gitlab-ci: Use /etc/apt/keyrings instead of apt-key (!626) · Merge requests · librespacefoundation / SatNOGS / satnogs-client

Fabian P. Schmidt requested to merge kerel-fs/satnogs-client:fix_ci into master Nov 14, 2023

apt-key is deprecated.

download.opensuse.org started to return 403-Forbidden to requests by apt-key adv --fetch-keys "$GITLAB_CI_APT_KEY_URL". This CI jobs failed with

$ apt-key adv --fetch-keys "$GITLAB_CI_APT_KEY_URL"
Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)).
Executing: /tmp/apt-key-gpghome.skwYGpGttF/gpg.1.sh --fetch-keys https://download.opensuse.org/repositories/home:librespace:satnogs/Debian_11/Release.key
gpg: requesting key from 'https://download.opensuse.org/repositories/home:librespace:satnogs/Debian_11/Release.key'
gpg: WARNING: unable to fetch URI https://download.opensuse.org/repositories/home:librespace:satnogs/Debian_11/Release.key: Forbidden

It's unclear if this is related to the apt-key deprecation. But using wget and the "new" /etc/apt/keyrings + referencing it with "-signed-by" in the sources-list is a working solution.

gitlab-ci: Use /etc/apt/keyrings instead of apt-key

Merge request reports