Skip to content

Debian and Ubuntu nightly install Instructions don't work

I tried to guide somebody through installing the nightly version of gajim yesterday. (Their repositories did not have a new enough version of gajim to install the OMEMO plugin.) I encountered numerous issues in the instructions:

  1. None of the apt instructions include sudo. I had to explain that every command that starts with apt should actually be run as sudo apt. Ideally, somebody should be able to just copy the instructions exactly as they are and run them successfully.

  2. The repository should be added to the file /etc/apt/sources.list.d/gajim.list. Adding the repository to a file named /etc/apt/sources.list.d/gajim, which is what the instructions say to do, causes sudo apt update to issue this error:

N: Ignoring file 'gajim' in directory '/etc/apt/sources.list.d/' as it has no filename extension

  1. I had to explain how to open a text editor with root permissions to create /etc/apt/sources.list.d/gajim.list. Including the command sudo sh -c "echo deb ftp://ftp.gajim.org/debian unstable main > /etc/apt/sources.list.d/gajim.list" would be helpful.

  2. Without adding the repository's signing key, sudo apt update issues the following warnings:

Err:17 ftp://ftp.gajim.org/debian unstable InRelease
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 9A569BF2B79EE905
W: GPG error: ftp://ftp.gajim.org/debian unstable InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 9A569BF2B79EE905
E: The repository 'ftp://ftp.gajim.org/debian unstable InRelease' is not signed.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.```

So, after telling the user to add `deb ftp://ftp.gajim.org/debian unstable main` to a file named `/etc/apt/sources.list.d/gajim.list`, there should be instructions telling users how to install the PGP key that the packages are signed with.

It seems like the easy, works-on-all-versions-of-Debian-and-Ubuntu way to do this is:

1. `sudo apt install dirmngr`
2. `gpg --keyserver pgp.mit.edu --recv-keys 9A569BF2B79EE905`
3. `gpg --armor --export 9A569BF2B79EE905 | apt-key add -`

Line 1 is necessary on new versions of Debian (and maybe Ubuntu?) because `dirmngr` is no longer installed by default. Acording to this bug thread: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858238, this is intentional. The new preferred way to add package signing keys is to add them directly to `/etc/apt/trusted.gpg.d/`. I have not yet figured out how to do this for Gajim, but it should only be a line or two.