我最近将系统升级到 Debian 12,当我尝试运行时我注意到这些错误
sudo apt update
这是我的输出:
Get:1 http://security.debian.org bookworm-security InRelease [48.0 kB]
Get:2 http://deb.debian.org/debian bookworm InRelease [151 kB]
Get:3 http://deb.debian.org/debian-security bookworm-security InRelease [48.0 kB]
Get:4 http://deb.debian.org/debian bookworm-updates InRelease [52.1 kB]
Err:1 http://security.debian.org bookworm-security InRelease
The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 54404762BBB6E853 NO_PUBKEY BDE6D2B9216EC7A8
Hit:5 https://deb.nodesource.com/node_20.x nodistro InRelease
Err:2 http://deb.debian.org/debian bookworm InRelease
The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 0E98404D386FA1D9 NO_PUBKEY 6ED0E7B82643E131 NO_PUBKEY F8D2585B8783D481
Hit:6 https://packages.microsoft.com/repos/code stable InRelease
Err:3 http://deb.debian.org/debian-security bookworm-security InRelease
The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 54404762BBB6E853 NO_PUBKEY BDE6D2B9216EC7A8
Err:4 http://deb.debian.org/debian bookworm-updates InRelease
The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 0E98404D386FA1D9 NO_PUBKEY 6ED0E7B82643E131
Reading package lists... Done
另外,我当前的sources.list 文件:
deb http://deb.debian.org/debian/ bookworm main non-free-firmware
deb-src http://deb.debian.org/debian/ bookworm main non-free-firmware
deb http://deb.debian.org/debian-security/ bookworm-security main non-free-firmware
deb-src http://deb.debian.org/debian-security/ bookworm-security main non-free-firmware
deb http://deb.debian.org/debian/ bookworm-updates main non-free-firmware
deb-src http://deb.debian.org/debian/ bookworm-updates main non-free-firmwares
deb http://security.debian.org/ bookworm-security main contrib non-free non-free-firmware
起初,我还遇到了一些针对 Nodejs 和 vscode 存储库缺少签名的错误。因此,我重新安装了这些应用程序,它们似乎添加了一个.gpg
文件,/etc/apt/keyrings
并且我注意到 /etc/apt/sources.list.d/ 下的相应条目已更新为signed-by=/etc/apt/keyrings/...
.之后这两个额外的NO_PUBKEY
错误就消失了,这绝对是有道理的。
我对为什么这更安全有一些了解,但我缺少的是当涉及到 debian 存储库时我从哪里获得这些密钥。
我是否遗漏了什么,或者从 11 升级到 Debian 12 时我是否可能弄乱了一些东西?
谢谢!