Dev1 Galaxy Forum / unknown error during apt-key execution

Re: unknown error during apt-key execution

dummy@example.com (Panda1100) — Mon, 06 Jun 2022 20:20:23 +0000

Hi again, i solved the problem: i've installed pgpgpg and now apt accepts the devuan-archive keys.

Re: unknown error during apt-key execution

dummy@example.com (alexkemp) — Fri, 03 Jun 2022 13:37:15 +0000

AlexKemp wrote:

My problem is that, as best as I can tell, I should have the same problem as you (since I have NOT changed my GPG & sources.list setup) but do not.

Thanks to xinomilo giving the Chimaera Release Notes link I now know why not:

Starting from Devuan 2.0 ASCII, users should exclusively use deb.devuan.org in their sources.list file
The package mirrors at deb.devuan.org are signed with the following GPG key (UID: Amprolla3 on Nemesis; see below)
The key is included in the devuan-keyring package. In order to use deb.devuan.org, you must have devuan-keyring_2017.10.03 or higher

$ apt-key list
(…)
/etc/apt/trusted.gpg.d/devuan-keyring-2017-archive.gpg
------------------------------------------------------
pub   rsa4096 2017-09-04 [SC] [expires: 2022-09-03]
      E032 601B 7CA1 0BC3 EA53  FA81 BB23 C00C 61FC 752C
uid           [ unknown] Devuan Repository (Amprolla3 on Nemesis) 
sub   rsa4096 2017-09-04 [E] [expires: 2022-09-03]

The simplest way to install that key is via APT (do understand that apt's current behaviour is unsafe & deprecated, as set out in my earlier post):

As detailed in the Devuan Keyring page:

Installing:

# apt-get install devuan-keyring

Listing installed files:

$ dpkg -L devuan-keyring
/.
/etc
/etc/apt
/etc/apt/trusted.gpg.d
/etc/apt/trusted.gpg.d/devuan-keyring-2016-archive.gpg
/etc/apt/trusted.gpg.d/devuan-keyring-2016-cdimage.gpg
/etc/apt/trusted.gpg.d/devuan-keyring-2017-archive.gpg
/usr
/usr/share
/usr/share/doc
/usr/share/doc/devuan-keyring
/usr/share/doc/devuan-keyring/README.md.gz
/usr/share/doc/devuan-keyring/changelog.gz
/usr/share/doc/devuan-keyring/copyright
/usr/share/keyrings
/usr/share/keyrings/devuan-archive-keyring.gpg
/usr/share/keyrings/devuan-keyring.gpg

And, to finally finish this rather long post, the (unsafe) large list of key-files stored within trusted.gpg.d looks like this:

$ la /etc/apt/trusted.gpg.d
total 80
-rw-r--r-- 1 root root 8700 Mar 16  2021 debian-archive-bullseye-automatic.gpg
-rw-r--r-- 1 root root 8709 Mar 16  2021 debian-archive-bullseye-security-automatic.gpg
-rw-r--r-- 1 root root 2453 Mar 16  2021 debian-archive-bullseye-stable.gpg
-rw-r--r-- 1 root root 8132 Apr 23  2019 debian-archive-buster-automatic.gpg
-rw-r--r-- 1 root root 8141 Apr 23  2019 debian-archive-buster-security-automatic.gpg
-rw-r--r-- 1 root root 2332 Apr 23  2019 debian-archive-buster-stable.gpg
-rw-r--r-- 1 root root 7443 Apr 23  2019 debian-archive-stretch-automatic.gpg
-rw-r--r-- 1 root root 7452 Apr 23  2019 debian-archive-stretch-security-automatic.gpg
-rw-r--r-- 1 root root 2263 Apr 23  2019 debian-archive-stretch-stable.gpg
-rw-r--r-- 1 root root 3637 Oct  3  2017 devuan-keyring-2016-archive.gpg
-rw-r--r-- 1 root root 2233 Oct  3  2017 devuan-keyring-2016-cdimage.gpg
-rw-r--r-- 1 root root 3638 Oct  3  2017 devuan-keyring-2017-archive.gpg

It is suggested that that listing is made atomic in the fashion suggested in the earlier post.

Re: unknown error during apt-key execution

dummy@example.com (xinomilo) — Fri, 03 Jun 2022 11:39:52 +0000

devuan keyrings should work by default in devuan installations .

ls -la /etc/apt/trusted.gpg.d ?

what's the devuan-keyring version? (apt policy devuan-keyring)
read the release notes : https://files.devuan.org/devuan_chimaer … _notes.txt

btw, could also be a mirror problem. maybe retry with it.deb.devuan.org or another specific mirror.

Re: unknown error during apt-key execution

dummy@example.com (alexkemp) — Thu, 02 Jun 2022 23:49:16 +0000

Hi Panda, welcome to Devuan.

This is my daily update script:

$ cat ~/.update
sudo apt update && sudo apt install -f && sudo apt upgrade && sudo /etc/cron.daily/mlocate

The above gets used with zero errors.

My sources list:

$ cat /etc/apt/sources.list
deb http://deb.devuan.org/merged chimaera main non-free contrib
deb http://deb.devuan.org/merged chimaera-security main non-free contrib
deb http://deb.devuan.org/merged chimaera-updates main non-free contrib
deb http://deb.devuan.org/devuan chimaera-proposed-updates main non-free contrib
deb http://deb.devuan.org/merged chimaera-backports main non-free contrib

My preferences:

$ apt-cache policy
Package files:
 100 /var/lib/dpkg/status
     release a=now
 500 https://josm.openstreetmap.de/apt alldist/universe amd64 Packages
     release n=alldist,c=universe,b=amd64
     origin josm.openstreetmap.de
 100 http://deb.devuan.org/merged chimaera-backports/contrib amd64 Packages
     release v=4.0,o=Devuan Backports,a=stable-backports,n=chimaera-backports,l=Devuan Backports,c=contrib,b=amd64
     origin deb.devuan.org
 100 http://deb.devuan.org/merged chimaera-backports/non-free amd64 Packages
     release v=4.0,o=Devuan Backports,a=stable-backports,n=chimaera-backports,l=Devuan Backports,c=non-free,b=amd64
     origin deb.devuan.org
 100 http://deb.devuan.org/merged chimaera-backports/main amd64 Packages
     release v=4.0,o=Devuan Backports,a=stable-backports,n=chimaera-backports,l=Devuan Backports,c=main,b=amd64
     origin deb.devuan.org
 500 http://deb.devuan.org/devuan chimaera-proposed-updates/main amd64 Packages
     release v=4.0.0,o=Devuan,a=chimaera-proposed-updates,n=chimaera-proposed-updates,l=Devuan,c=main,b=amd64
     origin deb.devuan.org
 500 http://deb.devuan.org/merged chimaera-updates/main amd64 Packages
     release v=4.0.0,o=Devuan,a=stable-updates,n=chimaera-updates,l=Devuan,c=main,b=amd64
     origin deb.devuan.org
 500 http://deb.devuan.org/merged chimaera-security/main amd64 Packages
     release v=4.0,o=Devuan,a=stable-security,n=chimaera-security,l=Devuan-Security,c=main,b=amd64
     origin deb.devuan.org
 500 http://deb.devuan.org/merged chimaera/contrib amd64 Packages
     release v=4.0,o=Devuan,a=stable,n=chimaera,l=Devuan,c=contrib,b=amd64
     origin deb.devuan.org
 500 http://deb.devuan.org/merged chimaera/non-free amd64 Packages
     release v=4.0,o=Devuan,a=stable,n=chimaera,l=Devuan,c=non-free,b=amd64
     origin deb.devuan.org
 500 http://deb.devuan.org/merged chimaera/main amd64 Packages
     release v=4.0,o=Devuan,a=stable,n=chimaera,l=Devuan,c=main,b=amd64
     origin deb.devuan.org
Pinned packages:

Now, apt-key is deprecated, and this Ask Ubuntu question makes an excellent job of both explaining why, and how to fix the problem.

In brief:
apt-key suggests that using /etc/apt/trusted.gpg is deprecated: "apt-key is deprecated. Manage keyring files in trusted.gpg.d instead". That does not fix the basic problem, which is that (as currently setup) apt will trust ALL keys found in that directory. Better to:-

Create your own directory (eg /usr/local/share/keyrings/)
Move all GPG keys into that directory
Reference each specific key within the relevant /etc/apt/sources.list line.

My problem is that, as best as I can tell, I should have the same problem as you (since I have NOT changed my GPG & sources.list setup) but do not. Probably my preferences setup is saving me from the messages that you are receiving. However, I have zero idea as to where my Chimaera key-file is stored (only a large list of older keys)!

unknown error during apt-key execution

dummy@example.com (Panda1100) — Thu, 02 Jun 2022 20:55:19 +0000

Hi everyone, my problem is:

WARNING: apt does not have a stable CLI interface. Use with caution in scripts.

Scaricamento di:1 http://deb.devuan.org/merged chimaera InRelease [33,9 kB]
Scaricamento di:2 http://deb.devuan.org/merged chimaera-updates InRelease [26,5 kB]
Scaricamento di:3 http://deb.devuan.org/merged chimaera-security InRelease [26,3 kB]
Errore:1 http://deb.devuan.org/merged chimaera InRelease
Errore sconosciuto durante l'esecuzione di apt-key
Errore:2 http://deb.devuan.org/merged chimaera-updates InRelease
Errore sconosciuto durante l'esecuzione di apt-key
Errore:3 http://deb.devuan.org/merged chimaera-security InRelease
Errore sconosciuto durante l'esecuzione di apt-key
Lettura elenco dei pacchetti...
W: Errore GPG: http://deb.devuan.org/merged chimaera InRelease: Errore sconosciuto durante l'esecuzione di apt-key
E: Il repository "http://deb.devuan.org/merged chimaera InRelease" non è firmato.
W: Errore GPG: http://deb.devuan.org/merged chimaera-updates InRelease: Errore sconosciuto durante l'esecuzione di apt-key
E: Il repository "http://deb.devuan.org/merged chimaera-updates InRelease" non è firmato.
W: Errore GPG: http://deb.devuan.org/merged chimaera-security InRelease: Errore sconosciuto durante l'esecuzione di apt-key
E: Il repository "http://deb.devuan.org/merged chimaera-security InRelease" non è firmato.

I have the arhive keyrings in both trusted.gpg.d and /usr/share/keyrings but still i get this problem.