[MDBF-408] Create/edit Foundation gpg key with named uid Created: 2022-05-06  Updated: 2022-06-08  Resolved: 2022-06-08

Status: Closed
Project: MariaDB Foundation Development
Component/s: None
Affects Version/s: None
Fix Version/s: N/A

Type: Bug Priority: Major
Reporter: Anel Husakovic Assignee: Anel Husakovic
Resolution: Not a Bug Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified


 Description   
  1. Following commands from downloads page one need to fetch public key
    sudo apt-key adv --fetch-keys 'https://mariadb.org/mariadb_release_signing_key.asc'
  2. However created trusted key ends with unknown uid what I found as an drawback. 

    $ sudo apt-key list
    		 
    /etc/apt/trusted.gpg
    		 
    --------------------
    		 
    pub   rsa4096 2016-03-30 [SC]
    		 
          177F 4010 FE56 CA33 3630  0305 F165 6F24 C74C D1D8
    		 
    uid           [ unknown] MariaDB Signing Key <signing-key@mariadb.org>
    		 
    sub   rsa4096 2016-03-30 [E]

  • This MDBF should properly generate or edit if possible existing key with valid UID like mariadb-foundation, or similar
  • The result of uid can be found in apt list --all-versions 

    $ sudo touch /etc/apt/sources.list.d/mariadb.list
    		 
    $ echo "deb [arch=amd64] https://archive.mariadb.org/repo/10.5.9/ubuntu focal main"| sudo tee -a /etc/apt/sources.list.d/mariadb.list
    		 
    $ sudo apt update
    		 
    https://archive.mariadb.org/repo/10.5.9/ubuntu focal/main amd64 Packages [17.2 kB]
    		 
     
    		 
    $ apt list |grep maria # default --all-versions
    		 
    libdbd-mariadb-perl/focal 1.11-3ubuntu2 amd64
    		 
    libmariadb-dev-compat/unknown 1:10.5.9+maria~focal amd64
    		 
     
    		 
    $ apt list --installed|grep maria
    		 
    mysql-common/focal,focal,now 5.8+1.0.5ubuntu2 all [installed,upgradable to: 1:10.5.9+maria~focal]
    		 
     
    		 
    apt list --upgradeable|grep maria
    		 
    mysql-common/unknown 1:10.5.9+maria~focal all [upgradable from: 5.8+1.0.5ubuntu2]



 Comments   
Comment by Anel Husakovic [ 2022-05-06 ]

On Debian bullseye, wanted to install 10.6, where 10.5 was in a list

$ apt list --all-versions|grep -E "maria"
 
 
 
WARNING: apt does not have a stable CLI interface. Use with caution in scripts.
 
 
 
libdbd-mariadb-perl/stable 1.21-3 amd64
 
libmariadb-dev-compat/unknown 1:10.6.7+maria~bullseye amd64
 
...

Note that apt list --installed and apt list --upgradable are empty in this case.

Comment by Faustin Lammler [ 2022-05-09 ]

anel can you explain what the problem is and what you suggest to solve it?
Please take also a look to MDBI-110.

Comment by Faustin Lammler [ 2022-06-07 ]

anel cant you explain what this issue is for?

Here is what official Debian keys looks like:

❯ sudo apt-key list | grep unknown | grep Debian
 
Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)).
 
uid           [ unknown] Debian Archive Automatic Signing Key (11/bullseye) <ftpmaster@debian.org>
 
uid           [ unknown] Debian Security Archive Automatic Signing Key (11/bullseye) <ftpmaster@debian.org>
 
uid           [ unknown] Debian Stable Release Key (11/bullseye) <debian-release@lists.debian.org>
 
uid           [ unknown] Debian Archive Automatic Signing Key (10/buster) <ftpmaster@debian.org>
 
uid           [ unknown] Debian Security Archive Automatic Signing Key (10/buster) <ftpmaster@debian.org>
 
uid           [ unknown] Debian Stable Release Key (10/buster) <debian-release@lists.debian.org>
 
uid           [ unknown] Debian Archive Automatic Signing Key (9/stretch) <ftpmaster@debian.org>
 
uid           [ unknown] Debian Security Archive Automatic Signing Key (9/stretch) <ftpmaster@debian.org>
 
uid           [ unknown] Debian Stable Release Key (9/stretch) <debian-release@lists.debian.org>

So, the "unknown" part seems also the case here.

Comment by Anel Husakovic [ 2022-06-07 ]

Can you define unknown and why there is no unknown for focal example in description?

Comment by Faustin Lammler [ 2022-06-08 ]

> Can you define unknown

I have absolutely no Idea of what it means and I am not sure that I want to waste too much time with a deprecated program.
My point is that I see this 'unknown' on other keys.

Anyway, I am not responsible of the singing keys, so I am not sure I can help a lot here.
Also, I still do not understand which problem you are willing to solve here...

Generated at Thu Feb 08 03:37:40 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.