Your message dated Wed, 15 Apr 2009 21:17:10 +0000 with message-id <E1LuCTm-0004Rm-Nx@ries.debian.org> and subject line Bug#433091: fixed in apt 0.7.21 has caused the Debian Bug report #433091, regarding ignores expiry of archive keys to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact owner@bugs.debian.org immediately.) -- 433091: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=433091 Debian Bug Tracking System Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: ignores expiry of archive keys
- From: martin f krafft <madduck@debian.org>
- Date: Sat, 14 Jul 2007 13:29:41 +0200
- Message-id: <20070714112941.GA13373@piper.oerlikon.madduck.net>
Package: apt Version: 0.7.3 Severity: important If I update from an archive whose key recently expired and I have not yet updated the local copy via apt-key -- the local keyring says it's expired -- APT does not complain but just proceeds. I think it should *at least* warn. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.21-2-amd64 (SMP w/1 CPU core) Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages apt depends on: ii debian-archive-keyring 2007.02.19-0.1 GnuPG archive keys of the Debian a ii libc6 2.6-2 GNU C Library: Shared libraries ii libgcc1 1:4.2-20070707-1 GCC support library ii libstdc++6 4.2-20070707-1 The GNU Standard C++ Library v3 apt recommends no packages. -- no debconf information -- .''`. martin f. krafft <madduck@debian.org> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - http://debiansystem.info `- Debian - when you have better things to do than fixing systemsAttachment: signature.asc
Description: Digital signature (GPG/PGP)
--- End Message ---
--- Begin Message ---
- To: 433091-close@bugs.debian.org
- Subject: Bug#433091: fixed in apt 0.7.21
- From: Michael Vogt <mvo@debian.org>
- Date: Wed, 15 Apr 2009 21:17:10 +0000
- Message-id: <E1LuCTm-0004Rm-Nx@ries.debian.org>
Source: apt Source-Version: 0.7.21 We believe that the bug you reported is fixed in the latest version of apt, which is due to be installed in the Debian FTP archive: apt-doc_0.7.21_all.deb to pool/main/a/apt/apt-doc_0.7.21_all.deb apt-transport-https_0.7.21_i386.deb to pool/main/a/apt/apt-transport-https_0.7.21_i386.deb apt-utils_0.7.21_i386.deb to pool/main/a/apt/apt-utils_0.7.21_i386.deb apt_0.7.21.dsc to pool/main/a/apt/apt_0.7.21.dsc apt_0.7.21.tar.gz to pool/main/a/apt/apt_0.7.21.tar.gz apt_0.7.21_i386.deb to pool/main/a/apt/apt_0.7.21_i386.deb libapt-pkg-dev_0.7.21_i386.deb to pool/main/a/apt/libapt-pkg-dev_0.7.21_i386.deb libapt-pkg-doc_0.7.21_all.deb to pool/main/a/apt/libapt-pkg-doc_0.7.21_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 433091@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Michael Vogt <mvo@debian.org> (supplier of updated apt package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmaster@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 14 Apr 2009 14:12:51 +0200 Source: apt Binary: apt apt-doc libapt-pkg-dev libapt-pkg-doc apt-utils apt-transport-https Architecture: source all i386 Version: 0.7.21 Distribution: unstable Urgency: low Maintainer: APT Development Team <deity@lists.debian.org> Changed-By: Michael Vogt <mvo@debian.org> Description: apt - Advanced front-end for dpkg apt-doc - Documentation for APT apt-transport-https - APT https transport apt-utils - APT utility programs libapt-pkg-dev - Development files for APT's libapt-pkg and libapt-inst libapt-pkg-doc - Documentation for APT development Closes: 433091 513211 513311 513843 518070 520403 520403 520430 522222 Changes: apt (0.7.21) unstable; urgency=low . [ Christian Perrier ] * Translations: - bg.po. Closes: #513211 - zh_TW.po. Closes: #513311 - nb.po. Closes: #513843 - fr.po. Closes: #520430 - sv.po. Closes: #518070 - sk.po. Closes: #520403 - it.po. Closes: #522222 - sk.po. Closes: #520403 . [ Jamie Strandboge ] * apt.cron.daily: catch invalid dates due to DST time changes in the stamp files . [ Michael Vogt ] * methods/gpgv.cc: - properly check for expired and revoked keys (closes: #433091) * apt-pkg/contrib/strutl.cc: - fix TimeToStr i18n (LP: #289807) * [ABI break] merge support for http redirects, thanks to Jeff Licquia and Anthony Towns * [ABI break] use int for the package IDs (thanks to Steve Cotton) * apt-pkg/pkgcache.cc: - do not run "dpkg --configure pkg" if pkg is in trigger-awaited state (LP: #322955) * methods/https.cc: - add Acquire::https::AllowRedirect support * Clarify the --help for 'purge' (LP: #243948) * cmdline/apt-get.cc - fix "apt-get source pkg" if there is a binary package and a source package of the same name but from different packages (LP: #330103) . [ Colin Watson ] * cmdline/acqprogress.cc: - Call pkgAcquireStatus::Pulse even if quiet, so that we still get dlstatus messages on the status-fd (LP: #290234). Checksums-Sha1: 30c17caedc9d91d0827f52cb2542a689006d944c 1212 apt_0.7.21.dsc 955864538e5f812406b9054825649667cb8f5ce8 2054363 apt_0.7.21.tar.gz d24e98a402a48fc48e05d64be4a7364d35a58e88 100546 apt-doc_0.7.21_all.deb 9b0109e3749cf53b9406746a91f6c1191e3df33a 124512 libapt-pkg-doc_0.7.21_all.deb 4fde24a6df97b5fdad6b92cce8218860814b16eb 1608880 apt_0.7.21_i386.deb fad84a990a7dcadd50f981e18e453d45306225bf 109496 libapt-pkg-dev_0.7.21_i386.deb 9c41acec6ca1a571049781476b82ea18d40f8a38 187820 apt-utils_0.7.21_i386.deb 8d78d69200dd41bb0191f9944781af8ad113e3ec 58932 apt-transport-https_0.7.21_i386.deb Checksums-Sha256: f8aff84dc9118b1e3d725b0b337b94fbb587c57bae81dcda5299f0870ff3a1d5 1212 apt_0.7.21.dsc 99b2fc7ce3bb6b64f289f44e8cc7ee1345e3ef74a37d3402924008b4a692eadb 2054363 apt_0.7.21.tar.gz 425316f048f70f023dd2e3eeca1b6d56bcc10617d55b66c4665d5fee795fc6f6 100546 apt-doc_0.7.21_all.deb c76a01a8482577fe38ec023f605ec2c7d6b32c50a29743be6162ef5f26928885 124512 libapt-pkg-doc_0.7.21_all.deb f1499b99496c5bc5290af209601dbe894675fbfed124c8ec4cd84a0fdc8936e5 1608880 apt_0.7.21_i386.deb 7b9c828f6ab77af46252f3f1fa95c2a7a80b40b925581b3159b9f3ee0dfc1f4a 109496 libapt-pkg-dev_0.7.21_i386.deb ffab9c01ee2b8e420ff3466ab884a3442d10aeccaff010c2509296d1434a7ecd 187820 apt-utils_0.7.21_i386.deb 771bc0754803b6587fcb51e55ea89e15fd52ccbb68147e0bddc358baf0b65e56 58932 apt-transport-https_0.7.21_i386.deb Files: af08202f8a7c47e8ed9cd519fa2dae09 1212 admin important apt_0.7.21.dsc d814cbf5fd83105fa3d600fa4de3bab4 2054363 admin important apt_0.7.21.tar.gz 72e58e18425e7cad79a7a35d0b760ae4 100546 doc optional apt-doc_0.7.21_all.deb b966cbde4c85439a12d5fc784cbbb4c3 124512 doc optional libapt-pkg-doc_0.7.21_all.deb 31a6ce78a372a93d2f691a6dbe090ff1 1608880 admin important apt_0.7.21_i386.deb 15e5ee61a8ec0da5e1b6da0787d52346 109496 libdevel optional libapt-pkg-dev_0.7.21_i386.deb 2c9ae6be375be28287474efa66cd8a0b 187820 admin important apt-utils_0.7.21_i386.deb 0954a0535bb70851e465cbbfb4360630 58932 admin optional apt-transport-https_0.7.21_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAknllqUACgkQliSD4VZixzR+FwCgnvOyv/JAKExVnJ1ZW0Z5+eza QfkAn0UYaYt4o7voHq03XsONhGRvFlxc =dh0r -----END PGP SIGNATURE-----
--- End Message ---