Fix keyring issue with DEBOOTSTRAP_OPTIONS

- Replaced custom debootstrap script with DEBOOTSTRAP_OPTIONS - Uses --keyring=/usr/share/keyrings/debian-archive-keyring.gpg - This should resolve the keyring signature verification error on Devuan hosts

Fix keyring issue with DEBOOTSTRAP_OPTIONS
- Replaced custom debootstrap script with DEBOOTSTRAP_OPTIONS - Uses --keyring=/usr/share/keyrings/debian-archive-keyring.gpg - This should resolve the keyring signature verification error on Devuan hosts
24c53406 · Stefy Lanza (nextime / spora ) · 36ed0ffd · 36ed0ffd · 24c53406 · 24c53406
Commit 24c53406 authored Sep 01, 2025 by Stefy Lanza (nextime / spora )
5 changed files
--- a/.build/config
+++ b/.build/config
--- a/chroot/debootstrap/debootstrap.log
+++ b/chroot/debootstrap/debootstrap.log
-2025-09-01 11:28:44 URL:http://deb.debian.org/debian/dists/testing/InRelease [146391/146391] -> "/working/mlivecd/chroot/var/lib/apt/lists/partial/deb.debian.org_debian_dists_testing_InRelease" [1]
-gpgv: Signature made Mon Sep  1 10:14:58 2025 SAST
-gpgv:                using RSA key 4CB50190207B4758A3F73A796ED0E7B82643E131
-gpgv: Can't check signature: No public key
-gpgv: Signature made Mon Sep  1 10:15:01 2025 SAST
-gpgv:                using RSA key B8E5F13176D2A7A75220028078DBA3BC47EF2265
-gpgv: Can't check signature: No public key
+2025-09-01 12:02:30 URL:http://deb.debian.org/debian/dists/testing/InRelease [146391/146391] -> "/working/mlivecd/chroot/var/lib/apt/lists/partial/deb.debian.org_debian_dists_testing_InRelease" [1]
 gpgv: Signature made Mon Sep  1 10:14:58 2025 SAST
 gpgv:                using RSA key 4CB50190207B4758A3F73A796ED0E7B82643E131
 gpgv: Can't check signature: No public key

--- a/config/bootstrap
+++ b/config/bootstrap
@@ -66,6 +66,9 @@ LB_MIRROR_BINARY_SECURITY="http://security.debian.org/"
 # Set debian-installer mirror
 LB_MIRROR_DEBIAN_INSTALLER="http://deb.debian.org/debian/"

+# Set options to use with debootstrap
+DEBOOTSTRAP_OPTIONS="--keyring=/usr/share/keyrings/debian-archive-keyring.gpg"
+
 # Set architectures to use foreign bootstrap
 LB_BOOTSTRAP_QEMU_ARCHITECTURE=""


--- a/config/hooks/live/force-debian-keyring.hook.chroot
+++ b/config/hooks/live/force-debian-keyring.hook.chroot
+#!/bin/bash
+
+# Force the use of Debian keyring for package verification
+echo "Setting up Debian keyring for package verification..."
+
+# Ensure debian-archive-keyring is available
+if [ ! -f "/usr/share/keyrings/debian-archive-keyring.gpg" ]; then
+    echo "Installing debian-archive-keyring..."
+    apt-get update
+    apt-get install -y debian-archive-keyring
+fi
+
+# Create symlink to ensure debootstrap uses the correct keyring
+if [ -f "/usr/share/keyrings/debian-archive-keyring.gpg" ]; then
+    ln -sf /usr/share/keyrings/debian-archive-keyring.gpg /usr/share/keyrings/debian-archive-keyring.gpg.tmp
+    echo "Debian keyring configured for bootstrap"
+else
+    echo "WARNING: debian-archive-keyring.gpg not found"
+fi
\ No newline at end of file
--- a/custom-debootstrap
+++ b/custom-debootstrap
+#!/bin/bash
+
+# Custom debootstrap script that forces Debian keyring usage
+# This ensures that when building Debian images on Devuan hosts,
+# the correct keyring is used for package verification
+
+echo "Custom debootstrap with Debian keyring..."
+
+# Call the original debootstrap with explicit Debian keyring
+exec /usr/sbin/debootstrap --keyring=/usr/share/keyrings/debian-archive-keyring.gpg "$@"
\ No newline at end of file