[pve-docs.git] / pve-package-repos.adoc

[[sysadmin_package_repositories]]
Package Repositories
--------------------
ifdef::wiki[]
:pve-toplevel:
endif::wiki[]

{pve} uses http://en.wikipedia.org/wiki/Advanced_Packaging_Tool[APT] as its
package management tool like any other Debian-based system. Repositories are
defined in the file `/etc/apt/sources.list` and in `.list` files placed in
`/etc/apt/sources.list.d/`.

Each line defines a package repository. The preferred source must come first.
Empty lines are ignored. A `#` character anywhere on a line marks the remainder
of that line as a comment. The available packages from a repository are acquired
by running `apt-get update`. Updates can be installed directly using `apt-get`,
or via the GUI.

.File `/etc/apt/sources.list`
----
deb http://ftp.debian.org/debian buster main contrib
deb http://ftp.debian.org/debian buster-updates main contrib

# security updates
deb http://security.debian.org/debian-security buster/updates main contrib
----
// FIXME for 7.0: change security update suite to bullseye-security

{pve} additionally provides three different package repositories.

[[sysadmin_enterprise_repo]]
{pve} Enterprise Repository
~~~~~~~~~~~~~~~~~~~~~~~~~~~

This is the default, stable, and recommended repository, available for all {pve}
subscription users. It contains the most stable packages and is suitable for
production use. The `pve-enterprise` repository is enabled by default:

.File `/etc/apt/sources.list.d/pve-enterprise.list`
----
deb https://enterprise.proxmox.com/debian/pve buster pve-enterprise
----

The `root@pam` user is notified via email about available updates. Click the
'Changelog' button in the GUI to see more details about the selected update.

You need a valid subscription key to access the `pve-enterprise` repository.
Different support levels are available. Further details can be found at
https://www.proxmox.com/en/proxmox-ve/pricing.

NOTE: You can disable this repository by commenting out the above line using a
`#` (at the start of the line). This prevents error messages if you do not have
a subscription key. Please configure the `pve-no-subscription` repository in
that case.

[[sysadmin_no_subscription_repo]]
{pve} No-Subscription Repository
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This is the recommended repository for testing and non-production use. Its
packages are not as heavily tested and validated. You don't need a subscription key
to access the `pve-no-subscription` repository.

We recommend to configure this repository in `/etc/apt/sources.list`.

.File `/etc/apt/sources.list`
----
deb http://ftp.debian.org/debian buster main contrib
deb http://ftp.debian.org/debian buster-updates main contrib

# PVE pve-no-subscription repository provided by proxmox.com,
# NOT recommended for production use
deb http://download.proxmox.com/debian/pve buster pve-no-subscription

# security updates
deb http://security.debian.org/debian-security buster/updates main contrib
----


[[sysadmin_test_repo]]
{pve} Test Repository
~~~~~~~~~~~~~~~~~~~~~~

This repository contains the latest packages and is primarily used by developers
to test new features. To configure it, add the following line to
`etc/apt/sources.list`:

.sources.list entry for `pvetest`
----
deb http://download.proxmox.com/debian/pve buster pvetest
----

WARNING: The `pvetest` repository should (as the name implies) only be used for
testing new features or bug fixes.

[[sysadmin_package_repositories_ceph]]
{pve} Ceph Repository
~~~~~~~~~~~~~~~~~~~~~

This repository holds the main {pve} Ceph packages. They are suitable for
production. Use this repository if you run the Ceph client or a full Ceph
cluster on {pve}.

.File `/etc/apt/sources.list.d/ceph.list`
----
deb http://download.proxmox.com/debian/ceph-nautilus buster main
----


{pve} Ceph Testing Repository
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This Ceph repository contains the Ceph packages before they are moved to the
main repository. It is used to test new Ceph releases on {pve}.

.File `/etc/apt/sources.list.d/ceph.list`
----
deb http://download.proxmox.com/debian/ceph-nautilus buster test
----

{pve} Ceph Luminous Repository For Upgrade
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

If Ceph is deployed this repository is needed for the upgrade from {pve} 5.x to
{pve} 6.0. It provides packages for the older Ceph Luminous release for {pve}
6.0.

The https://pve.proxmox.com/wiki/Upgrade_from_5.x_to_6.0[Upgrade 5.x to 6.0]
document explains how to use this repository in detail.

.File `/etc/apt/sources.list.d/ceph.list`
----
deb http://download.proxmox.com/debian/ceph-luminous buster main
----

SecureApt
~~~~~~~~~

The 'Release' files in the repositories are signed with GnuPG. APT is using
these signatures to verify that all packages are from a trusted source.

If you install {pve} from an official ISO image, the key for verification is
already installed.

If you install {pve} on top of Debian, download and install
the key with the following commands:

----
 # wget http://download.proxmox.com/debian/proxmox-ve-release-6.x.gpg -O /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
----

Verify the checksum afterwards with:

----
# sha512sum /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
----

The output should be:

----
acca6f416917e8e11490a08a1e2842d500b3a5d9f322c6319db0927b2901c3eae23cfb5cd5df6facf2b57399d3cfa52ad7769ebdd75d9b204549ca147da52626 /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
----

or:

----
# md5sum /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
----
The output should be:

----
f3f6c5a3a67baf38ad178e5ff1ee270c /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
----


ifdef::wiki[]

// include note about older releases, but only for wiki


{pve} 5.x Repositories
~~~~~~~~~~~~~~~~~~~~~~

{pve} 5.x is based on Debian 9.x (``stretch''). Please note that this release is
out of date. Existing installations should be updated. Nevertheless access to
these repositories is still provided.

[width="100%",cols="<d,3m",options="header"]
|===========================================================
|Repository                 | sources.list entry
|{pve} 5.x Enterprise       |
deb https://enterprise.proxmox.com/debian stretch pve-enterprise
|{pve} 5.x No-Subscription  |
deb http://download.proxmox.com/debian stretch pve-no-subscription
|{pve} 5.x Test             |
deb http://download.proxmox.com/debian stretch pvetest
|===========================================================


{pve} 4.x Repositories
~~~~~~~~~~~~~~~~~~~~~~

{pve} 4.x is based on Debian 8.x (``jessie''). Please note that this release is
out of date. Existing installations should be updated. Nevertheless access to
these repositories is still provided.

[width="100%",cols="<d,3m",options="header"]
|===========================================================
|Repository                 | sources.list entry
|{pve} 4.x Enterprise       |
deb https://enterprise.proxmox.com/debian jessie pve-enterprise
|{pve} 4.x No-Subscription  |
deb http://download.proxmox.com/debian jessie pve-no-subscription
|{pve} 4.x Test             |
deb http://download.proxmox.com/debian jessie pvetest
|===========================================================


{pve} 3.x Repositories
~~~~~~~~~~~~~~~~~~~~~~

{pve} 3.x is based on Debian 7.x (``wheezy''). Please note that this release is
out of date. Existing installations should be updated. Nevertheless access to
these repositories is still provided.

[width="100%",cols="<d,3m",options="header"]
|===========================================================
|Repository                 | sources.list entry
|{pve} 3.x Enterprise       |
deb https://enterprise.proxmox.com/debian wheezy pve-enterprise
|{pve} 3.x No-Subscription  |
deb http://download.proxmox.com/debian wheezy pve-no-subscription
|{pve} 3.x Test             |
deb http://download.proxmox.com/debian wheezy pvetest
|===========================================================


Outdated: `stable` Repository `pve`
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This repository is a leftover to ease the update to 3.1. It will not get any
updates after the release of 3.1. Therefore the repository needs to be removed
after the upgrade to 3.1.

.File `/etc/apt/sources.list`
----
deb http://ftp.debian.org/debian wheezy main contrib

# PVE packages provided by proxmox.com - NO UPDATES after the initial release of 3.1
# deb http://download.proxmox.com/debian wheezy pve

# security updates
deb http://security.debian.org/ wheezy/updates main contrib
----


Outdated: {pve} 2.x Repositories
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

{pve} 2.x is based on Debian 6.0 (``squeeze'') and outdated. Please upgrade to
the latest version as soon as possible. In order to use the stable `pve` 2.x
repository, check your sources.list:

.File `/etc/apt/sources.list`
----
deb http://ftp.debian.org/debian squeeze main contrib

# PVE packages provided by proxmox.com
deb http://download.proxmox.com/debian squeeze pve

# security updates
deb http://security.debian.org/ squeeze/updates main contrib
----


Outdated: {pve} VE 1.x Repositories
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

{pve} 1.x is based on Debian 5.0 (``lenny'') and very outdated. Please upgrade
to latest version as soon as possible.


endif::wiki[]
ifdef::manvolnum[]
include::pve-copyright.adoc[]
endif::manvolnum[]
Commit	Line	Data
	1	[[sysadmin_package_repositories]]
	2	Package Repositories
	3	--------------------
	4	ifdef::wiki[]
	5	:pve-toplevel:
	6	endif::wiki[]
	7
	8	{pve} uses http://en.wikipedia.org/wiki/Advanced_Packaging_Tool[APT] as its
	9	package management tool like any other Debian-based system. Repositories are
	10	defined in the file `/etc/apt/sources.list` and in `.list` files placed in
	11	`/etc/apt/sources.list.d/`.
	12
	13	Each line defines a package repository. The preferred source must come first.
	14	Empty lines are ignored. A `#` character anywhere on a line marks the remainder
	15	of that line as a comment. The available packages from a repository are acquired
	16	by running `apt-get update`. Updates can be installed directly using `apt-get`,
	17	or via the GUI.
	18
	19	.File `/etc/apt/sources.list`
	20	----
	21	deb http://ftp.debian.org/debian buster main contrib
	22	deb http://ftp.debian.org/debian buster-updates main contrib
	23
	24	# security updates
	25	deb http://security.debian.org/debian-security buster/updates main contrib
	26	----
	27	// FIXME for 7.0: change security update suite to bullseye-security
	28
	29	{pve} additionally provides three different package repositories.
	30
	31	[[sysadmin_enterprise_repo]]
	32	{pve} Enterprise Repository
	33	~~~~~~~~~~~~~~~~~~~~~~~~~~~
	34
	35	This is the default, stable, and recommended repository, available for all {pve}
	36	subscription users. It contains the most stable packages and is suitable for
	37	production use. The `pve-enterprise` repository is enabled by default:
	38
	39	.File `/etc/apt/sources.list.d/pve-enterprise.list`
	40	----
	41	deb https://enterprise.proxmox.com/debian/pve buster pve-enterprise
	42	----
	43
	44	The `root@pam` user is notified via email about available updates. Click the
	45	'Changelog' button in the GUI to see more details about the selected update.
	46
	47	You need a valid subscription key to access the `pve-enterprise` repository.
	48	Different support levels are available. Further details can be found at
	49	https://www.proxmox.com/en/proxmox-ve/pricing.
	50
	51	NOTE: You can disable this repository by commenting out the above line using a
	52	`#` (at the start of the line). This prevents error messages if you do not have
	53	a subscription key. Please configure the `pve-no-subscription` repository in
	54	that case.
	55
	56	[[sysadmin_no_subscription_repo]]
	57	{pve} No-Subscription Repository
	58	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	59
	60	This is the recommended repository for testing and non-production use. Its
	61	packages are not as heavily tested and validated. You don't need a subscription key
	62	to access the `pve-no-subscription` repository.
	63
	64	We recommend to configure this repository in `/etc/apt/sources.list`.
	65
	66	.File `/etc/apt/sources.list`
	67	----
	68	deb http://ftp.debian.org/debian buster main contrib
	69	deb http://ftp.debian.org/debian buster-updates main contrib
	70
	71	# PVE pve-no-subscription repository provided by proxmox.com,
	72	# NOT recommended for production use
	73	deb http://download.proxmox.com/debian/pve buster pve-no-subscription
	74
	75	# security updates
	76	deb http://security.debian.org/debian-security buster/updates main contrib
	77	----
	78
	79
	80	[[sysadmin_test_repo]]
	81	{pve} Test Repository
	82	~~~~~~~~~~~~~~~~~~~~~~
	83
	84	This repository contains the latest packages and is primarily used by developers
	85	to test new features. To configure it, add the following line to
	86	`etc/apt/sources.list`:
	87
	88	.sources.list entry for `pvetest`
	89	----
	90	deb http://download.proxmox.com/debian/pve buster pvetest
	91	----
	92
	93	WARNING: The `pvetest` repository should (as the name implies) only be used for
	94	testing new features or bug fixes.
	95
	96	[[sysadmin_package_repositories_ceph]]
	97	{pve} Ceph Repository
	98	~~~~~~~~~~~~~~~~~~~~~
	99
	100	This repository holds the main {pve} Ceph packages. They are suitable for
	101	production. Use this repository if you run the Ceph client or a full Ceph
	102	cluster on {pve}.
	103
	104	.File `/etc/apt/sources.list.d/ceph.list`
	105	----
	106	deb http://download.proxmox.com/debian/ceph-nautilus buster main
	107	----
	108
	109
	110	{pve} Ceph Testing Repository
	111	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	112
	113	This Ceph repository contains the Ceph packages before they are moved to the
	114	main repository. It is used to test new Ceph releases on {pve}.
	115
	116	.File `/etc/apt/sources.list.d/ceph.list`
	117	----
	118	deb http://download.proxmox.com/debian/ceph-nautilus buster test
	119	----
	120
	121	{pve} Ceph Luminous Repository For Upgrade
	122	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	123
	124	If Ceph is deployed this repository is needed for the upgrade from {pve} 5.x to
	125	{pve} 6.0. It provides packages for the older Ceph Luminous release for {pve}
	126	6.0.
	127
	128	The https://pve.proxmox.com/wiki/Upgrade_from_5.x_to_6.0[Upgrade 5.x to 6.0]
	129	document explains how to use this repository in detail.
	130
	131	.File `/etc/apt/sources.list.d/ceph.list`
	132	----
	133	deb http://download.proxmox.com/debian/ceph-luminous buster main
	134	----
	135
	136	SecureApt
	137	~~~~~~~~~
	138
	139	The 'Release' files in the repositories are signed with GnuPG. APT is using
	140	these signatures to verify that all packages are from a trusted source.
	141
	142	If you install {pve} from an official ISO image, the key for verification is
	143	already installed.
	144
	145	If you install {pve} on top of Debian, download and install
	146	the key with the following commands:
	147
	148	----
	149	# wget http://download.proxmox.com/debian/proxmox-ve-release-6.x.gpg -O /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
	150	----
	151
	152	Verify the checksum afterwards with:
	153
	154	----
	155	# sha512sum /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
	156	----
	157
	158	The output should be:
	159
	160	----
	161	acca6f416917e8e11490a08a1e2842d500b3a5d9f322c6319db0927b2901c3eae23cfb5cd5df6facf2b57399d3cfa52ad7769ebdd75d9b204549ca147da52626 /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
	162	----
	163
	164	or:
	165
	166	----
	167	# md5sum /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
	168	----
	169	The output should be:
	170
	171	----
	172	f3f6c5a3a67baf38ad178e5ff1ee270c /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg
	173	----
	174
	175
	176	ifdef::wiki[]
	177
	178	// include note about older releases, but only for wiki
	179
	180
	181	{pve} 5.x Repositories
	182	~~~~~~~~~~~~~~~~~~~~~~
	183
	184	{pve} 5.x is based on Debian 9.x (``stretch''). Please note that this release is
	185	out of date. Existing installations should be updated. Nevertheless access to
	186	these repositories is still provided.
	187
	188	[width="100%",cols="<d,3m",options="header"]
	189	\|===========================================================
	190	\|Repository \| sources.list entry
	191	\|{pve} 5.x Enterprise \|
	192	deb https://enterprise.proxmox.com/debian stretch pve-enterprise
	193	\|{pve} 5.x No-Subscription \|
	194	deb http://download.proxmox.com/debian stretch pve-no-subscription
	195	\|{pve} 5.x Test \|
	196	deb http://download.proxmox.com/debian stretch pvetest
	197	\|===========================================================
	198
	199
	200	{pve} 4.x Repositories
	201	~~~~~~~~~~~~~~~~~~~~~~
	202
	203	{pve} 4.x is based on Debian 8.x (``jessie''). Please note that this release is
	204	out of date. Existing installations should be updated. Nevertheless access to
	205	these repositories is still provided.
	206
	207	[width="100%",cols="<d,3m",options="header"]
	208	\|===========================================================
	209	\|Repository \| sources.list entry
	210	\|{pve} 4.x Enterprise \|
	211	deb https://enterprise.proxmox.com/debian jessie pve-enterprise
	212	\|{pve} 4.x No-Subscription \|
	213	deb http://download.proxmox.com/debian jessie pve-no-subscription
	214	\|{pve} 4.x Test \|
	215	deb http://download.proxmox.com/debian jessie pvetest
	216	\|===========================================================
	217
	218
	219	{pve} 3.x Repositories
	220	~~~~~~~~~~~~~~~~~~~~~~
	221
	222	{pve} 3.x is based on Debian 7.x (``wheezy''). Please note that this release is
	223	out of date. Existing installations should be updated. Nevertheless access to
	224	these repositories is still provided.
	225
	226	[width="100%",cols="<d,3m",options="header"]
	227	\|===========================================================
	228	\|Repository \| sources.list entry
	229	\|{pve} 3.x Enterprise \|
	230	deb https://enterprise.proxmox.com/debian wheezy pve-enterprise
	231	\|{pve} 3.x No-Subscription \|
	232	deb http://download.proxmox.com/debian wheezy pve-no-subscription
	233	\|{pve} 3.x Test \|
	234	deb http://download.proxmox.com/debian wheezy pvetest
	235	\|===========================================================
	236
	237
	238	Outdated: `stable` Repository `pve`
	239	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	240
	241	This repository is a leftover to ease the update to 3.1. It will not get any
	242	updates after the release of 3.1. Therefore the repository needs to be removed
	243	after the upgrade to 3.1.
	244
	245	.File `/etc/apt/sources.list`
	246	----
	247	deb http://ftp.debian.org/debian wheezy main contrib
	248
	249	# PVE packages provided by proxmox.com - NO UPDATES after the initial release of 3.1
	250	# deb http://download.proxmox.com/debian wheezy pve
	251
	252	# security updates
	253	deb http://security.debian.org/ wheezy/updates main contrib
	254	----
	255
	256
	257	Outdated: {pve} 2.x Repositories
	258	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	259
	260	{pve} 2.x is based on Debian 6.0 (``squeeze'') and outdated. Please upgrade to
	261	the latest version as soon as possible. In order to use the stable `pve` 2.x
	262	repository, check your sources.list:
	263
	264	.File `/etc/apt/sources.list`
	265	----
	266	deb http://ftp.debian.org/debian squeeze main contrib
	267
	268	# PVE packages provided by proxmox.com
	269	deb http://download.proxmox.com/debian squeeze pve
	270
	271	# security updates
	272	deb http://security.debian.org/ squeeze/updates main contrib
	273	----
	274
	275
	276	Outdated: {pve} VE 1.x Repositories
	277	~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
	278
	279	{pve} 1.x is based on Debian 5.0 (``lenny'') and very outdated. Please upgrade
	280	to latest version as soon as possible.
	281
	282
	283	endif::wiki[]
	284	ifdef::manvolnum[]
	285	include::pve-copyright.adoc[]
	286	endif::manvolnum[]