Differences

This shows you the differences between two versions of the page.

--- os:linux:apt [2024-06-04 17:09] – Manuel Frei
+++ os:linux:apt [2024-07-15 17:36] (current) – download only Manuel Frei
@@ Line 18: / Line 18: @@
 </code>
-Recommended supported replacement (/etc/apt/keyrings/ is just an example, there is no recommended path):
+Recommended replacement:
 <code>
 wget -qO- https://myrepo.example/myrepo.asc | sudo tee /etc/apt/keyrings/myrepo.asc
@@ Line 24: / Line 24: @@
 </code>
+Example with raspberrypi.org repositories:
-FIXME
 <code>
-DEPRECATION
-       Except for using apt-key del in maintainer scripts, the use of apt-key is deprecated. This section shows how to replace existing use of apt-key.
-       If your existing use of apt-key add looks like this:
-       wget -qO- https://myrepo.example/myrepo.asc | sudo apt-key add -
-       Then you can directly replace this with (though note the recommendation below):
-       wget -qO- https://myrepo.example/myrepo.asc | sudo tee /etc/apt/trusted.gpg.d/myrepo.asc
-       Make sure to use the "asc" extension for ASCII armored keys and the "gpg" extension for the binary OpenPGP format (also known as "GPG key public ring"). The binary OpenPGP format works for all apt versions, while the ASCII
-       armored format works for apt version >= 1.4.
-       Recommended: Instead of placing keys into the /etc/apt/trusted.gpg.d directory, you can place them anywhere on your filesystem by using the Signed-By option in your sources.list and pointing to the filename of the key. See
-       sources.list(5) for details. Since APT 2.4, /etc/apt/keyrings is provided as the recommended location for keys not managed by packages. When using a deb822-style sources.list, and with apt version >= 2.4, the Signed-By
-       option can also be used to include the full ASCII armored keyring directly in the sources.list without an additional file.
 root@raspi1:~# apt update
 Hit:1 http://raspbian.raspberrypi.org/raspbian bookworm InRelease
 Hit:2 http://archive.raspberrypi.org/debian bookworm InRelease
-Hit:3 https://apt.releases.teleport.dev/debian bookworm InRelease
-Hit:4 https://repo.zabbix.com/zabbix/7.0/raspbian bookworm InRelease
 Reading package lists... Done
 Building dependency tree... Done
@@ Line 60: / Line 35: @@
 W: http://raspbian.raspberrypi.org/raspbian/dists/bookworm/InRelease: Key is stored in legacy trusted.gpg keyring (/etc/apt/trusted.gpg), see the DEPRECATION section in apt-key(8) for details.
 W: http://archive.raspberrypi.org/debian/dists/bookworm/InRelease: Key is stored in legacy trusted.gpg keyring (/etc/apt/trusted.gpg), see the DEPRECATION section in apt-key(8) for details.
-N: Skipping acquire of configured file 'main/binary-armhf/Packages' as repository 'https://repo.zabbix.com/zabbix/7.0/raspbian bookworm InRelease' doesn't support architecture 'armhf'
+root@raspi1:~# wget -qO- http://raspbian.raspberrypi.org/raspbian.public.key | sudo tee /etc/apt/trusted.gpg.d/raspbian-raspberrypi.asc
+root@raspi1:~# wget -qO- http://archive.raspberrypi.org/debian/raspberrypi.gpg.key | sudo tee /etc/apt/trusted.gpg.d/archive-raspberrypi.asc
-wget -qO- http://raspbian.raspberrypi.org/raspbian.public.key | sudo tee /etc/apt/trusted.gpg.d/raspbian-raspberrypi.asc
 root@raspi1:~# apt update
 Hit:1 http://raspbian.raspberrypi.org/raspbian bookworm InRelease
 Hit:2 http://archive.raspberrypi.org/debian bookworm InRelease
-Hit:3 https://apt.releases.teleport.dev/debian bookworm InRelease
-Hit:4 https://repo.zabbix.com/zabbix/7.0/raspbian bookworm InRelease
 Reading package lists... Done
 Building dependency tree... Done
 Reading state information... Done
 All packages are up to date.
-W: http://archive.raspberrypi.org/debian/dists/bookworm/InRelease: Key is stored in legacy trusted.gpg keyring (/etc/apt/trusted.gpg), see the DEPRECATION section in apt-key(8) for details.
+root@raspi1:~#
-N: Skipping acquire of configured file 'main/binary-armhf/Packages' as repository 'https://repo.zabbix.com/zabbix/7.0/raspbian bookworm InRelease' doesn't support architecture 'armhf'
+</code>
+==== Download all Upgrade Packages ====
+To download all deb packages, perform an ''upgrade'', ''dist-upgrade'' or ''full-upgrade'' with the ''--download-only'' parameter.
-W: http://archive.raspberrypi.org/debian/dists/bookworm/InRelease: Key is stored in legacy trusted.gpg keyring (/etc/apt/trusted.gpg), see the DEPRECATION section in apt-key(8) for details.
+<code bash>
+apt-get full-upgrade --download-only
+</code>
+<code - Example>
-wget -qO- http://archive.raspberrypi.org/debian/raspberrypi.gpg.key | sudo tee /etc/apt/trusted.gpg.d/archive-raspberrypi.asc
+root@server:~# apt-get full-upgrade --download-only
+Reading package lists... Done
+Building dependency tree... Done
+Reading state information... Done
+Calculating upgrade... Done
+The following packages will be upgraded:
+  openssh-server
+upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
+Need to get 456 kB/456 kB of archives.
+After this operation, 512 kB of additional disk space will be used.
+Do you want to continue? [Y/n] y
+Get:7 http://security.debian.org bookworm-security/main amd64 openssh-server amd64 1:9.2p1-2+deb12u3 [456 kB]
+Fetched 456 kB in 1s (456 kB/s)
+Download complete and in download only mode
+root@server:~#
 </code>