lpci

Import the GPG signing key for a PPA when using it in lpcraft jobs

Bug #1996729 reported by Guruprasad
10
This bug affects 2 people
Affects Status Importance Assigned to Milestone
lpci
Fix Released
High
Guruprasad

Bug Description

When a PPA is added to an `lpcraft` job, it requires setting the `trusted: yes` flag. This makes the signature verification failures a warning instead of an error.

lpcraft should add the PPA in the same way the `add-apt-repository` command would, if it is not possible to use that command directly. So the signing keys for the PPA should be imported automatically during the job setup that the signature verification is not disabled.

Related branches

~lgp171188/lpci:import-ppa-signing-keys
Colin Watson (community): Approve
Diff: 315 lines (+232/-1)
4 files modified
NEWS.rst (+3/-0)
lpcraft/commands/run.py (+66/-1)
lpcraft/commands/tests/test_run.py (+162/-0)
tox.ini (+1/-0)
Ioana Lasc (ilasc)
Changed in lpcraft:
status: New → Triaged
importance: Undecided → High
Guruprasad (lgp171188)
Changed in lpcraft:
status: Triaged → In Progress
assignee: nobody → Guruprasad (lgp171188)
Guruprasad (lgp171188)
Changed in lpcraft:
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.