NO_PUBKEY C5469996F0DF68EC

[doolio]

Unable to install on my Debian machine following the README instructions. Warning states public key is not available.

Distributor ID:	Debian
Description:	Debian GNU/Linux 11 (bullseye)
Release:	11
Codename:	bullseye

Can confirm the /usr/share/keyrings/pujol.io.gpg keyring file is installed and the sources list updated.

[roddhjav]

Did you followed the steps in https://pkg.pujol.io/#using-this-repository ?

[doolio]

Firstly, thank you for the quick reply!

Yes, I followed those instructions which if I'm not mistaken match the README here.

[roddhjav]

Then, can you confirm that when you run: cat /usr/share/keyrings/pujol.io.gpg | gpg, you see the correct key ID shown. If yes, the key should be correctly imported.

[doolio]

At first no key ID or fingerprint was shown. With or without sudo. Though with sudo correct pub and uid lines in the output were shown with a blank line where the fingerprint would be between them which suggests maybe some configuration setting is causing this. However, once I remembered I have a non-standard GNUPGHOME set namely "${HOME}/.gnupg/trezor" on account of using a trezor-T with my password store which has its own ~/.gnupg/trezor/gpg.conf.

If I unset this GNUPGHOME I see the correct fingerprint (not the key ID as if I'm not mistaken that appears on the pub line after rsa4096) as expected. Not sure why the key ID is not showing now. I still have to use sudo but that is not surprising since the .gpg file is owned by root.

Now despite this I still get the same error when updating via aptitude. Perhaps I need to mark this key as trusted in some way? Excuse my ignorance here and thanks for your time.

$ cat /usr/share/keyrings/pujol.io.gpg | gpg
cat: /usr/share/keyrings/pujol.io.gpg: Permission denied
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
gpg: processing message failed: Unknown system error
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
[sudo] password for doolio: 
pub   rsa4096 2017-01-09 [SC]
      06A26D531D56C42D66805049C5469996F0DF68EC
uid           Alexandre Pujol (Git) <[email protected]>

[doolio]

If I instead leave GNUPGHOME as I have above but just ignore it by specifying --homedir as ~/.gnupg. I see the following output which I guess demonstrates that --keyid-format has a default value of none though the GPG docs don't state that.

$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg --homedir ~/.gnupg
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
pub   rsa4096 2017-01-09 [SC]
      06A26D531D56C42D66805049C5469996F0DF68EC
uid           Alexandre Pujol (Git) <[email protected]>
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg --homedir ~/.gnupg --keyid-format short
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
pub   rsa4096/F0DF68EC 2017-01-09 [SC]
      06A26D531D56C42D66805049C5469996F0DF68EC
uid                   Alexandre Pujol (Git) <[email protected]>
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg --homedir ~/.gnupg --keyid-format long
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
pub   rsa4096/C5469996F0DF68EC 2017-01-09 [SC]
      06A26D531D56C42D66805049C5469996F0DF68EC
uid                           Alexandre Pujol (Git) <[email protected]>
$ sudo cat /usr/share/keyrings/pujol.io.gpg | gpg --homedir ~/.gnupg --keyid-format none
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
pub   rsa4096 2017-01-09 [SC]
      06A26D531D56C42D66805049C5469996F0DF68EC
uid           Alexandre Pujol (Git) <[email protected]>

Anyway, this is all beside the point. It seems the key is correctly imported but I'm still unable to download from your deb repository.