]> git.saurik.com Git - apt.git/commit
projects / apt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9521717) | patch
keep Release.gpg on untrusted to trusted IMS-Hit
authorDavid Kalnischkies <david@kalnischkies.de>
Thu, 6 Oct 2016 16:30:51 +0000 (18:30 +0200)
committerDavid Kalnischkies <david@kalnischkies.de>
Wed, 2 Nov 2016 08:36:49 +0000 (09:36 +0100)
commit84eec207be35b8c117c430296d4c212b079c00c1
tree016bff2357ae9b7d10eb836e93fb564e79dbb087tree | snapshot
parent952171787a0b865c17d5c9476e272106383ae93acommit | diff
keep Release.gpg on untrusted to trusted IMS-Hit

A user relying on the deprecated behaviour of apt-get to accept a source
with an unknown pubkey to install a package containing the key expects
that the following 'apt-get update' causes the source to be considered
as trusted, but in case the source hadn't changed in the meantime this
wasn't happening: The source kept being untrusted until the Release file
was changed.

This only effects sources not using InRelease and only apt-get, the apt
binary downright refuses this course of actions, but it is a common way
of adding external sources.

Closes: 838779
apt-pkg/acquire-item.cc diff | blob | blame | history
test/integration/test-bug-838779-untrusted-to-trusted-Release-hit [new file with mode: 0755] blob
APT (for Cydia)