Debian 存储库缺少签名

tag-icon tag-icon debian apt
Debian 存储库缺少签名

我最近将系统升级到 Debian 12,当我尝试运行时我注意到这些错误

sudo apt update

这是我的输出:

Get:1 http://security.debian.org bookworm-security InRelease [48.0 kB]
Get:2 http://deb.debian.org/debian bookworm InRelease [151 kB]
Get:3 http://deb.debian.org/debian-security bookworm-security InRelease [48.0 kB]
Get:4 http://deb.debian.org/debian bookworm-updates InRelease [52.1 kB]
Err:1 http://security.debian.org bookworm-security InRelease
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 54404762BBB6E853 NO_PUBKEY BDE6D2B9216EC7A8
Hit:5 https://deb.nodesource.com/node_20.x nodistro InRelease                                                      
Err:2 http://deb.debian.org/debian bookworm InRelease                                                              
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 0E98404D386FA1D9 NO_PUBKEY 6ED0E7B82643E131 NO_PUBKEY F8D2585B8783D481
Hit:6 https://packages.microsoft.com/repos/code stable InRelease
Err:3 http://deb.debian.org/debian-security bookworm-security InRelease
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 54404762BBB6E853 NO_PUBKEY BDE6D2B9216EC7A8
Err:4 http://deb.debian.org/debian bookworm-updates InRelease
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 0E98404D386FA1D9 NO_PUBKEY 6ED0E7B82643E131
Reading package lists... Done

另外,我当前的sources.list 文件:

deb http://deb.debian.org/debian/ bookworm main non-free-firmware 
deb-src http://deb.debian.org/debian/ bookworm main non-free-firmware 

deb http://deb.debian.org/debian-security/ bookworm-security main non-free-firmware 
deb-src http://deb.debian.org/debian-security/ bookworm-security main non-free-firmware 

deb http://deb.debian.org/debian/ bookworm-updates main non-free-firmware 
deb-src http://deb.debian.org/debian/ bookworm-updates main non-free-firmwares 

deb http://security.debian.org/ bookworm-security main contrib non-free non-free-firmware

起初,我还遇到了一些针对 Nodejs 和 vscode 存储库缺少签名的错误。因此,我重新安装了这些应用程序,它们似乎添加了一个.gpg文件,/etc/apt/keyrings并且我注意到 /etc/apt/sources.list.d/ 下的相应条目已更新为signed-by=/etc/apt/keyrings/....之后这两个额外的NO_PUBKEY错误就消失了,这绝对是有道理的。

我对为什么这更安全有一些了解,但我缺少的是当涉及到 debian 存储库时我从哪里获得这些密钥。

我是否遗漏了什么,或者从 11 升级到 Debian 12 时我是否可能弄乱了一些东西?

谢谢!

相关内容