| ROS Resources: Documentation | Support | Discussion Forum | Index | Service Status | ros @ Robotics Stack Exchange |
This error appears when I run the command line:
curl -s https://raw.githubusercontent.com/ros/rosdistro/master/ros.asc | sudo apt-key add -
Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8))
This warning is the result of changes in apt on newer Debian-derived distributions. It's important to note that these deprecated functions will continue to work for the full lifetime of current distributions like Ubuntu 22.04.
In order to better secure systems that make use of third party repositories, apt now recommends installing repository keys separate from any default trusted keyring and specifying in the repository configuration which key is used to sign that repository. This helps protect systems using third party repositories by reducing the blast radius of a compromised key or misconfigured repository by allowing a system to limit the scope of that key.
The Debian wiki article on Using third party repositories expands on the new options and methods for configuring repositories.
The ROS infrastructure team is planning to provide ros-archive-keyring packages as described by that article as part of an updated key rotation strategy, which will hopefully streamline ROS installation instructions and make key rotation a seamless part of keeping ROS installations up-to-date.
Asked: 2022-06-24 06:47:19 -0600
Seen: 3,578 times
Last updated: Jun 27 '22
ROS Answers is licensed under Creative Commons Attribution 3.0 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.