From 0fb71e9bf26a6ee541530dd335527aaecc04a216 Mon Sep 17 00:00:00 2001
From: Walt Della <walt@goteleport.com>
Date: Mon, 10 Jan 2022 18:10:33 -0800
Subject: [PATCH] Run gpg in batch mode

Do not prompt for any reason, especially not if a repomd.xml.asc already
exists when signing repomd.xml. Attempting to prompt (instead of
overwriting) results in publish failures like the following:

  + gpg --detach-sign --armor /rpmrepo/teleport/repodata/repomd.xml
  gpg: cannot open '/dev/tty': No such device or address

Contributes to https://github.com/gravitational/teleport/issues/9726.
---
 .drone.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.drone.yml b/.drone.yml
index 2846b74cff892..de1aec5fec592 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -5037,7 +5037,7 @@ steps:
         echo "$GPG_RPM_SIGNING_ARCHIVE" | base64 -d | tar -xzf - -C $GNUPGHOME
         chown -R root:root $GNUPGHOME
       # Sign rpm repo metadata (yum clients will automatically look for and verify repodata/repomd.xml.asc)
-      - gpg --detach-sign --armor /rpmrepo/teleport/repodata/repomd.xml
+      - gpg --batch --yes --detach-sign --armor /rpmrepo/teleport/repodata/repomd.xml
       - cat /rpmrepo/teleport/repodata/repomd.xml.asc
       - rm -rf $GNUPGHOME
 
@@ -5166,6 +5166,6 @@ volumes:
       name: drone-s3-debrepo-pvc
 ---
 kind: signature
-hmac: 1473746cd33150de6ce4e6be53478ad6961414d1e34987d9eff4b3e17bcfe5a2
+hmac: 7e267bb32adf5588554c4dd04e25df09d450bcb3e4a5e8766a6df5e8a97fde4a
 
 ...