From d5e06cb5cae17d5f8b6ce1954e35443b2c7a7df3 Mon Sep 17 00:00:00 2001
From: Junichi Uekawa <dancer@netfort.gr.jp>
Date: Mon, 5 Jul 2010 22:18:05 +0900
Subject: Add an option to verify key signatures. (closes: #579028)

By unsetting APTGETOPT, and setting
PBUILDERSATISFYDEPENDSOPT=('--check-key'), the user now has an option
of verifying the key signature of each package against the installed
keyring.
---
 pbuilderrc.5 | 11 +++++++++++
 1 file changed, 11 insertions(+)

(limited to 'pbuilderrc.5')

diff --git a/pbuilderrc.5 b/pbuilderrc.5
index 7c54c36..e6123d6 100644
--- a/pbuilderrc.5
+++ b/pbuilderrc.5
@@ -315,6 +315,17 @@ The "classic" implementation, which was the original implementation
 used until 0.172.
 
 The default is now "aptitude".
+.TP
+.BI "PBUILDERSATISFYDEPENDSOPT=" "('--check-key')"
+Array of flags to give to pbuilder-satisfydepends.
+Specifying --check-key here will try to verify key signatures.
+
+.TP
+.BI "APTGETOPT=" "('--force-yes')"
+Extra flags to give to apt-get.
+Default is --force-yes, which will skip key verification of packages
+to be installed. Unset if you want to enable key verification.
+
 .TP
 .BI "REMOVEPACKAGES=" "lilo"
 Specify the packages to be removed on creation of
-- 
cgit v1.2.3