roddhjav
commented
1 year ago Did you followed the steps in https://pkg.pujol.io/#using-this-repository ?
Open doolio opened 1 year ago
roddhjav
commented
1 year ago Did you followed the steps in https://pkg.pujol.io/#using-this-repository ?
doolio
commented
1 year ago Firstly, thank you for the quick reply!
Yes, I followed those instructions which if I'm not mistaken match the README here.
roddhjav
commented
1 year ago Then, can you confirm that when you run: cat /usr/share/keyrings/pujol.io.gpg | gpg, you see the correct key ID shown. If yes, the key should be correctly imported.
doolio
commented
1 year ago At first no key ID or fingerprint was shown. With or without sudo. Though with sudo correct pub and uid lines in the output were shown with a blank line where the fingerprint would be between them which suggests maybe some configuration setting is causing this. However, once I remembered I have a non-standard GNUPGHOME set namely "${HOME}/.gnupg/trezor" on account of using a trezor-T with my password store which has its own ~/.gnupg/trezor/gpg.conf.
If I unset this GNUPGHOME I see the correct fingerprint (not the key ID as if I'm not mistaken that appears on the pub line after rsa4096) as expected. Not sure why the key ID is not showing now. I still have to use sudo but that is not surprising since the .gpg file is owned by root.
Now despite this I still get the same error when updating via aptitude. Perhaps I need to mark this key as trusted in some way? Excuse my ignorance here and thanks for your time.
$ cat /usr/share/keyrings/pujol.io.gpg | gpg
cat: /usr/share/keyrings/pujol.io.gpg: Permission denied
gpg: WARNING: no command supplied. Trying to guess what you mean ...
gpg: processing message failed: Unknown system error
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg
gpg: WARNING: no command supplied. Trying to guess what you mean ...
[sudo] password for doolio:
pub rsa4096 2017-01-09 [SC]
06A26D531D56C42D66805049C5469996F0DF68EC
uid Alexandre Pujol (Git) <alexandre@pujol.io>If I instead leave GNUPGHOME as I have above but just ignore it by specifying --homedir as ~/.gnupg. I see the following output which I guess demonstrates that --keyid-format has a default value of none though the GPG docs don't state that.
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg --homedir ~/.gnupg
gpg: WARNING: no command supplied. Trying to guess what you mean ...
pub rsa4096 2017-01-09 [SC]
06A26D531D56C42D66805049C5469996F0DF68EC
uid Alexandre Pujol (Git) <alexandre@pujol.io>
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg --homedir ~/.gnupg --keyid-format short
gpg: WARNING: no command supplied. Trying to guess what you mean ...
pub rsa4096/F0DF68EC 2017-01-09 [SC]
06A26D531D56C42D66805049C5469996F0DF68EC
uid Alexandre Pujol (Git) <alexandre@pujol.io>
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg --homedir ~/.gnupg --keyid-format long
gpg: WARNING: no command supplied. Trying to guess what you mean ...
pub rsa4096/C5469996F0DF68EC 2017-01-09 [SC]
06A26D531D56C42D66805049C5469996F0DF68EC
uid Alexandre Pujol (Git) <alexandre@pujol.io>
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg --homedir ~/.gnupg --keyid-format none
gpg: WARNING: no command supplied. Trying to guess what you mean ...
pub rsa4096 2017-01-09 [SC]
06A26D531D56C42D66805049C5469996F0DF68EC
uid Alexandre Pujol (Git) <alexandre@pujol.io>Anyway, this is all beside the point. It seems the key is correctly imported but I'm still unable to download from your deb repository.
Unable to install on my Debian machine following the README instructions. Warning states public key is not available.
Can confirm the
/usr/share/keyrings/pujol.io.gpgkeyring file is installed and the sources list updated.