debootstrap fails if ubuntu-keyring installed and release signed by other
Bug #878481 reported by
Kyle Nitzsche
This bug affects 2 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| germinate (Ubuntu) |
Triaged
|
High
|
Unassigned | ||
Bug Description
In OEM group. I am no longer able to run a meta package update script.
It appears that if ubuntu-keyring is installed, debootstrap requires a Release.gpg file that is signed by a key in ubuntu-keyring.
However, OEM releases are signed by another key, so we can no longer update meta packages.
$ apt-cache policy debootstrap
debootstrap:
Installed: 1.0.37
Candidate: 1.0.37
Version table:
*** 1.0.37 0
500 http://
100 /var/lib/
$ apt-cache policy germinate
germinate:
Installed: 1.27
Candidate: 1.27
Version table:
*** 1.27 0
500 http://
100 /var/lib/
Revision history for this message
| Colin Watson (cjwatson) wrote | #1 |
| affects: | debootstrap (Ubuntu) → germinate (Ubuntu) |
Revision history for this message
| Kyle Nitzsche (knitzsche) wrote | #2 |
| Changed in germinate (Ubuntu): | |
| status: | New → Triaged |
| importance: | Undecided → High |
Revision history for this message
| Kyle Nitzsche (knitzsche) wrote | #3 |
To post a comment you must log in.
Checking signatures is intentional, but can't you use debootstrap --no-check-gpg?
Perhaps the real bug here is that germinate-