Re: Debian derivatives census: dpkg vendor information
On Thu, 01 Aug 2013, adrelanos wrote:
> If /etc/dpkg/origins/default does not include "Vendor: Debian", apt-get
> source verification breaks when running "apt-get source package".
> gpgv: Can't check signature: public key not found
> (Full output of an example run is attached below. )
> Can this be fixed? Is this a bug or missing feature?
It's unlikely to be a bug. First, even within Debian this can happen as
the set of allowed keys vary over time and signature can stay around
for years in the archive.
And then the vendor code already does the right thing: each vendor adds
supplementary keyrings on top of the keyrings of the parent distribution.
That said maybe your derivative hasn't implement the require vendor
support in Dpkg::Vendor::<yourvendor> …
Raphaël Hertzog ◈ Debian Developer
Discover the Debian Administrator's Handbook: