app-arch/xz-utils: depend on >=sec-keys/openpgp-keys-lassecollin-2023…

…0213 for verify-sig Someone reported an expired key issue when verifying 5.4.2. That might be because of an old version of gemato which didn't check whether the key was expired back when the signature was made (since fixed) or because of an old version of openpgp-keys-lassecollin. Add a dep to sort out the latter given it's possible. (Note that sec-keys/openpgp-keys-lassecollin hasn't changed in quite some time, the latest version was added over a year ago in 8126045.) Signed-off-by: Sam James <sam@gentoo.org>
gentoo · Apr 3, 2024 · 8257744 · 8257744
1 parent 4ba0627
commit 8257744
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/app-arch/xz-utils/xz-utils-5.4.2.ebuild b/app-arch/xz-utils/xz-utils-5.4.2.ebuild
@@ -50,7 +50,7 @@ SLOT="0"
 IUSE="doc +extra-filters pgo nls static-libs"
 
 if [[ ${PV} != 9999 ]] ; then
-	BDEPEND+=" verify-sig? ( sec-keys/openpgp-keys-lassecollin )"
+	BDEPEND+=" verify-sig? ( >=sec-keys/openpgp-keys-lassecollin-20230213 )"
 fi
 
 src_prepare() {

diff --git a/app-arch/xz-utils/xz-utils-9999.ebuild b/app-arch/xz-utils/xz-utils-9999.ebuild
@@ -50,7 +50,7 @@ SLOT="0"
 IUSE="cpu_flags_arm_crc32 doc +extra-filters pgo nls static-libs"
 
 if [[ ${PV} != 9999 ]] ; then
-	BDEPEND+=" verify-sig? ( sec-keys/openpgp-keys-lassecollin )"
+	BDEPEND+=" verify-sig? ( >=sec-keys/openpgp-keys-lassecollin-20230213 )"
 fi
 
 src_prepare() {