Source: cdebootstrap Version: 0.7.7 Severity: serious Tags: sid bullseye User: debian...@lists.debian.org Usertags: needs-update Control: affects -1 src:debian-archive-keyring
[X-Debbugs-CC: debian...@lists.debian.org,
debian-archive-keyr...@packages.debian.org]
Dear maintainer(s),
With a recent upload of debian-archive-keyring the autopkgtest of
cdebootstrap fails in testing when that autopkgtest is run with the
binary packages of debian-archive-keyring from unstable. It passes when
run with only packages from testing. In tabular form:
pass fail
debian-archive-keyring from testing 2021.1
cdebootstrap from testing 0.7.7
all others from testing from testing
I copied some of the output at the bottom of this report. The signing
key for jessie has been removed.
Currently this regression is blocking the migration of
debian-archive-keyring to testing [1]. Of course, debian-archive-keyring
shouldn't just break your autopkgtest (or even worse, your package), but
it seems to me that the change in debian-archive-keyring was intended
and your package needs to update to the new situation.
If this is a real problem in your package (and not only in your
autopkgtest), the right binary package(s) from debian-archive-keyring
should really add a versioned Breaks on the unfixed version of (one of
your) package(s). Note: the Breaks is nice even if the issue is only in
the autopkgtest as it helps the migration software to figure out the
right versions to combine in the tests.
More information about this bug and the reason for filing it can be found on
https://wiki.debian.org/ContinuousIntegration/RegressionEmailInformation
Paul
[1] https://qa.debian.org/excuses.php?package=debian-archive-keyring
https://ci.debian.net/data/autopkgtest/testing/amd64/c/cdebootstrap/10673330/log.gz
autopkgtest [03:12:13]: test jessie-standard: [-----------------------
D: Read suites config from /usr/share/cdebootstrap
D: Searching initial config, using origin Debian and codename jessie
D: Found initial config, specifies keyring debian-archive-keyring.gpg,
mirror http://deb.debian.org/debian
D: Using mirror http://deb.debian.org/debian
D: Using keyring /usr/share/keyrings/debian-archive-keyring.gpg
P: Retrieving Release
D: Downloading http://deb.debian.org/debian/dists/jessie/Release
P: Retrieving Release.gpg
D: Downloading http://deb.debian.org/debian/dists/jessie/Release.gpg
P: Validating Release
D: Execute "gpgv …"
D: GNUPG Status: [GNUPG:] NEWSIG
gpgv: Signature made Sat Jul 6 09:36:55 2019 UTC
gpgv: using RSA key 126C0D24BD8A2942CC7DF8AC7638D0442B90D010
D: GNUPG Status: [GNUPG:] ERRSIG 7638D0442B90D010 1 8 00 1562405815 9
126C0D24BD8A2942CC7DF8AC7638D0442B90D010
D: GNUPG Status: [GNUPG:] NO_PUBKEY 7638D0442B90D010
gpgv: Can't check signature: No public key
D: GNUPG Status: [GNUPG:] NEWSIG
gpgv: Signature made Sat Jul 6 09:43:49 2019 UTC
gpgv: using RSA key CBF8D6FD518E17E1
D: GNUPG Status: [GNUPG:] ERRSIG CBF8D6FD518E17E1 1 2 00 1562406229 9 -
D: GNUPG Status: [GNUPG:] NO_PUBKEY CBF8D6FD518E17E1
gpgv: Can't check signature: No public key
D: Status: 512
E: Couldn't validate Release!
autopkgtest [03:12:13]: test jessie-standard: -----------------------]
OpenPGP_signature
Description: OpenPGP digital signature
