lib/, bin/: fix signature type, now called *.sig2
Since 8d5c48b, xbps has used a sha1 ASN1 prefix with a sha256 hash, and
as of openssl v3, openssl cares about this. This works around that in a
compatible way by moving to a second sig file, binpkg.sig2.
For xbps-remove -O and xbps-rindex -r, also clean up obselete .sig files.
This commit is contained in:
classabbyamp
committed by
Duncan Overbruck
Duncan Overbruck
parent
e2ab72082e
commit
406f109100
@@ -1975,8 +1975,8 @@ bool xbps_verify_signature(struct xbps_repo *repo, const char *sigfile,
|
||||
* in \a repo.
|
||||
*
|
||||
* @param[in] repo Repository to use with the RSA public key associated.
|
||||
* @param[in] fname The filename to verify, the signature file must have a .sig
|
||||
* extension, i.e `<fname>.sig`.
|
||||
* @param[in] fname The filename to verify, the signature file must have a .sig2
|
||||
* extension, i.e `<fname>.sig2`.
|
||||
*
|
||||
* @return True if the signature is valid, false otherwise.
|
||||
*/
|
||||
|
||||
Reference in New Issue
Block a user