Bug#1119944: Unable to continue using gpgv on trixie
Package: apt
Version: 3.0.3
Dear maintainers,
during the upgrade to Debian 13 (trixie) the sqv package was
automatically installed as indicated by the NEWS entry.
I support adding alternative methods for PGP verification and thus
effectively testing for non-portable behaviour. However, I would prefer
to continue using GnuPG for PGP verification on my systems.
GnuPG is a battle-tested and proven PGP implementation which has not let
me down in all the years I've been using it.
The NEWS entry reads as if GnuPG (gpgv) is still supported by APT,
but I could not find a way to switch back to using gpgv.
sqv is now a hard dependency and if I `dpkg --force-depends -r sqv`,
APT generally continues to work, but fails on every package install or
upgrade due to the unsatisfied sqv requirement:
> root@debian-13:~# apt upgrade
> You might want to run 'apt --fix-broken install' to correct these.
> Unsatisfied dependencies:
> apt : Depends: sqv (>= 1.3.0) but it is not installed
> Error: Unmet dependencies. Try 'apt --fix-broken install' with no
> packages (or specify a solution).
Looking at the dependencies of the source package I can see that both
sqv and gpgv are listed.
However, for the binary packages the dependency is either one or the
other.
Would it be possible to loosen the requirements encoded in the binary
packages to allow for both supported PGP implementations?
Thank you.
Best regards,
Dennis
Reply to: