[pve-docs.git] / pve-package-repos.adoc

[[sysadmin_package_repositories]]
Package Repositories
--------------------
ifdef::wiki[]
:pve-toplevel:
endif::wiki[]

All Debian based systems use
http://en.wikipedia.org/wiki/Advanced_Packaging_Tool[APT] as package
management tool. The list of repositories is defined in
`/etc/apt/sources.list` and `.list` files found inside
`/etc/apt/sources.d/`. Updates can be installed directly using
`apt-get`, or via the GUI.

Apt `sources.list` files list one package repository per line, with
the most preferred source listed first. Empty lines are ignored, and a
`#` character anywhere on a line marks the remainder of that line as a
comment. The information available from the configured sources is
acquired by `apt-get update`.

.File `/etc/apt/sources.list`
----
deb http://ftp.debian.org/debian stretch main contrib

# security updates
deb http://security.debian.org stretch/updates main contrib
----

In addition, {pve} provides three different package repositories.

{pve} Enterprise Repository
~~~~~~~~~~~~~~~~~~~~~~~~~~~

This is the default, stable and recommended repository, available for
all {pve} subscription users. It contains the most stable packages,
and is suitable for production use. The `pve-enterprise` repository is
enabled by default:

.File `/etc/apt/sources.list.d/pve-enterprise.list`
----
deb https://enterprise.proxmox.com/debian stretch pve-enterprise
----

As soon as updates are available, the `root@pam` user is notified via
email about the available new packages. On the GUI, the change-log of
each package can be viewed (if available), showing all details of the
update. So you will never miss important security fixes.

Please note that and you need a valid subscription key to access this
repository. We offer different support levels, and you can find further
details at http://www.proxmox.com/en/proxmox-ve/pricing.

NOTE: You can disable this repository by commenting out the above line
using a `#` (at the start of the line). This prevents error messages
if you do not have a subscription key. Please configure the
`pve-no-subscription` repository in that case.


{pve} No-Subscription Repository
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

As the name suggests, you do not need a subscription key to access
this repository. It can be used for testing and non-production
use. Its not recommended to run on production servers, as these
packages are not always heavily tested and validated.

We recommend to configure this repository in `/etc/apt/sources.list`.

.File `/etc/apt/sources.list`
----
deb http://ftp.debian.org/debian stretch main contrib

# PVE pve-no-subscription repository provided by proxmox.com,
# NOT recommended for production use
deb http://download.proxmox.com/debian stretch pve-no-subscription

# security updates
deb http://security.debian.org stretch/updates main contrib
----


{pve} Test Repository
~~~~~~~~~~~~~~~~~~~~~~

Finally, there is a repository called `pvetest`. This one contains the
latest packages and is heavily used by developers to test new
features. As usual, you can configure this using
`/etc/apt/sources.list` by adding the following line:

.sources.list entry for `pvetest`
----
deb http://download.proxmox.com/debian stretch pvetest
----

WARNING: the `pvetest` repository should (as the name implies) only be used
for testing new features or bug fixes.


SecureApt
~~~~~~~~~

We use GnuPG to sign the `Release` files inside those repositories,
and APT uses that signatures to verify that all packages are from a
trusted source.

The key used for verification is already installed if you install from
our installation CD. If you install by other means, you can manually
download the key with:

 # wget http://download.proxmox.com/debian/key.asc

Please verify the fingerprint afterwards:

----
# gpg --with-fingerprint key.asc
pub  1024D/9887F95A 2008-10-28 Proxmox Release Key <proxmox-release@proxmox.com>
      Key fingerprint = BE25 7BAA 5D40 6D01 157D  323E C23A C7F4 9887 F95A
sub  2048g/A87A1B00 2008-10-28
----

If this shows the exact same fingerprint, you can add the key to the
list of trusted APT keys:

 # apt-key add key.asc


ifdef::wiki[]

// include note about older releases, but only for wiki

{pve} 3.x Repositories
~~~~~~~~~~~~~~~~~~~~~~

{pve} 3.x is based on Debian 7.x (``wheezy''). Please note that this
release is out of date, and you should update your
installation. Nevertheless, we still provide access to those
repositories at our download servers.

[width="100%",cols="<d,3m",options="header"]
|===========================================================
|Repository                 | sources.list entry
|{pve} 3.x Enterprise       |
deb https://enterprise.proxmox.com/debian wheezy pve-enterprise
|{pve} 3.x No-Subscription  |
deb http://download.proxmox.com/debian wheezy pve-no-subscription
|{pve} 3.x Test             |
deb http://download.proxmox.com/debian wheezy pvetest
|===========================================================

NOTE: Apt `sources.list` configuration files are basically the same as
in newer 5.x versions - just replace `wheezy` with `stretch`.

Outdated: `stable` Repository `pve`
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This repository is a leftover to easy the update to 3.1. It will not
get any updates after the release of 3.1. Therefore you need to remove
this repository after you upgraded to 3.1.

.File `/etc/apt/sources.list`
----
deb http://ftp.debian.org/debian wheezy main contrib

# PVE packages provided by proxmox.com - NO UPDATES after the initial release of 3.1
# deb http://download.proxmox.com/debian wheezy pve

# security updates
deb http://security.debian.org/ wheezy/updates main contrib
----


Outdated: {pve} 2.x Repositories
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

{pve} 2.x is based on Debian 6.0 (``squeeze'') and outdated. Please
upgrade to latest version as soon as possible. In order to use the
stable `pve` 2.x repository, check your sources.list:

.File `/etc/apt/sources.list`
----
deb http://ftp.debian.org/debian squeeze main contrib

# PVE packages provided by proxmox.com
deb http://download.proxmox.com/debian squeeze pve

# security updates
deb http://security.debian.org/ squeeze/updates main contrib
----


Outdated: {pve} VE 1.x Repositories
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

{pve} 1.x is based on Debian 5.0 (``lenny'') and very outdated. Please
upgrade to latest version as soon as possible.


endif::wiki[]
Commit	Line	Data
80c0adcb	1	[[sysadmin_package_repositories]]
d91f8c1e DM	2	Package Repositories
d91f8c1e DM	3	--------------------
5f09af76 DM	4	ifdef::wiki[]
	5	:pve-toplevel:
	6	endif::wiki[]
	7
d91f8c1e DM	8	All Debian based systems use
	9	http://en.wikipedia.org/wiki/Advanced_Packaging_Tool[APT] as package
	10	management tool. The list of repositories is defined in
8c1189b6 FG	11	`/etc/apt/sources.list` and `.list` files found inside
	12	`/etc/apt/sources.d/`. Updates can be installed directly using
	13	`apt-get`, or via the GUI.
d91f8c1e	14
8c1189b6	15	Apt `sources.list` files list one package repository per line, with
d91f8c1e	16	the most preferred source listed first. Empty lines are ignored, and a
8c1189b6	17	`#` character anywhere on a line marks the remainder of that line as a
d91f8c1e	18	comment. The information available from the configured sources is
8c1189b6	19	acquired by `apt-get update`.
d91f8c1e	20
8c1189b6	21	.File `/etc/apt/sources.list`
d91f8c1e	22	----
acb3e8d7	23	deb http://ftp.debian.org/debian stretch main contrib
d91f8c1e DM	24
d91f8c1e DM	25	# security updates
acb3e8d7	26	deb http://security.debian.org stretch/updates main contrib
d91f8c1e DM	27	----
	28
	29	In addition, {pve} provides three different package repositories.
	30
	31	{pve} Enterprise Repository
	32	~~~~~~~~~~~~~~~~~~~~~~~~~~~
	33
	34	This is the default, stable and recommended repository, available for
	35	all {pve} subscription users. It contains the most stable packages,
f1a72f87 DM	36	and is suitable for production use. The `pve-enterprise` repository is
f1a72f87 DM	37	enabled by default:
d91f8c1e	38
8c1189b6	39	.File `/etc/apt/sources.list.d/pve-enterprise.list`
d91f8c1e	40	----
acb3e8d7	41	deb https://enterprise.proxmox.com/debian stretch pve-enterprise
d91f8c1e DM	42	----
d91f8c1e DM	43
f1a72f87 DM	44	As soon as updates are available, the `root@pam` user is notified via
	45	email about the available new packages. On the GUI, the change-log of
	46	each package can be viewed (if available), showing all details of the
	47	update. So you will never miss important security fixes.
	48
	49	Please note that and you need a valid subscription key to access this
	50	repository. We offer different support levels, and you can find further
	51	details at http://www.proxmox.com/en/proxmox-ve/pricing.
	52
d91f8c1e	53	NOTE: You can disable this repository by commenting out the above line
8c1189b6	54	using a `#` (at the start of the line). This prevents error messages
d91f8c1e DM	55	if you do not have a subscription key. Please configure the
	56	`pve-no-subscription` repository in that case.
	57
d91f8c1e DM	58
	59	{pve} No-Subscription Repository
	60	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	61
	62	As the name suggests, you do not need a subscription key to access
	63	this repository. It can be used for testing and non-production
	64	use. Its not recommended to run on production servers, as these
	65	packages are not always heavily tested and validated.
	66
8c1189b6	67	We recommend to configure this repository in `/etc/apt/sources.list`.
d91f8c1e	68
8c1189b6	69	.File `/etc/apt/sources.list`
d91f8c1e	70	----
acb3e8d7	71	deb http://ftp.debian.org/debian stretch main contrib
d91f8c1e DM	72
	73	# PVE pve-no-subscription repository provided by proxmox.com,
	74	# NOT recommended for production use
acb3e8d7	75	deb http://download.proxmox.com/debian stretch pve-no-subscription
d91f8c1e DM	76
d91f8c1e DM	77	# security updates
acb3e8d7	78	deb http://security.debian.org stretch/updates main contrib
d91f8c1e DM	79	----
d91f8c1e DM	80
9dfb9a99	81
d91f8c1e DM	82	{pve} Test Repository
	83	~~~~~~~~~~~~~~~~~~~~~~
	84
	85	Finally, there is a repository called `pvetest`. This one contains the
	86	latest packages and is heavily used by developers to test new
	87	features. As usual, you can configure this using
8c1189b6	88	`/etc/apt/sources.list` by adding the following line:
d91f8c1e DM	89
	90	.sources.list entry for `pvetest`
	91	----
acb3e8d7	92	deb http://download.proxmox.com/debian stretch pvetest
d91f8c1e DM	93	----
d91f8c1e DM	94
b4a65355 FG	95	WARNING: the `pvetest` repository should (as the name implies) only be used
	96	for testing new features or bug fixes.
	97
f1a72f87	98
25663707 DM	99	SecureApt
	100	~~~~~~~~~
	101
8c1189b6	102	We use GnuPG to sign the `Release` files inside those repositories,
25663707 DM	103	and APT uses that signatures to verify that all packages are from a
	104	trusted source.
	105
	106	The key used for verification is already installed if you install from
	107	our installation CD. If you install by other means, you can manually
	108	download the key with:
	109
	110	# wget http://download.proxmox.com/debian/key.asc
	111
	112	Please verify the fingerprint afterwards:
	113
	114	----
	115	# gpg --with-fingerprint key.asc
	116	pub 1024D/9887F95A 2008-10-28 Proxmox Release Key <proxmox-release@proxmox.com>
	117	Key fingerprint = BE25 7BAA 5D40 6D01 157D 323E C23A C7F4 9887 F95A
	118	sub 2048g/A87A1B00 2008-10-28
	119	----
	120
	121	If this shows the exact same fingerprint, you can add the key to the
	122	list of trusted APT keys:
	123
	124	# apt-key add key.asc
	125
	126
f1a72f87 DM	127	ifdef::wiki[]
	128
	129	// include note about older releases, but only for wiki
	130
9dfb9a99 DM	131	{pve} 3.x Repositories
9dfb9a99 DM	132	~~~~~~~~~~~~~~~~~~~~~~
f1a72f87	133
8c1189b6	134	{pve} 3.x is based on Debian 7.x (``wheezy''). Please note that this
f1a72f87 DM	135	release is out of date, and you should update your
	136	installation. Nevertheless, we still provide access to those
	137	repositories at our download servers.
	138
	139	[width="100%",cols="<d,3m",options="header"]
	140	\|===========================================================
	141	\|Repository \| sources.list entry
	142	\|{pve} 3.x Enterprise \|
	143	deb https://enterprise.proxmox.com/debian wheezy pve-enterprise
	144	\|{pve} 3.x No-Subscription \|
	145	deb http://download.proxmox.com/debian wheezy pve-no-subscription
	146	\|{pve} 3.x Test \|
	147	deb http://download.proxmox.com/debian wheezy pvetest
	148	\|===========================================================
	149
8c1189b6	150	NOTE: Apt `sources.list` configuration files are basically the same as
acb3e8d7	151	in newer 5.x versions - just replace `wheezy` with `stretch`.
f1a72f87	152
8c1189b6	153	Outdated: `stable` Repository `pve`
9dfb9a99 DM	154	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	155
	156	This repository is a leftover to easy the update to 3.1. It will not
	157	get any updates after the release of 3.1. Therefore you need to remove
	158	this repository after you upgraded to 3.1.
	159
8c1189b6	160	.File `/etc/apt/sources.list`
9dfb9a99 DM	161	----
	162	deb http://ftp.debian.org/debian wheezy main contrib
	163
	164	# PVE packages provided by proxmox.com - NO UPDATES after the initial release of 3.1
	165	# deb http://download.proxmox.com/debian wheezy pve
	166
	167	# security updates
	168	deb http://security.debian.org/ wheezy/updates main contrib
	169	----
	170
	171
	172	Outdated: {pve} 2.x Repositories
	173	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	174
8c1189b6	175	{pve} 2.x is based on Debian 6.0 (``squeeze'') and outdated. Please
9dfb9a99	176	upgrade to latest version as soon as possible. In order to use the
8c1189b6	177	stable `pve` 2.x repository, check your sources.list:
9dfb9a99	178
8c1189b6	179	.File `/etc/apt/sources.list`
9dfb9a99 DM	180	----
	181	deb http://ftp.debian.org/debian squeeze main contrib
	182
	183	# PVE packages provided by proxmox.com
	184	deb http://download.proxmox.com/debian squeeze pve
	185
	186	# security updates
	187	deb http://security.debian.org/ squeeze/updates main contrib
	188	----
	189
	190
	191	Outdated: {pve} VE 1.x Repositories
	192	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	193
8c1189b6	194	{pve} 1.x is based on Debian 5.0 (``lenny'') and very outdated. Please
9dfb9a99 DM	195	upgrade to latest version as soon as possible.
	196
	197
f1a72f87	198	endif::wiki[]