When deploying Debian/squeeze from Debian/wheezy it fails with:
| Release signed by unknown key (key id
AED4B06F473041FA)
and as Ubuntu provides grml-debootstrap in universe but its
/etc/apt/trusted.gpg doesn't include Debian's repos keys it also
fails there. As soon as
/usr/share/keyrings/debian-archive-keyring.gpg is available we
don't have to take care of it, so just drop the additional code
and deprecate the --insecure cmdline option and SECURE config
file option and instead depend on the debian-archive-keyring
package.
--arch) # Target architecutre
shift; _opt_arch="$1"
;;
--arch) # Target architecutre
shift; _opt_arch="$1"
;;
+ # just for backwards compatibility
--insecure)
_opt_insecure=T
;;
--insecure)
_opt_insecure=T
;;
# Default: 'debootstrap'
# DEBOOTSTRAP='debootstrap'
# Default: 'debootstrap'
# DEBOOTSTRAP='debootstrap'
-# Enable Secure APT (Package sources must be signed).
-# Default: 'yes'
-# SECURE='no'
-
# Pass extra options to debootstrap.
# Default: no default.
# Usage example:
# Pass extra options to debootstrap.
# Default: no default.
# Usage example:
Package: grml-debootstrap
Architecture: all
Package: grml-debootstrap
Architecture: all
-Depends: ${shlibs:Depends}, ${misc:Depends}, debootstrap (>= 0.3.3.3) | cdebootstrap (>= 0.3.16), gawk
+Depends: ${shlibs:Depends}, ${misc:Depends}, debootstrap (>= 0.3.3.3) | cdebootstrap (>= 0.3.16), gawk, debian-archive-keyring
Recommends: kpartx, mksh, parted, qemu-utils, dialog
Description: wrapper around debootstrap for installing pure Debian
Provides a wrapper suite around debootstrap and cdebootstrap
Recommends: kpartx, mksh, parted, qemu-utils, dialog
Description: wrapper around debootstrap for installing pure Debian
Provides a wrapper suite around debootstrap and cdebootstrap
--arch <arch> Set target architecture, use for installing i386 on amd64.
--filesystem <fs> Filesystem that should be used when target is a partition
or Virtual Machine (see --vmfile).
--arch <arch> Set target architecture, use for installing i386 on amd64.
--filesystem <fs> Filesystem that should be used when target is a partition
or Virtual Machine (see --vmfile).
- --insecure Do not download and check Release file signatures.
--force Do not prompt for user acknowledgement.
Options for Virtual Machine deployment:
--force Do not prompt for user acknowledgement.
Options for Virtual Machine deployment:
[ "$_opt_bootappend" ] && BOOT_APPEND=$_opt_bootappend
[ "$_opt_grub" ] && GRUB=$_opt_grub
[ "$_opt_arch" ] && ARCH=$_opt_arch
[ "$_opt_bootappend" ] && BOOT_APPEND=$_opt_bootappend
[ "$_opt_grub" ] && GRUB=$_opt_grub
[ "$_opt_arch" ] && ARCH=$_opt_arch
-[ "$_opt_insecure" ] && SECURE='false'
+[ "$_opt_insecure" ] && echo "Warning: --insecure is deprecated, continuing anyway."
[ "$_opt_force" ] && FORCE=$_opt_force
[ "$_opt_verbose" ] && VERBOSE="-v"
[ "$_opt_force" ] && FORCE=$_opt_force
[ "$_opt_verbose" ] && VERBOSE="-v"
-# keyring setupt {{{
-KEYRING=""
-if [ "$SECURE" = 'yes' ] ; then
- if [ -e '/etc/apt/trusted.gpg' ] ; then
- KEYRING="--keyring /etc/apt/trusted.gpg"
- else
- eerror "Could not find /etc/apt/trusted.gpg."
- fi
-else
- ewarn "Not checking Release signatures!"
-fi
-# }}}
-
# make sure we have the right syntax when using an iso image {{{
if [ -n "$ISO" ] ; then
case $ISO in
# make sure we have the right syntax when using an iso image {{{
if [ -n "$ISO" ] ; then
case $ISO in
mounted the according Debian-ISO to the given _/mntpoint_. See section
'Usage examples' for a demonstration.
mounted the according Debian-ISO to the given _/mntpoint_. See section
'Usage examples' for a demonstration.
-*--insecure*::
-
- Do not download and check signatures for retrieved Release files.
-
*--keep_src_list*::
Do not overwrite user provided /etc/apt/sources.list.
*--keep_src_list*::
Do not overwrite user provided /etc/apt/sources.list.