[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: self signed repository

On Thu, Jul 05, 2012 at 04:24:12PM +0400, Anton Gorlov wrote:
> 05.07.2012 12:46, Roger Leigh пишет:
> >You also need the Release file in the apt repository signing.
> >apt-get doesn't get check per-package signatures?  Individual
> >packages aren't signed by default; just the archive as a whole
> >via the Release/InRelease files.
> but
> apt-get update
> Ign file: squeeze Release.gpg
> Ign file:/opt/work/myrepo/ squeeze/main Translation-en
> Ign file:/opt/work/myrepo/ squeeze/main Translation-en_US
> Ign file: squeeze Release
> Ign file: squeeze/main amd64 Packages
> Ign file: squeeze/main amd64 Packages
> Reading package lists... Done
> 
> What I doing wrong?

Not sure.  If you want to have a look at a working example, take a
look at how sbuild does this in the sbuild sources in
  lib/Sbuild/ResolverBase.pm
We run gpg by hand after creating the archive.


Regards,
Roger

-- 
  .''`.  Roger Leigh
 : :' :  Debian GNU/Linux    http://people.debian.org/~rleigh/
 `. `'   schroot and sbuild  http://alioth.debian.org/projects/buildd-tools
   `-    GPG Public Key      F33D 281D 470A B443 6756 147C 07B3 C8BC 4083 E800
Reply to: