Updating gpg-pubkey count on both asrock and lenovo
This commit is contained in:
Ben Radey
@@ -10,11 +10,11 @@ RUN echo "%_without_kmod_nvidia_detect 1" > /etc/rpm/macros.nvidia-kmod && \
|
||||
chmod 777 /var/tmp && \
|
||||
/usr/sbin/akmods --force --kernels "$(rpm -qa kernel --queryformat '%{VERSION}-%{RELEASE}.%{ARCH}')"
|
||||
|
||||
# The first check makes sure that we have exactly 4 gpg pubkeys trusted in the rpmdb (the ones from the base image).
|
||||
# The first check makes sure that we have exactly 10 gpg pubkeys trusted in the rpmdb (the ones manually imported above) (Brave adds 6, apparently?).
|
||||
# Any more than that means that dnf automatically added a new one, which is shady!
|
||||
# Then: cleanup image for linting
|
||||
# Finally: verify image is good
|
||||
# FIXME - remove the `--skip nonempty-run-tmp` when it's no longer needed
|
||||
RUN [[ 4 -eq $(rpm -qa gpg-pubkey* | wc -l) ]] && \
|
||||
RUN [[ 10 -eq $(rpm -qa gpg-pubkey* | wc -l) ]] && \
|
||||
rm -rf /var /boot && mkdir /var /boot && \
|
||||
bootc container lint --fatal-warnings --skip nonempty-run-tmp
|
||||
|
||||
Reference in New Issue
Block a user