MEPIS Community Forum

A Linux operating system based on Debian Stable
View unanswered posts | View unsolved topics | View active topics |



Reply to topic  [ 51 posts ]  Go to page Previous  1, 2, 3, 4, 5, 6  Next
checkaptgpg 
Author Message
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 19, 2006 6:13 am
Posts: 8754
Location: Geneva NY
Has thanked: 2359 times
Have thanks: 1541 times
Post # 269015
Post Re: checkaptgpg
Wondered if the gap plays a role, but no difference when I removed it and added a comment line above it.

Seems strange, since Synaptic picks up the repos and the lack of a key.

Maybe we should have a warning line in the output such as "Some repositories may not respond to checkaptgpg and will require manual intervention to acquire a key."

_________________
A Wiki only works when many eyes are on it.

32bit, 3.12-0.bpo.1-686-pae, MX-14, AMD Phenom 9650 Quad-Core, Dell SP2309W with integrated webcam, Nvidia GeForce 6150SE, 4 GB DDR2


Tue Apr 12, 2011 2:14 pm
Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 19, 2006 6:13 am
Posts: 8754
Location: Geneva NY
Has thanked: 2359 times
Have thanks: 1541 times
Post # 270145
Post Re: checkaptgpg
REQUEST: can the checkaptgpg script be modified to use alternative key sources when the first source does not find the key for a repo?

Explanation: I finally followed up on my two repos that did not come up in the checkaptgpg report, using the alternative key sources listed in the Wiki entry. I got the virtualbox key from subkeys.pgp.net, and the QGIS key from wwwkeys.pgp.net.

So I guess there are two questions: why doesn't the current script report that it found no keys for those two repos, and how can the script be modified to try other sources when the primary one is unsuccessful?

_________________
A Wiki only works when many eyes are on it.

32bit, 3.12-0.bpo.1-686-pae, MX-14, AMD Phenom 9650 Quad-Core, Dell SP2309W with integrated webcam, Nvidia GeForce 6150SE, 4 GB DDR2


Wed Apr 20, 2011 9:12 am
Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 12, 2006 1:42 am
Posts: 4088
Has thanked: 338 times
Have thanks: 473 times
Post # 270150
Post Re: checkaptgpg
It shouldn't be too hard, you see this line:
Code:
apt-key adv --keyserver $KEYSERVER --recv-key $GPGKEY


I think it can be modified to something like
Code:
apt-key adv --keyserver $KEYSERVER --recv-key $GPGKEY || apt-key adv --keyserver $SECONDARYKEYSERVER --recv-key $GPGKEY


So, if the first one fails run the apt-key with a $SECONDARYKEYSERVER (which needs to be defined somewhere before this line)

However ideally would be to have a list of key servers and take the next on in the list and if it fails go to the next one and so on, but using a secondary server should probably be enough.

_________________
Nobody is born with knowledge, knowledge comes from manuals and Google (and our beloved Wiki)


Wed Apr 20, 2011 9:28 am
Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 12, 2006 2:26 pm
Posts: 6371
Has thanked: 345 times
Have thanks: 1963 times
Post # 270157
Post Re: checkaptgpg
Jerry3904 wrote:
REQUEST: can the checkaptgpg script be modified to use alternative key sources when the first source does not find the key for a repo?

Explanation: I finally followed up on my two repos that did not come up in the checkaptgpg report, using the alternative key sources listed in the Wiki entry. I got the virtualbox key from subkeys.pgp.net, and the QGIS key from wwwkeys.pgp.net.

So I guess there are two questions: why doesn't the current script report that it found no keys for those two repos, and how can the script be modified to try other sources when the primary one is unsuccessful?
I have some changes to checkaptgpg that I've been sitting on. {kind of got sidetracked by the plymouth theme stuff}.

One change I made was to try to download and install the key up to five times, each time from a different keyserver.

I also made some other changes that eliminate most of the "No GPG Release signature found." messages that the script puts out.

With the changes I'm able to retrieve a higher percentage of keys than before. For instance it now will get the keys for that QGIS repo and for Opera. It's also able to retrieve keys for Virtualbox, dl.google.com (for Chrome, Googleearth, Google Talk Plugin), Warren's repo, etc.

I still had some keys I needed to install manually, linux.wuertz.org (an aptosid repo) and a repo I use for my samsung printer driver.

I'll try to post an updated checkaptgpg package later today.


Wed Apr 20, 2011 9:57 am Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 12, 2006 1:42 am
Posts: 4088
Has thanked: 338 times
Have thanks: 473 times
Post # 270169
Post Re: checkaptgpg
kmathern, can you please push the changes on Github repo? And just post the link it that?

_________________
Nobody is born with knowledge, knowledge comes from manuals and Google (and our beloved Wiki)


Wed Apr 20, 2011 11:24 am
Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 12, 2006 2:26 pm
Posts: 6371
Has thanked: 345 times
Have thanks: 1963 times
Post # 270171
Post Re: checkaptgpg
Adrian wrote:
kmathern, can you please push the changes on Github repo? And just post the link it that?

I will if I can figure out how to use Github.

If I do use Github won't just the source changes end up there, not the resulting package?


Wed Apr 20, 2011 11:33 am
Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 19, 2006 6:13 am
Posts: 8754
Location: Geneva NY
Has thanked: 2359 times
Have thanks: 1541 times
Post # 270176
Post Re: checkaptgpg
You would start by doing the steps here: http://www.mepis.org/docs/en/index.php? ... om_Account

Then you would run:
Code:
git clone git@github.com:MEPIS-Community/checkaptgpg.git
to download the current version (April 12)

Then follow these steps in editing: http://www.mepis.org/docs/en/index.php? ... ub#Editing

Both revision history and current version download are available on the project page: https://github.com/MEPIS-Community/checkaptgpg

_________________
A Wiki only works when many eyes are on it.

32bit, 3.12-0.bpo.1-686-pae, MX-14, AMD Phenom 9650 Quad-Core, Dell SP2309W with integrated webcam, Nvidia GeForce 6150SE, 4 GB DDR2


Wed Apr 20, 2011 12:00 pm

Jerry3904 thanked by: kmathern
Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 12, 2006 1:42 am
Posts: 4088
Has thanked: 338 times
Have thanks: 473 times
Post # 270185
Post Re: checkaptgpg
It's only the source there, not the resulting binary. Let me or Jerry know if you have question (you probably will) and we'll be happy to help. In my opinion it's better to get all these tools on Github, it's easier to follow changes.

_________________
Nobody is born with knowledge, knowledge comes from manuals and Google (and our beloved Wiki)


Wed Apr 20, 2011 12:39 pm
Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 12, 2006 1:42 am
Posts: 4088
Has thanked: 338 times
Have thanks: 473 times
Post # 270407
Post Re: checkaptgpg
Kent pushed the changes to checkaptgpg, we just need to make sure that whoever packages for community repo (Stevo?) follows the Github repo: https://github.com/MEPIS-Community/checkaptgpg

You can get the source without having a ssh key set up on Github with this command
Code:
git clone git://github.com/MEPIS-Community/checkaptgpg.git
(this is only read only, you'll not be able to push, for that you need to set up ssh key on Github). That's only first time, then you can use
Code:
git pull
to get changes.

_________________
Nobody is born with knowledge, knowledge comes from manuals and Google (and our beloved Wiki)


Fri Apr 22, 2011 9:47 am

Adrian thanked by: lucky9
Profile
MEPIS Enthusiast
MEPIS Enthusiast
User avatar

Joined: Wed Jul 12, 2006 2:26 pm
Posts: 6371
Has thanked: 345 times
Have thanks: 1963 times
Post # 270408
Post Re: checkaptgpg
Adrian wrote:
Kent pushed the changes to checkaptgpg, we just need to make sure that whoever packages for community repo (Stevo?) follows the Github repo: https://github.com/MEPIS-Community/checkaptgpg

You can get the source without having a ssh key set up on Github with this command
Code:
git clone git://github.com/MEPIS-Community/checkaptgpg.git
(this is only read only, you'll not be able to push, for that you need to set up ssh key on Github). That's only first time, then you can use
Code:
git pull
to get changes.

What I 'pushed' were actually changes for a package I posted last week. Those changes were labeled 'mcr110+2' to match the checkaptgpg_0.1mcr110+2_all.deb package from post # viewtopic.php?p=268990#p268990).

I did it mainly as a exercise in learning how to use Github and to get those changes on record & included in checkatpgpg.

I haven't yet 'pushed' the changes I mentioned a day or two ago.


Fri Apr 22, 2011 10:02 am
Profile
Display posts from previous:  Sort by  
Reply to topic   [ 51 posts ]  Go to page Previous  1, 2, 3, 4, 5, 6  Next

Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  

Protected by Anti-Spam ACP Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Designed by STSoftware for PTF.