summaryrefslogtreecommitdiff
path: root/debian/apt.postinst
diff options
context:
space:
mode:
authorDavid Kalnischkies <david@kalnischkies.de>2014-01-24 15:45:09 +0100
committerDavid Kalnischkies <david@kalnischkies.de>2014-09-27 00:12:14 +0200
commit1d240b5a2dd5a82283f7d0b7fe05b6f90222957c (patch)
treef5e660dc1656ff6f1cddec526be49afc5f70f1e3 /debian/apt.postinst
parentc46a36adaf51fc28464ea1a0e826c754ee60672b (diff)
downloadapt-1d240b5a2dd5a82283f7d0b7fe05b6f90222957c.tar.gz
remove empty keyrings in trusted.gpg.d on upgrade
Adding and deleting many repositories could cause (empty) keyring files to pill up in older apt-key versions, which in the end might cause gnupg to run into its internal limit of at most 40 keyrings
Diffstat (limited to 'debian/apt.postinst')
-rwxr-xr-xdebian/apt.postinst9
1 files changed, 9 insertions, 0 deletions
diff --git a/debian/apt.postinst b/debian/apt.postinst
index a538abde9..01f78a1dd 100755
--- a/debian/apt.postinst
+++ b/debian/apt.postinst
@@ -15,6 +15,15 @@ set -e
case "$1" in
configure)
+ if dpkg --compare-versions "$2" lt 1.0.7; then
+ # apt-key before 0.9.10 could leave empty keyrings around
+ find /etc/apt/trusted.gpg.d/ -name '*.gpg' | while read keyring; do
+ if ! test -s "$keyring"; then
+ rm -f "$keyring"
+ fi
+ done
+ fi
+
if dpkg --compare-versions "$2" lt-nl 0.9.9.5; then
# we are using tmpfiles for both
rm -f /etc/apt/trustdb.gpg