On Sat, Mar 22, 2008 at 10:22:18PM +0100, Christoph Berg wrote: > Re: Paul Wise 2008-03-04 <1204622912.32309.9.ca...@chianamo> > > * bad other sig: big, option to force unpack > > * no sig: yay, unpack, warn about no sig > > I think the keyring selection should be done via the dscverify config. > > What we probably should support is a mode where unsigned packages are > unpacked, but where it still complains about bad signatures.
This is already supported in that if you use -u, “dpkg-source -x” will complain about the bad signature, but still unpack. The issue is that dscverify differs from dpkg-source and stops hard when there's a bad signature. It sounds like Paul's request is satisfied by using DGET_VERIFY=no as that will fall through to dpkg-source. dpkg-source only uses ~/.gnupg/trustedkeys.gpg though, so maybe this should turn into a wishlist dpkg-dev bug for supporting ~/.gnupg/pubring.gpg or specification of arbitrary keyring files? -- James GPG Key: 1024D/61326D40 2003-09-02 James Vega <james...@debian.org>
signature.asc
Description: Digital signature
