Re: Debian derivatives census: errors with SecureApt
On Wed, Aug 10, 2011 at 8:13 AM, Neil Williams wrote:
> Only because the keyring isn't used by the aptitude test.
That is on purpose, since establishing trust paths to the 38
derivatives in the census is a huge task, let alone the many
derivatives not present in the census.
The script I am currently using was switched to apt-get and ignores
any GPG signatures (see below). I have updated the wiki page about
this issue to mention ignoring GPG signatures.
pabs@chianamo:~/devel/debian/deriv/census (master)$ cat bin/get-package-lists
#!/bin/sh
set -e
apt-get update -q=2 -y \
-o Dir::Etc::SourceList="$(pwd)/$1" \
-o Dir::Etc::SourceParts="$(pwd)/$2" \
-o Dir::State::Lists="$(pwd)/$2" \
-o Dir::Bin::gpg=fakegpgv \
-o Debug::NoLocking=1 \
-o Debug::pkgDPkgPM=1
pabs@chianamo:~/devel/debian/deriv/census (master)$ cat bin/fakegpgv
#!/bin/sh
STATUS=0
while [ -n "$1" ]; do
if [ $(expr substr "$1" 1 11) = "--status-fd" ]; then
STATUS=$2
break
fi
shift
done
echo "[GNUPG:] GOODSIG 5A90D141DBAC8DAE" >&${STATUS}
exit 0
--
bye,
pabs
http://wiki.debian.org/PaulWise
Reply to: