summaryrefslogtreecommitdiff
path: root/debian/control
diff options
context:
space:
mode:
authorJulian Andres Klode <julian.klode@canonical.com>2025-04-25 20:53:45 +0200
committerJulian Andres Klode <jak@debian.org>2025-04-25 21:07:07 +0000
commit85c435f23718e168345ea60270b24a57061b54f4 (patch)
tree95190a341e6861d216bf45c2e45eb301f6c531da /debian/control
parent1747377d5b486318632026f4660ea2e7fb5f9ba2 (diff)
sqv: Warn about signatures that will be rejected by policy within a year
This implements a simple check where we first run `sqv` with `--policy-as-of` 1 year in the future. If the file is validly signed one year in the future, it is validly signed now. If the file is not validly signed 1 year in the future, we check if it is validly signed now, and otherwise print an error message. The --policy-as-of feature was added in sqv 1.3.0, hence we add a version requirement to the dependency.
Diffstat (limited to 'debian/control')
-rw-r--r--debian/control2
1 files changed, 1 insertions, 1 deletions
diff --git a/debian/control b/debian/control
index 157ca079e..a3e4c45df 100644
--- a/debian/control
+++ b/debian/control
@@ -28,7 +28,7 @@ Build-Depends: dpkg-dev (>= 1.22.5) <!pkg.apt.ci>,
ninja-build,
pkg-config,
po4a (>= 0.34-2) <!nodoc>,
- sqv [amd64 arm64 armel armhf i386 mips64el ppc64el riscv64 s390x hurd-amd64 hurd-i386 loong64 powerpc ppc64 sparc64] <!pkg.apt.nosqv> | gpgv,
+ sqv (>= 1.3.0) [amd64 arm64 armel armhf i386 mips64el ppc64el riscv64 s390x hurd-amd64 hurd-i386 loong64 powerpc ppc64 sparc64] <!pkg.apt.nosqv> | gpgv,
triehash,
xsltproc <!nodoc>,
zlib1g-dev