From mboxrd@z Thu Jan 1 00:00:00 1970 X-GM-THRID: 6658246660386193408 X-Received: by 2002:a2e:760a:: with SMTP id r10-v6mr648913ljc.7.1550243855959; Fri, 15 Feb 2019 07:17:35 -0800 (PST) X-BeenThere: isar-users@googlegroups.com Received: by 2002:ac2:530d:: with SMTP id c13ls130483lfh.8.gmail; Fri, 15 Feb 2019 07:17:35 -0800 (PST) X-Google-Smtp-Source: AHgI3IbO50YVcdNW+QpTceruP+Dy4BiRKlkT2IX5gccejINuQ4jLltCKHQweL6E00IE5uIeGEP74 X-Received: by 2002:ac2:51b8:: with SMTP id f24mr653457lfk.6.1550243855373; Fri, 15 Feb 2019 07:17:35 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1550243855; cv=none; d=google.com; s=arc-20160816; b=dEHPcx/GeCpfmMmOQu0pPSqb6FtzUNDsln0a+mJUjxzJvqfKD8/BzYqOJfR0jnz1yd hm0tq9M8qhIoU9xOqNzC3gU11xhmtQ+RkWsaU0JspUPJb/D4ym/v0cslgcGBzWsQLX8f vjCS91STV40avhGK5EEHLUX2SWf2+kXaam8bVRGH7Xc7WCp5P9VToSNO3+hOSOF5PaLB 5vXrx4bOZs5ILWhK5S2xIBrO3x3fIJgczW+7QE89f/m53DLmkdTMVHZI9idk5KjjpyUm ne6GN2T1tHhK1PfDge7XNUjnJ/nRZLW82keVH4r+dp0hM8F1Oj0SmIPCDAJ2Nm8u7cH3 HyrQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=user-agent:content-disposition:content-description:mime-version :message-id:subject:to:from:date; bh=znQd23m6pScIPXAZVfUodCzrNZj7e2htpTWhgts4Vxc=; b=SObXbVU7GxLYN5eRgxVqAhLTYLpuIKsuZ7YuTd35stwWygB0uy3EIY4Bppc3bsxN0Q lMhFWQXVY1dGCIrrrhCFMIE2a2BYMOHfi0nFzuYyLaJhgFlXlWsXYjkZeO4pfHbsiNsj O4E8AG+oYaQ8+NgXUMJ5ZgZPne8t/av1on44y8hB/HP7nSSwzG9Gtcin0lPPn4yVM5Al 7GefWkImTgRX9GTiK5nxFsGOB2jMcbjDL6UIFxiSNaM42Yky1S/WBG2ZfLk0VHJFYYNd /basAiNFEkmM5LJ+QJXjyvbNfeqK6+gyExhGEfTuHbm+IDHbzlccXxohsyuiln1HLZh1 uekQ== ARC-Authentication-Results: i=1; gmr-mx.google.com; spf=pass (google.com: domain of andreas.reichel.ext@siemens.com designates 192.35.17.2 as permitted sender) smtp.mailfrom=andreas.reichel.ext@siemens.com Return-Path: Received: from thoth.sbs.de (thoth.sbs.de. [192.35.17.2]) by gmr-mx.google.com with ESMTPS id a18-v6si349719lji.3.2019.02.15.07.17.35 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 15 Feb 2019 07:17:35 -0800 (PST) Received-SPF: pass (google.com: domain of andreas.reichel.ext@siemens.com designates 192.35.17.2 as permitted sender) client-ip=192.35.17.2; Authentication-Results: gmr-mx.google.com; spf=pass (google.com: domain of andreas.reichel.ext@siemens.com designates 192.35.17.2 as permitted sender) smtp.mailfrom=andreas.reichel.ext@siemens.com Received: from mail2.sbs.de (mail2.sbs.de [192.129.41.66]) by thoth.sbs.de (8.15.2/8.15.2) with ESMTPS id x1FFHYpa007302 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for ; Fri, 15 Feb 2019 16:17:34 +0100 Received: from iiotirae (golem.ppmd.siemens.net [139.25.69.17]) by mail2.sbs.de (8.15.2/8.15.2) with SMTP id x1FFHYJ8027448 for ; Fri, 15 Feb 2019 16:17:34 +0100 Date: Fri, 15 Feb 2019 16:16:10 +0100 From: Andreas Reichel To: isar-users@googlegroups.com Subject: Additional debian repo with different pgp key Message-ID: <20190215151608.GA5175@iiotirae> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Description: message Content-Disposition: inline User-Agent: Mutt/1.11.3 (2019-02-01) X-TUID: baksj4hQUUiY Hi, I have a problem with using a separate docker repository together with its key. As far as I understood it, I have to do the following: 1st, create a list file which mentions the docker repository: So I created a docker-stretch.list, where I have the line ---- deb http://download.docker.com/linux/debian stretch stable ---- This file is added via ---- DISTRO_APT_SOURCES_append = " conf/distro/docker-stretch.list" ---- which is working. Then I add the `docker-ce` package to `IMAGE_PREINSTALL` which does not work because the package is untrusted. Therefore I have to import the pgp key, which I should be able to do with 2nd: add the key to apt keys: ---- DISTRO_APT_KEYS_append = " https://download.docker.com/linux/debian/gpg;sha256sum=1500c1f56fa9e26b9b8f42452a553675796ade0807cdce11975eb98170b3a570" ---- However, then I get the following error: ---- | DEBUG: Executing shell function do_generate_keyring | gpg: WARNING: unsafe permissions on homedir '/build/build/downloads' | gpg: keybox '/build/build/tmp/work/debian-stretch-arm64/isar-bootstrap-target/apt-keyring.gpg' created | gpg: can't open '/build/build/tmp/work/debian-stretch-arm64/isar-bootstrap-target/linux/debian/gpg': No such file or directory | gpg: Total number processed: 0 | WARNING: exit code 2 from a shell command. ---- It seems, that the last part of the URL is appended to the working directory. But the resulting directory does not exist. What is the intended course of action for this standard scenario to use another debian repo for image building? Last patch I saw on next was about local keys. But standard should be remote keys with URI I think, because every repo that needs one should provide one this way... am I wrong? vG Andreas -- Andreas Reichel Dipl.-Phys. (Univ.) Software Consultant Andreas.Reichel@tngtech.com, +49-174-3180074 TNG Technology Consulting GmbH, Betastr. 13a, 85774 Unterfoehring Geschaeftsfuehrer: Henrik Klagges, Dr. Robert Dahlke, Gerhard Mueller Sitz: Unterfoehring * Amtsgericht Muenchen * HRB 135082