Ubuntu
apt package

cloudimg apt missing dirmngr

Bug #1634464 reported by graingert
10
This bug affects 2 people
Affects Status Importance Assigned to Milestone
apt (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

apt-key adv --keyserver keyserver.ubuntu.com --recv 9FD3B784BC1C6FC31A8A0A1C1655A0AB68576280
Warning: apt-key output should not be parsed (stdout is not a terminal)
Executing: /tmp/tmp.Qv81Vl3Idi/gpg.1.sh --keyserver keyserver.ubuntu.com --recv 9FD3B784BC1C6FC31A8A0A1C1655A0AB68576280
gpg: failed to start the dirmngr '/usr/bin/dirmngr': No such file or directory
gpg: connecting dirmngr at '/tmp/tmp.Qv81Vl3Idi/S.dirmngr' failed: No such file or directory
gpg: keyserver receive failed: No dirmngr

See original description
graingert (tagrain)
description: updated
Revision history for this message
Julian Andres Klode (juliank) wrote :

APT recommends gnupg, and gnupg recommends dirmngr, so all is working as intended. If you want to use optional (deprecated) features of apt-key like adv, you have to manually install gnupg. If you want to use optional features depending on key servers, you have to install dirmngr manually.

The adv option is deprecated, like almost everything else. Drop files in trusted.gpg.d instead. The recommends on gnupg will be downgraded to a suggests at a later point.

Changed in apt (Ubuntu):
status: New → Invalid
Revision history for this message
graingert (tagrain) wrote :

@juliank apt-key adv is not deprecated. Maybe it should be marked as deprecated.

> Drop files in trusted.gpg.d instead.

can the man page for apt-key include how to do this?

Revision history for this message
Alan Franzoni (alanfranz) wrote :

Hello Julian,
some notes on your answer.

"If you want to use optional (deprecated) features of apt-key like adv" ->

How could I tell that "apt-key adv" is deprecated? Neither the man page nor the command says that adv is deprecated, and I couldn't find anything related in the first Google search result.

"like almost everything else" -> what are you referring to? apt-key itself is deprecated? Why this is not written in the man page or in the output?

Also, apt-key manpage only tells the user about the need of installing gnupg manually if the advanced options are required - dirmngr is not mentioned ANYWHERE.

So:
- I'm using a pattern that I've been using, successfully, for years on Ubuntu and Debian distros;
- apt-key is installed;
- gnupg is installed;
- there's no other documentation about that anywhere (release notes? https://wiki.ubuntu.com/YakketyYak/ReleaseNotes )

OF COURSE as a user I think there's a yakkety bug. And, I might say, this is an example of a bad migration path; if I perform this command on Xenial

$ sudo apt-key adv --keyserver keyserver.ubuntu.com --recv A1D267C030C00DCB877900ED939C61C5D1270819
[sudo] password for alan:
Executing: /tmp/tmp.FAWWu2wvKx/gpg.1.sh --keyserver
keyserver.ubuntu.com
--recv
A1D267C030C00DCB877900ED939C61C5D1270819
gpg: requesting key D1270819 from hkp server keyserver.ubuntu.com
gpg: key D1270819: "Alan Franzoni (automated signing key) <email address hidden>" not changed
gpg: Total number processed: 1
gpg: unchanged: 1

I should AT LEAST receive a "pending deprecation" warning. On the contrary, it works 100% and gives me absolutely no clue on the fact I'm doing something wrong.

That's not the way to go.

Revision history for this message
Alan Franzoni (alanfranz) wrote :

I would add: the current Ubuntu help page (yes, it's a community one, but nothing official exists AFAIK) for SecureApt, as well as the Debian one, advertise a gpg feature which doesn't work anymore in Yakkety:

https://help.ubuntu.com/community/SecureApt
https://wiki.debian.org/SecureApt

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.