1
0
mirror of https://github.com/moparisthebest/pacman synced 2024-12-22 15:58:50 -05:00

pacman-key: Improve documentation for --populate

Signed-off-by: Allan McRae <allan@archlinux.org>
This commit is contained in:
Allan McRae 2011-08-23 15:46:46 +10:00
parent cab1379a1a
commit 29dede2eb7

View File

@ -82,10 +82,8 @@ Options
*\--populate* [<keyring(s)>]:: *\--populate* [<keyring(s)>]::
Reload the default keys from the (optionally provided) keyrings in Reload the default keys from the (optionally provided) keyrings in
+{pkgdatadir}/keyrings+. Each keyring is provided in a file foo.gpg that +{pkgdatadir}/keyrings+. For more information, see
contains the keys for the foo keyring. Optionally the file foo-revoked <<SC,Providing a Keyring for Import>> below.
contains a list of revoked key IDs for that keyring. These files are
required to be signed (detached) by a trusted PGP key.
*-u, \--updatedb*:: *-u, \--updatedb*::
Equivalent to \--check-trustdb in GnuPG. Equivalent to \--check-trustdb in GnuPG.
@ -97,6 +95,19 @@ Options
Displays the program version. Displays the program version.
Providing a Keyring for Import
------------------------------
A distribution or other repository provided may want to provide a set of valid
PGP keys used in the signing of its packages and repository databases that can
be readily imported into the pacman keyring. This is achieved by providing a
PGP keyring file `foo.gpg` that contains the keys for the foo keyring in the
directory +{pkgdatadir}/keyrings+. Optionally the file `foo-revoked` can be
provided containing a list of revoked key IDs for that keyring. These files are
required to be signed (detached) by a trusted PGP key that the user must
manually import to the pacman keyring. This prevents a potentially malicious
repository adding keys to the pacman keyring without the users knowledge.
See Also See Also
-------- --------
linkman:pacman[8], linkman:pacman.conf[5] linkman:pacman[8], linkman:pacman.conf[5]