copr-builders: don't do gpg checks for epel-6 builds

Our builders are on Fedora 38 which distrust SHA-1, and I don't see a way to opt-out from this policy. Building for epel-6 is already on the edge, so..
2023-06-08 17:07:34 +02:00 · 2023-06-08 17:07:34 +02:00 · 7b1cf87845
commit 7b1cf87845
parent 860f0ed488
2 changed files with 2 additions and 2 deletions
--- a/roles/copr/backend/files/provision/files/mock/templates/epel-6.tpl
+++ b/roles/copr/backend/files/provision/files/mock/templates/epel-6.tpl
@ -8,7 +8,7 @@ name=Extra Packages for Enterprise Linux $releasever - $basearch
 mirrorlist=http://mirrors.fedoraproject.org/mirrorlist?repo=epel-6&arch=$basearch
 failovermethod=priority
 gpgkey=file:///usr/share/distribution-gpg-keys/epel/RPM-GPG-KEY-EPEL-6
-gpgcheck=1
+gpgcheck=0
 skip_if_unavailable=False

 [epel-testing]
--- a/roles/copr/backend/files/provision/provision_builder_tasks.yml
+++ b/roles/copr/backend/files/provision/provision_builder_tasks.yml
@ -73,7 +73,7 @@

 # https://fedoraproject.org/wiki/Changes/StrongCryptoSettings
 - name: fallback to the legacy crypto policies
-  command: update-crypto-policies --set DEFAULT:FEDORA32
+  command: update-crypto-policies --set DEFAULT:SHA1
  when:
    - prepare_base_image is defined