display a warning for unsigned repos

The same message is used for InRelease if fails in gpgv, but the Release/Release.gpg duo needs to handle the failing download case as well (InRelease just defers to the duo if download fails) and print a message accompaning the insecure error to provide a hint on what is going on.
author: David Kalnischkies <david@kalnischkies.de> 2014-10-13 07:26:27 +0200
committer: David Kalnischkies <david@kalnischkies.de> 2014-10-13 07:26:27 +0200
commit: 7aeab5cb220c0a6ddfbbf9335276940a3a096fb4 (patch)
tree: 1a4830e20858225e413643986827d97d39126b16
parent: 94f730fd712f42d1df7996febba0eb39156c6107 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/apt-pkg/acquire-item.cc b/apt-pkg/acquire-item.cc
index 3e4016ac6..6731e07d5 100644
--- a/apt-pkg/acquire-item.cc
+++ b/apt-pkg/acquire-item.cc
@@ -1738,6 +1738,10 @@ void pkgAcqMetaSig::Failed(string Message,pkgAcquire::MethodConfig *Cnf)/*{{{*/
    // check if we need to fail at this point 
    if (AuthPass == true && CheckStopAuthentication(RealURI, Message))
          return;
+   else if (AuthPass == false)
+      _error->Warning(_("The data from '%s' is not signed. Packages "
+                        "from that repository can not be authenticated."),
+                      URIDesc.c_str());
 
    // FIXME: meh, this is not really elegant
    string InReleaseURI = RealURI.replace(RealURI.rfind("Release.gpg"), 12,
author	David Kalnischkies <david@kalnischkies.de>	2014-10-13 07:26:27 +0200
committer	David Kalnischkies <david@kalnischkies.de>	2014-10-13 07:26:27 +0200
commit	7aeab5cb220c0a6ddfbbf9335276940a3a096fb4 (patch)
tree	1a4830e20858225e413643986827d97d39126b16
parent	94f730fd712f42d1df7996febba0eb39156c6107 (diff)