Package: vmdebootstrap Severity: wishlist Tags: patch Dear maintainer,
debootstrap allows specifing --keyring (or --no-check-gpg) in order to override the default distribution keyring. From the manpage: --keyring=KEYRING Override the default keyring for the distribution being bootstrapped, and use KEYRING to check sig‐ natures of retrieved Release files. --no-check-gpg Disables checking gpg signatures of retrieved Release files. Please add a way to pass these through. Best regards Niklas Fiekas
From 80d489657b1493967fab5a2e315b64e4ca197e31 Mon Sep 17 00:00:00 2001 From: Niklas Fiekas <niklas.fie...@tu-clausthal.de> Date: Sun, 23 Nov 2014 16:05:55 +0100 Subject: [PATCH] Add --keyring and --no-check-gpg options Debootstrap allows overriding the default keyring for the distrubution or even disabling checking the signatures on the Release files via the --keyring and --no-check-gpg options. Allow passing these along. --- vmdebootstrap | 13 +++++++++++++ vmdebootstrap.8.in | 18 ++++++++++++------ 2 files changed, 25 insertions(+), 6 deletions(-) diff --git a/vmdebootstrap b/vmdebootstrap index 24e38d0..297a959 100755 --- a/vmdebootstrap +++ b/vmdebootstrap @@ -68,6 +68,15 @@ class VmDebootstrap(cliapp.Application): 'release to use (%default)', metavar='NAME', default='stable') + self.settings.string(['keyring'], + 'override the default keyring for the ' + 'distribution being bootstrapped, and use KEYRING ' + 'to check the signatures of the retrieved Release ' + 'files') + self.settings.boolean(['check-gpg'], + 'check gpg signatures of retrieved Release files ' + '(default)', + default=True) self.settings.string_list(['package'], 'install PACKAGE onto system') self.settings.string_list(['custom-package'], 'install package in DEB file onto system ' @@ -321,6 +330,10 @@ class VmDebootstrap(cliapp.Application): if self.settings['variant']: args.append('--variant') args.append(self.settings['variant']) + if self.settings['keyring']: + args.append('--keyring=%s' % self.settings['keyring']) + if not self.settings['check-gpg']: + args.append('--no-check-gpg') args += [self.settings['distribution'], rootdir, self.settings['mirror']] logging.debug(" ".join(args)) diff --git a/vmdebootstrap.8.in b/vmdebootstrap.8.in index 60e08cd..d25e3a8 100644 --- a/vmdebootstrap.8.in +++ b/vmdebootstrap.8.in @@ -23,12 +23,13 @@ vmdebootstrap \- install basic Debian system into virtual disk image .B vmdebootstrap [--output=FILE] [--verbose | --no-verbose] --image=FILE --size=SIZE [--tarball=FILE] [--mirror=URL] [--arch=ARCH] [--distribution=NAME] -[--package=PACKAGE] [--custom-package=DEB] [--no-kernel] -[--enable-dhcp | --no-enable-dhcp] [--root-password=PASSWORD] -[--customize=SCRIPT] [--hostname=HOSTNAME] [--user=USER/PASSWORD] -[--serial-console | --no-serial-console] [--sudo | --no-sudo] [--owner=OWNER] -[--bootsize=BOOTSIZE] [--boottype=FSTYPE] [--foreign=PATH] [--variant=VARIANT] -[--no-extlinux] [--squash] [--configure-apt] [--grub] +[--keyring=KEYRING] [--check-gpg | --no-check-gpg] [--package=PACKAGE] +[--custom-package=DEB] [--no-kernel] [--enable-dhcp | --no-enable-dhcp] +[--root-password=PASSWORD] [--customize=SCRIPT] [--hostname=HOSTNAME] +[--user=USER/PASSWORD] [--serial-console | --no-serial-console] +[--sudo | --no-sudo] [--owner=OWNER] [--bootsize=BOOTSIZE] [--boottype=FSTYPE] +[--foreign=PATH] [--variant=VARIANT] [--no-extlinux] [--squash] +[--configure-apt] [--grub] .SH DESCRIPTION .B vmdebootstrap installs a basic Debian system into a virtual disk image, @@ -98,6 +99,11 @@ use MIRROR as package source (http://cdn.debian.net/debian/) architecture to use (amd64) .IP \-\-distribution=NAME release to use (stable) +.IP \-\-keyring=KEYRING +override the default keyring for the distribution being bootstrapped, and use +KEYRING to check the signatures of the retrieved Release files +.IP \-\-no-check-gpg +do not check the gpg signatures of retrieved Release files .IP \-\-package=PACKAGE install PACKAGE onto system .IP \-\-custom-package=DEB -- 2.1.3
signature.asc
Description: OpenPGP digital signature