From d2a5d76b54428e79f200564aa82a6a0931e13d0d Mon Sep 17 00:00:00 2001 From: Gunnar Beutner Date: Tue, 27 Apr 2021 17:32:48 +0200 Subject: [PATCH] Ports: Use SHA256 for the gcc port This updates the way we verify signatures for the gcc port because we were previously downloading the keychain from the mirror which defeats the point of doing signature checks. --- Ports/gcc/package.sh | 7 ++----- 1 file changed, 2 insertions(+), 5 deletions(-) diff --git a/Ports/gcc/package.sh b/Ports/gcc/package.sh index f5f307f316b..6c3ee513dc6 100755 --- a/Ports/gcc/package.sh +++ b/Ports/gcc/package.sh @@ -3,15 +3,12 @@ port=gcc version=11.1.0 useconfigure=true configopts="--target=${SERENITY_ARCH}-pc-serenity --with-sysroot=/ --with-build-sysroot=${SERENITY_INSTALL_ROOT} --with-newlib --enable-languages=c,c++ --disable-lto --disable-nls --enable-shared --enable-default-pie --enable-host-shared --enable-threads=posix" -files="https://ftpmirror.gnu.org/gnu/gcc/gcc-${version}/gcc-${version}.tar.xz gcc-${version}.tar.xz -https://ftpmirror.gnu.org/gnu/gcc/gcc-${version}/gcc-${version}.tar.xz.sig gcc-${version}.tar.xz.sig -https://ftpmirror.gnu.org/gnu/gnu-keyring.gpg gnu-keyring.gpg" +files="https://ftpmirror.gnu.org/gnu/gcc/gcc-${version}/gcc-${version}.tar.xz gcc-${version}.tar.xz 4c4a6fb8a8396059241c2e674b85b351c26a5d678274007f076957afa1cc9ddf" configopts="--target=${SERENITY_ARCH}-pc-serenity --with-sysroot=/ --with-build-sysroot=${SERENITY_BUILD_DIR}/Root --with-newlib --enable-languages=c,c++ --disable-lto --disable-nls --enable-shared --enable-default-pie --enable-host-shared --enable-threads=posix" makeopts="all-gcc all-target-libgcc all-target-libstdc++-v3 -j $(nproc)" installopts="DESTDIR=${SERENITY_INSTALL_ROOT} install-gcc install-target-libgcc install-target-libstdc++-v3" depends="binutils" -auth_type="sig" -auth_opts="--keyring ./gnu-keyring.gpg gcc-${version}.tar.xz.sig" +auth_type="sha256" post_fetch() { run contrib/download_prerequisites