[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Q: Where is keyring packaging guideline?

On Fri, Aug 24, 2018 at 2:58 PM Kentaro Hayashi <kenhys@gmail.com> wrote:
>
> As far as I know, in most cases, keyrings are added automatically. (not just as data)
> I thought that it is common sense in Debian, but it is better to ask users explicitly
> during install process (dconf?) if package will put keyring under /etc/apt/trusted.gpg.d/.
>

FWIW, you don't need to add third party keyrings to
/etc/apt/trusted.gpg.d/(which will be trusted by apt automatically).

See my example for vscode repo I used,
```
zsj@debian ~ $ cat /etc/apt/sources.list.d/vscode.list
deb [arch=amd64 signed-by=/etc/apt/3rd.gpg.d/microsoft.gpg]
https://packages.microsoft.com/repos/vscode stable main
zsj@debian ~ $ gpg --no-default-keyring
--keyring=/etc/apt/3rd.gpg.d/microsoft.gpg -k
/etc/apt/3rd.gpg.d/microsoft.gpg
--------------------------------
pub   rsa2048 2015-10-28 [SC]
     BC528686B50D79E339D3721CEB3E94ADBE1229CF
uid           [ unknown] Microsoft (Release signing) <gpgsecurity@microsoft.com>
```
-- 
Best regards,
Shengjing Zhu
Reply to: