8
1
Example (Using Debian Wheezy):
sudo apt-get source hello
Result:
Reading package lists... Done
Building dependency tree
Reading state information... Done
Need to get 705 kB of source archives.
Get:1 http://ftp.us.debian.org/debian/ testing/main hello 2.8-3 (dsc) [1287 B]
Get:2 http://ftp.us.debian.org/debian/ testing/main hello 2.8-3 (tar) [697 kB]
Get:3 http://ftp.us.debian.org/debian/ testing/main hello 2.8-3 (diff) [6598 B]
Fetched 705 kB in 8s (80.6 kB/s)
gpgv: keyblock resource `/root/.gnupg/trustedkeys.gpg': file open error
gpgv: Signature made Wed Feb 13 10:30:20 2013 UTC using RSA key ID 9F1B8B32
gpgv: Can't check signature: public key not found
dpkg-source: warning: failed to verify signature on ./hello_2.8-3.dsc
dpkg-source: info: extracting hello in hello-2.8
dpkg-source: info: unpacking hello_2.8.orig.tar.gz
dpkg-source: info: unpacking hello_2.8-3.debian.tar.gz
The dpkg-dev and debian-keyring package is already installed.
I tried running apt-get source as user, as root, used "gpg --recv-keys 9F1B8B32" beforehand as user and as root. Nothing helped to get the downloaded sources verified.
How can I get rid of this "dpkg-source: warning: failed to verify signature" warning?
Worked for me with apt-get source hello-debhelper, and I was root in root dir. – ling – 2014-12-01T21:02:45.680
try it with
gpg --keyserver keyring.debian.org --recv-keys 9F1B8B32
? – Angs – 2013-08-01T17:58:49.120Did not help... – user28464 – 2013-08-01T18:40:56.770