apt/cmdline/apt-key.in, branch 2.9.0 Debians commandline package manager https://git.kalnischkies.de/apt/atom?h=2.9.0 2024-02-28T17:22:01Z Implement gpgv --assert-pubkey-algo=>=rsa2048,ed25519,ed448 2024-02-28T17:22:01Z Julian Andres Klode julian.klode@canonical.com 2024-02-28T14:14:43Z urn:sha1:50e3fee26ae843a812b1c9ec8531946931773fd3 The assertion can be overriden using apt::key::assert-pubkey-algo, the default is the most opinionated one. This will inform the user during apt-cdrom add as we do not pass --quiet to user, so adjust test case. Add a simple test case for it to test-method-gpgv. LP: #2055193 apt-key: remove carriage returns from armored keyrings before dearmoring 2023-11-29T20:07:59Z Kenyon Ralph kenyon@kenyonralph.com 2023-11-29T20:04:06Z urn:sha1:18e4c6108e1957a886c1df5054cff73d35a62006 Without this, the awk script returns nothing if the armored keyring uses Windows/DOS-style CRLF line endings (since awk is designed for processing Unix text files). This would result in a NO_PUBKEY error during the signature verification part of an apt-get update. Warn if the legacy trusted.gpg keyring is used for verification 2022-02-22T17:25:06Z Julian Andres Klode jak@debian.org 2022-01-07T11:43:32Z urn:sha1:56adf743b02b80a9acc9a2e480bfd15acb94f755 With apt-key going away, people need to manage key files, rather than keys, so they need to know if any keys are in the legacy keyring. Use short options for cmp 2021-11-26T14:33:06Z Walter Lozano walter.lozano@collabora.com 2021-11-26T14:33:06Z urn:sha1:e7511e1955c250e3e59b2a32b0c29374816b47dd In order to be consistent with other uses of cmp and to improve compatiblity with other implementations, like busybox one, change long options to short ones. Signed-off-by: Walter Lozano <walter.lozano@collabora.com> Use `command -v` instead of `which` 2021-11-03T22:02:41Z Ville Skyttä ville.skytta@iki.fi 2021-11-03T22:02:41Z urn:sha1:48d4b06013ae3d80b95cf72efaf9a5e7468de965 `which` has been deprecated in debianutils 5.0+. The recommended replacement, `command -v`, is mandated by Debian policy these days, in addition to being required by POSIX and its predecessor specs at least since 1994. Not found commands cause no output from `command -v` per POSIX, so remove the redundant 2>&1's while at it. apt-key: Allow depending on gpg instead of gnupg 2020-05-06T10:52:57Z Julian Andres Klode julian.klode@canonical.com 2020-05-06T10:52:57Z urn:sha1:f9f0ae2bbb2d0bfeccddecbf8b9ec07ccd54cd9a Maintainer scripts that need to use apt-key del might as well depend on gpg, they don't need the full gnupg suite. Fully deprecate apt-key, schedule removal for Q2/2022 2020-05-06T10:33:39Z Julian Andres Klode julian.klode@canonical.com 2020-05-06T10:33:39Z urn:sha1:ee284d5917d09649b68ff1632d44e892f290c52f People are still using apt-key add and friends, despite that not being guaranteed to work. Let's tell them to stop doing so. We might still want a list command at a future point, but this needs deciding, and a blanket ban atm seems like a sensible step until we figured that out. Support multiple keyrings in sources.list Signed-By 2018-09-11T11:16:11Z David Kalnischkies david@kalnischkies.de 2018-08-17T14:33:41Z urn:sha1:8375d5b58038fc026098dcccc3de87cd9d740334 A user can specify multiple fingerprints for a while now, so its seems counter-intuitive to support only one keyring, especially if this isn't really checked or enforced and while unlikely mixtures of both should work properly, too, instead of a kinda random behaviour. apt-key: Pass all instead of gpg-agent to gpgconf --kill 2018-05-29T15:57:35Z Julian Andres Klode julian.klode@canonical.com 2018-05-29T15:57:35Z urn:sha1:819426013c6ca6310bb469440702b6295dba4498 We want to kill everything using our temporary directory. LP: #1773992 Fix various typos reported by spellcheckers 2018-05-04T22:34:27Z David Kalnischkies david@kalnischkies.de 2018-05-04T17:56:41Z urn:sha1:b12bdeaf8acd050c5526ecc05526db70df5fd485 Reported-By: codespell & spellintian Gbp-Dch: Ignore