Re: Q: Where is keyring packaging guideline?
- Date: Fri, 24 Aug 2018 15:18:14 +0800
- From: Shengjing Zhu <i@xxxxxxx>
- Subject: Re: Q: Where is keyring packaging guideline?
On Fri, Aug 24, 2018 at 2:58 PM Kentaro Hayashi <kenhys@xxxxxxxxx> wrote:
> As far as I know, in most cases, keyrings are added automatically. (not just as data)
> I thought that it is common sense in Debian, but it is better to ask users explicitly
> during install process (dconf?) if package will put keyring under /etc/apt/trusted.gpg.d/.
FWIW, you don't need to add third party keyrings to
/etc/apt/trusted.gpg.d/(which will be trusted by apt automatically).
See my example for vscode repo I used,
zsj@debian ~ $ cat /etc/apt/sources.list.d/vscode.list
deb [arch=amd64 signed-by=/etc/apt/3rd.gpg.d/microsoft.gpg]
https://packages.microsoft.com/repos/vscode stable main
zsj@debian ~ $ gpg --no-default-keyring
pub rsa2048 2015-10-28 [SC]
uid [ unknown] Microsoft (Release signing) <gpgsecurity@xxxxxxxxxxxxx>