= 0.34.0 this
patch can be dropped
[0] 10252b287d
The scriptlet would only work if pacman was already installed when the
scriptlet was called. This would often be the case, but for example, the
user might even install pacman later in a separate transaction.
Let's switch to a %transfiletriggerin: this way we should be called in
all cases where pacman-key is available. We might be called more often
than necessary, but that should be fine too. pacman is updated rather
rarely.
This way bodhi should be able to link the update to the bug automatically.
The bug number is moved from the git commit title to the body. We don't really
need this clutter in the git log, it is only useful in the %changelog so that
bodhi can pick it up.
[skip changelog]
