Lubuntu/ubuntu-dev-tools
3
0
Fork 0
mirror of https://git.launchpad.net/ubuntu-dev-tools synced 2025-03-12 23:51:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

Trust the installed debian-keyring when checking validity of dsc signatures.

Browse Source
This commit is contained in:
Mattia Rizzolo 2019-10-28 14:35:01 +01:00
parent ba2afc6429
commit 982ebe6a46
No known key found for this signature in database
GPG Key ID: 0816B9E18C762BAD
2 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
debian/changelog vendored
View File

@ -1,3 +1,10 @@
ubuntu-dev-tools (0.175) UNRELEASED; urgency=medium
* Trust the installed debian-keyring when checking validity of dsc
signatures.
-- Mattia Rizzolo <mattia@debian.org> Mon, 28 Oct 2019 14:32:20 +0100
ubuntu-dev-tools (0.174) unstable; urgency=medium
[ Stefano Rivera ]

5
ubuntutools/archive.py
View File

@ -265,7 +265,10 @@ class SourcePackage(object):
message = None
gpg_info = None
try:
gpg_info = self.dsc.get_gpg_info()
gpg_info = self.dsc.get_gpg_info((
'/usr/share/keyrings/debian-keyring.gpg',
'/usr/share/keyrings/debian-maintainers.gpg',
))
valid = gpg_info.valid()
except IOError:
message = ('Signature on %s could not be verified, install '