]> git.ipfire.org Git - thirdparty/mkosi.git/commit
projects / thirdparty / mkosi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c30eee1) | patch
Only pick up /etc/pki/tls and /etc/pki/ca-trust as certificate dirs 3736/head
authorDaan De Meyer <daan.j.demeyer@gmail.com>
Mon, 26 May 2025 13:09:43 +0000 (15:09 +0200)
committerDaan De Meyer <daan.j.demeyer@gmail.com>
Mon, 26 May 2025 15:34:05 +0000 (17:34 +0200)
commit0a5d87b7bbafab1af37dd8ba5869f5f8b112de3d
treed9e41c019633078b1af9f06e3b431f8c39ad54fetree
parentc30eee187f9a9b6d9572611ede2854ffbc958406commit | diff
Only pick up /etc/pki/tls and /etc/pki/ca-trust as certificate dirs

Extra rpm GPG keys can be configured in /etc/pki/rpm-gpg. Let's not
assume /etc/pki consists solely of certificates but instead, let's pick
out the two directories out of there that do concern themselves with
certificates.

This allows copying extra rpm gpg keys to /etc/pki/rpm-gpg with
SandboxTrees= without these getting overridden by the /etc/pki bind
mount we used to have before.

Fixes #3687
action.yaml diff | blob | blame | history
mkosi/__init__.py diff | blob | blame | history
mkosi/mounts.py diff | blob | blame | history
mkosi/resources/man/mkosi.1.md diff | blob | blame | history
Mirror of https://github.com/systemd/mkosi.git