Viewing all changes in revision 19.
- Committer: Scott Moser
- Date: 2016-12-22 19:09:24 UTC
- Revision ID: smoser@ubuntu.com-20161222190924-oj00x1cojn8lc4po
Add and use local keyring for verification of apt data.
A transition is being made from signing with the dsa1024 'Archive'
signing key below to the newer rsa4096 Archive key.
In zesty, the package installed keyring no longer contains the
older keys.
Without this, if running on zesty, then mfdiff will fail to download
changelogs (using apt.cache), as it will not trust the data.
The solution here is to check in the gpg keyring that was provided
by the Ubuntu 16.04 (xenial) package ubuntu-keyring, and to use that
for verification.
$ gpg keyring.gpg
pub dsa1024 2004-09-12 [SC]
630239CC130E1A7FD81A27B140976EAF437D05B5
uid Ubuntu Archive Automatic Signing Key <ftpmaster@ubuntu.com>
sub elg2048 2004-09-12 [E]
pub dsa1024 2004-12-30 [SC]
C5986B4F1257FFA86632CBA746181433FBB75451
uid Ubuntu CD Image Automatic Signing Key <cdimage@ubuntu.com>
pub rsa4096 2012-05-11 [SC]
790BC7277767219C42C86F933B4FE6ACC0B21F32
uid Ubuntu Archive Automatic Signing Key (2012) <ftpmaster@ubuntu.com>
pub rsa4096 2012-05-11 [SC]
843938DF228D22F7B3742BC0D94AA3F0EFE21092
uid Ubuntu CD Image Automatic Signing Key (2012) <cdimage@ubuntu.com>
A transition is being made from signing with the dsa1024 'Archive'
signing key below to the newer rsa4096 Archive key.
In zesty, the package installed keyring no longer contains the
older keys.
Without this, if running on zesty, then mfdiff will fail to download
changelogs (using apt.cache), as it will not trust the data.
The solution here is to check in the gpg keyring that was provided
by the Ubuntu 16.04 (xenial) package ubuntu-keyring, and to use that
for verification.
$ gpg keyring.gpg
pub dsa1024 2004-09-12 [SC]
630239CC130E1A7FD81A27B140976EAF437D05B5
uid Ubuntu Archive Automatic Signing Key <ftpmaster@ubuntu.com>
sub elg2048 2004-09-12 [E]
pub dsa1024 2004-12-30 [SC]
C5986B4F1257FFA86632CBA746181433FBB75451
uid Ubuntu CD Image Automatic Signing Key <cdimage@ubuntu.com>
pub rsa4096 2012-05-11 [SC]
790BC7277767219C42C86F933B4FE6ACC0B21F32
uid Ubuntu Archive Automatic Signing Key (2012) <ftpmaster@ubuntu.com>
pub rsa4096 2012-05-11 [SC]
843938DF228D22F7B3742BC0D94AA3F0EFE21092
uid Ubuntu CD Image Automatic Signing Key (2012) <cdimage@ubuntu.com>
- files added:
- keyring.gpg
- files modified:
- mfdiff
expand all
collapse all
added
removed
