Debian and Ubuntu nightly install Instructions don't work
I tried to guide somebody through installing the nightly version of gajim yesterday. (Their repositories did not have a new enough version of gajim to install the OMEMO plugin.) I encountered numerous issues in the instructions:
-
None of the
apt
instructions includesudo
. I had to explain that every command that starts withapt
should actually be run assudo apt
. Ideally, somebody should be able to just copy the instructions exactly as they are and run them successfully. -
The repository should be added to the file
/etc/apt/sources.list.d/gajim.list
. Adding the repository to a file named/etc/apt/sources.list.d/gajim
, which is what the instructions say to do, causessudo apt update
to issue this error:
N: Ignoring file 'gajim' in directory '/etc/apt/sources.list.d/' as it has no filename extension
-
I had to explain how to open a text editor with root permissions to create
/etc/apt/sources.list.d/gajim.list
. Including the commandsudo sh -c "echo deb ftp://ftp.gajim.org/debian unstable main > /etc/apt/sources.list.d/gajim.list"
would be helpful. -
Without adding the repository's signing key,
sudo apt update
issues the following warnings:
Err:17 ftp://ftp.gajim.org/debian unstable InRelease
The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 9A569BF2B79EE905
W: GPG error: ftp://ftp.gajim.org/debian unstable InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 9A569BF2B79EE905
E: The repository 'ftp://ftp.gajim.org/debian unstable InRelease' is not signed.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.```
So, after telling the user to add `deb ftp://ftp.gajim.org/debian unstable main` to a file named `/etc/apt/sources.list.d/gajim.list`, there should be instructions telling users how to install the PGP key that the packages are signed with.
It seems like the easy, works-on-all-versions-of-Debian-and-Ubuntu way to do this is:
1. `sudo apt install dirmngr`
2. `gpg --keyserver pgp.mit.edu --recv-keys 9A569BF2B79EE905`
3. `gpg --armor --export 9A569BF2B79EE905 | apt-key add -`
Line 1 is necessary on new versions of Debian (and maybe Ubuntu?) because `dirmngr` is no longer installed by default. Acording to this bug thread: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858238, this is intentional. The new preferred way to add package signing keys is to add them directly to `/etc/apt/trusted.gpg.d/`. I have not yet figured out how to do this for Gajim, but it should only be a line or two.