I2P Address: [http://i2pgit.org]

Skip to content

Deprecate apt-key operations

idk requested to merge idk/i2p.keyring.i2p:deprecate-apt-key-operations into main

Closes #1 . In the future, sources.list files are expected to have a [signed-by=] field, for example:

deb [signed-by=/usr/share/keyrings/i2p-archive-keyring.gpg] https://deb.i2p2.de/ stable main

so:

echo deb [signed-by=/usr/share/keyrings/i2p-archive-keyring.gpg] https://deb.i2p2.de/ $(lsb_release -sc) main | sudo tee /etc/apt/sources.list.d/i2p.list

Will reliably produce a valid sources.list file on modern Debians and Ubuntus.

Existing apt-key users have opted to trust i2p-archive-keyring.gpg to sign packages by using apt-key and this setting will continue to work until the next time the key expires.

If the user does not wish to use a [signed-by=] field, for instance, to build, sign, and install packages locally, the alternative is to copy the key to /etc/apt/trusted.gpg.d instead.

Merge request reports

Base32 Address: [http://7qeve4v2chmjdqlwpa3vl7aojf3nodbku7vepnjwrsxljzqipz6a.b32.i2p] Onion Address: [http://47ggr2fa3vnwfyhvgskzdmr3i32eijwymxohtxsls45dulmriwxszjad.onion]