From 83700d6d6aec8507ad154aa1576ad4d490ae7886 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Vicente=20J=2E=20Jim=C3=A9nez=20Miras?= <vjjmiras@gmail.com>
Date: Tue, 7 Jun 2022 23:16:17 +0200
Subject: [PATCH] update(build): Switch from RSA/SHA1 to RSA/SHA256 signature
 in the RPM packages
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Vicente J. Jiménez Miras <vjjmiras@gmail.com>
---
 .circleci/config.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.circleci/config.yml b/.circleci/config.yml
index c2f3f835..cdd3051e 100644
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -220,6 +220,7 @@ jobs:
           command: |
             echo "%_signature gpg" > ~/.rpmmacros
             echo "%_gpg_name  Falcosecurity Package Signing" >> ~/.rpmmacros
+            echo "%__gpg_sign_cmd %{__gpg} --force-v3-sigs --batch --no-armor --passphrase-fd 3 --no-secmem-warning -u \"%{_gpg_name}\" -sb --digest-algo sha256 %{__plaintext_filename}'" >> ~/.rpmmacros
             cd /build/release/
             echo '#!/usr/bin/expect -f' > sign
             echo 'spawn rpmsign --addsign {*}$argv' >> sign