Re: Debian derivatives census: dpkg vendor information

To: adrelanos <adrelanos@riseup.net>
Cc: debian-derivatives@lists.debian.org
Subject: Re: Debian derivatives census: dpkg vendor information
From: Raphael Hertzog <hertzog@debian.org>
Date: Thu, 1 Aug 2013 23:15:38 +0200
Message-id: <[🔎] 20130801211538.GA4029@x230-buxy.home.ouaza.com>
Mail-followup-to: Raphael Hertzog <hertzog@debian.org>, adrelanos <adrelanos@riseup.net>, debian-derivatives@lists.debian.org
In-reply-to: <[🔎] 51FAB76B.4030309@riseup.net>
References: <1351211846.8824.103.camel@chianamo> <[🔎] 51FAB76B.4030309@riseup.net>

On Thu, 01 Aug 2013, adrelanos wrote:
> If /etc/dpkg/origins/default does not include "Vendor: Debian", apt-get
> source verification breaks when running "apt-get source package".
> 
> gpgv: Can't check signature: public key not found
> 
> (Full output of an example run is attached below. [1])
> 
> Can this be fixed? Is this a bug or missing feature?

It's unlikely to be a bug. First, even within Debian this can happen as
the set of allowed keys vary over time and signature can stay around
for years in the archive.

And then the vendor code already does the right thing: each vendor adds
supplementary keyrings on top of the keyrings of the parent distribution.

That said maybe your derivative hasn't implement the require vendor
support in Dpkg::Vendor::<yourvendor> …

Cheers,
-- 
Raphaël Hertzog ◈ Debian Developer

Discover the Debian Administrator's Handbook:
→ http://debian-handbook.info/get/

Reply to:

References:
- Re: Debian derivatives census: dpkg vendor information
  - From: adrelanos <adrelanos@riseup.net>

Prev by Date: Re: Debian derivatives census: dpkg vendor information
Next by Date: Re: Debian derivatives census: dpkg vendor information
Previous by thread: Re: Debian derivatives census: dpkg vendor information
Next by thread: Re: Debian derivatives census: dpkg vendor information
Index(es):
- Date
- Thread