Hi, Quoting Paul Tagliamonte (2015-08-31 17:06:35) > On Mon, Aug 31, 2015 at 10:23:28AM +0200, Raphael Hertzog wrote: > > I note that you never remove the key at the end of the build. > > And sbuild does not always use throw-away chroots... > > Yeah, I'm mirroring the behavior of the --extra-repository flag -- I > don't see any cleanup code for that, but I may have missed it. Thoughts?
any extra repositories are written to /etc/apt/sources.list.d/sbuild-build-depends-archive.list inside the chroot. This path is also stored in the configuration key 'Dummy archive list file' and you can see the function 'cleanup_apt_archive' removes the file pointed to by that key. I only just read the man page of apt-key, and maybe something similar to the sources.list can be done with keys too, by just dumping them into /etc/apt/trusted.gpg.d/sbuild-build-depends-archive.gpg (or similar) and then removing just that file in the end. I imagine it would be more difficult to use "apt-key del" to clean up because running that command requires you to know the key ID(s). cheers, josch
signature.asc
Description: signature
