classes/sstate: don't use unsigned sstate when verification enabled

When signature verification of shared state objects is enabled (SSTATE_VERIFY_SIG) use of an unsigned object, even though it produces a warning, seems unexpected. Instead skip unsigned objects and force the non-accelerated task to be run. (From OE-Core rev: 571235978d98552e3734bf382454dd51272db782) Signed-off-by: Joshua Lock <jlock@vmware.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Joshua Lock via Openembedded-core <openembedded-core@lists.openembedded.org> 2019-07-26 11:26:49 +0000
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2019-07-27 22:45:30 +0100
commit: f3e2c1485061539895d8963a1617e4b6facad75a (patch)
tree: b15e893116fa3c6d8ae1b3fa493ebc8986f374a5 /meta/classes
parent: c985a07e6ac356c545407dd6de7f87455b564f5d (diff)
download: poky-f3e2c1485061539895d8963a1617e4b6facad75a.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/meta/classes/sstate.bbclass b/meta/classes/sstate.bbclass
index d8fdcece6a..3342c5ef50 100644
--- a/meta/classes/sstate.bbclass
+++ b/meta/classes/sstate.bbclass
@@ -340,7 +340,8 @@ def sstate_installpkg(ss, d):
    if bb.utils.to_boolean(d.getVar("SSTATE_VERIFY_SIG"), False):
        signer = get_signer(d, 'local')
        if not signer.verify(sstatepkg + '.sig'):
-            bb.warn("Cannot verify signature on sstate package %s" % sstatepkg)
+            bb.warn("Cannot verify signature on sstate package %s, skipping acceleration..." % sstatepkg)
+            return False
    # Empty sstateinst directory, ensure its clean
    if os.path.exists(sstateinst):
author	Joshua Lock via Openembedded-core <openembedded-core@lists.openembedded.org>	2019-07-26 11:26:49 +0000
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2019-07-27 22:45:30 +0100
commit	f3e2c1485061539895d8963a1617e4b6facad75a (patch)
tree	b15e893116fa3c6d8ae1b3fa493ebc8986f374a5 /meta/classes
parent	c985a07e6ac356c545407dd6de7f87455b564f5d (diff)
download	poky-f3e2c1485061539895d8963a1617e4b6facad75a.tar.gz

diff --git a/meta/classes/sstate.bbclass b/meta/classes/sstate.bbclass index d8fdcece6a..3342c5ef50 100644 --- a/meta/classes/sstate.bbclass +++ b/meta/classes/sstate.bbclass
@@ -340,7 +340,8 @@ def sstate_installpkg(ss, d):
340	if bb.utils.to_boolean(d.getVar("SSTATE_VERIFY_SIG"), False):	340	if bb.utils.to_boolean(d.getVar("SSTATE_VERIFY_SIG"), False):
341	signer = get_signer(d, 'local')	341	signer = get_signer(d, 'local')
342	if not signer.verify(sstatepkg + '.sig'):	342	if not signer.verify(sstatepkg + '.sig'):
343	bb.warn("Cannot verify signature on sstate package %s" % sstatepkg)	343	bb.warn("Cannot verify signature on sstate package %s, skipping acceleration..." % sstatepkg)
		344	return False
344		345
345	# Empty sstateinst directory, ensure its clean	346	# Empty sstateinst directory, ensure its clean
346	if os.path.exists(sstateinst):	347	if os.path.exists(sstateinst):