From e928f81c446cee84dcf57b7a5f6ce88453a74c7a Mon Sep 17 00:00:00 2001
From: Xiao Pan <gky44px1999@gmail.com>
Date: Sat, 16 Mar 2024 14:20:39 -0700
Subject: fix: add allow-weak-key-signatures to /etc/pacman.d/gnupg/gpg.conf,
 to workaroud ALARM build key is sha1 and rejected by new gpg

With newer version of gpg, pacman will error `Error: Signature is
marginal trust` for Arch Linux ARM Build System key. It seems because
Arch Linux ARM Build System key is sha1 and rejected by new versions
of gpg. Need to reset all keys by:
```sh
sudo rm -rf /etc/pacman.d/gnupg
sudo pacman-key --init
echo 'allow-weak-key-signatures' | sudo tee -a /etc/pacman.d/gnupg/gpg.conf > /dev/null
sudo pacman-key --populate
```
Note, need to add `allow-weak-key-signatures` in /etc/pacman.d/gnupg/gpg.conf
before `sudo pacman-key --populate`.

More See https://archlinuxarm.org/forum/viewtopic.php?f=9&t=16762
---
 etc/pacman.d/gnupg/gpg.conf | 1 +
 1 file changed, 1 insertion(+)

(limited to 'etc/pacman.d/gnupg/gpg.conf')

diff --git a/etc/pacman.d/gnupg/gpg.conf b/etc/pacman.d/gnupg/gpg.conf
index 6ccc95cc..03a64d3d 100644
--- a/etc/pacman.d/gnupg/gpg.conf
+++ b/etc/pacman.d/gnupg/gpg.conf
@@ -4,3 +4,4 @@ lock-never
 keyserver-options timeout=10
 keyserver-options import-clean
 keyserver-options no-self-sigs-only
+allow-weak-key-signatures
-- 
cgit v1.2.3-70-g09d2