radxa-build / rock-5b

ROCK 5B
https://radxa-build.github.io/rock-5b/
Other
82 stars 9 forks source link

Debian image lacks repository GPG key #3

Closed mrvn closed 1 year ago

mrvn commented 1 year ago

I just booted the latest release image (rock-5b-debian-bullseye-xfce4-arm64-20221101-0506-gpt.img.xz) on my Rock 5B board and quickly found that less wasn't installed.

Running "apt install less" says "Package less is not available", which means the packages database isn't there since that package exists in Debian.

So the next thing to run is "apt update":

rock@rock-5b:~$ sudo apt update
Get:1 http://security.debian.org/debian-security bullseye-security InRelease [48.4 kB]                        
Get:2 http://httpredir.debian.org/debian bullseye InRelease [116 kB]                                          
Get:3 http://httpredir.debian.org/debian bullseye-updates InRelease [44.1 kB]         
Get:4 http://httpredir.debian.org/debian bullseye-backports InRelease [49.0 kB]
Get:5 http://apt.radxa.com/bullseye-stable bullseye InRelease [2365 B]
Get:6 http://security.debian.org/debian-security bullseye-security/main arm64 Packages [230 kB]                    
Get:7 http://security.debian.org/debian-security bullseye-security/main Translation-en [153 kB]                    
Get:8 http://security.debian.org/debian-security bullseye-security/non-free Translation-en [344 B]                 
Get:9 http://httpredir.debian.org/debian bullseye/main arm64 Packages [8072 kB]                                    
Get:10 http://httpredir.debian.org/debian bullseye/main Translation-en [6240 kB]                                   
Get:11 http://httpredir.debian.org/debian bullseye/contrib arm64 Packages [41.0 kB]                                
Get:12 http://httpredir.debian.org/debian bullseye/contrib Translation-en [46.9 kB]                                
Get:13 http://httpredir.debian.org/debian bullseye/non-free arm64 Packages [73.0 kB]                               
Get:14 http://httpredir.debian.org/debian bullseye/non-free Translation-en [92.4 kB]                               
Get:15 http://httpredir.debian.org/debian bullseye-updates/main arm64 Packages [12.0 kB]                           
Get:16 http://httpredir.debian.org/debian bullseye-updates/main Translation-en [7929 B]                            
Get:17 http://httpredir.debian.org/debian bullseye-backports/main arm64 Packages [399 kB]                          
Get:18 http://httpredir.debian.org/debian bullseye-backports/main Translation-en [342 kB]                          
Get:19 http://httpredir.debian.org/debian bullseye-backports/contrib arm64 Packages [4896 B]                       
Get:20 http://httpredir.debian.org/debian bullseye-backports/contrib Translation-en [5832 B]                       
Get:21 http://httpredir.debian.org/debian bullseye-backports/non-free arm64 Packages [9868 B]                      
Get:22 http://httpredir.debian.org/debian bullseye-backports/non-free Translation-en [26.6 kB]                     
Err:5 http://apt.radxa.com/bullseye-stable bullseye InRelease                                                      
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 9B98116C9AA302C7
Reading package lists... Done                                                                                      
W: GPG error: http://apt.radxa.com/bullseye-stable bullseye InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 9B98116C9AA302C7
E: The repository 'http://apt.radxa.com/bullseye-stable bullseye InRelease' is not signed.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.

I can understand the packages database not being included in the image because they just take up space and will be outdated by the time the image is used. But the missing GPG key means the trust chain is broken and updating the system or installing additional packages becomes a pain. Having to fetch the GPG key for an apt repository is not something that should be necessary for a freshly installed system.

RadxaYuntian commented 1 year ago

We are looking to release a new image for ROCK 5B soon, which has this issue fixed.

RadxaYuntian commented 1 year ago

This was fixed in the latest release.