[Reportbug-maint] Bug#783400: reportbug: include package taint information in reportbug reports
mgilbert at debian.org
Sun May 3 22:49:04 UTC 2015
On Sat, May 2, 2015 at 1:14 PM, Sandro Tosi wrote:
>> and/or non-debian sources.list in reportbug
>> reports generated on such systems.
> how does a non-debian entry in sources.list look like? with debian
> mirrors and internal/organizational mirrors, the chance of false
> positive/negative is very high.
It could be a matter of looking for packages that aren't in a Packages
file with a correct checksum specified by an InRelease file signed by
one of the Debian Archive Signing keys (using files cached in
/var/lib/apt/lists). If the cache is missing or there is something
wrong, could state that in the report instead.
More information about the Reportbug-maint