Package Repositories: Difference between revisions
No edit summary |
No edit summary |
||
| Line 104: | Line 104: | ||
the key with the following commands: | the key with the following commands: | ||
# wget https://enterprise.proxmox.com/debian/proxmox-release-bullseye.gpg -O /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | # wget https://enterprise.proxmox.com/debian/proxmox-release-bullseye.gpg -O /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | ||
Verify the checksum afterwards with: | Verify the checksum afterwards with the sha512sum CLI tool: | ||
# sha512sum /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | # sha512sum /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | ||
7fb03ec8a1675723d2853b84aa4fdb49a46a3bb72b9951361488bfd19b29aab0a789a4f8c7406e71a69aabbc727c936d3549731c4659ffa1a08f44db8fdcebfa /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | 7fb03ec8a1675723d2853b84aa4fdb49a46a3bb72b9951361488bfd19b29aab0a789a4f8c7406e71a69aabbc727c936d3549731c4659ffa1a08f44db8fdcebfa /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | ||
or: | or the md5sum CLI tool: | ||
# md5sum /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | # md5sum /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | ||
bcc35c7173e0845c0d6ad6470b70f50e /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | bcc35c7173e0845c0d6ad6470b70f50e /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg | ||
Proxmox VE 6.x Repositories | Proxmox VE 6.x Repositories | ||
| Line 119: | Line 117: | ||
sources.list entry | sources.list entry | ||
Proxmox VE 6.x Enterprise | Proxmox VE 6.x Enterprise | ||
deb https://enterprise.proxmox.com/debian buster pve-enterprise | deb https://enterprise.proxmox.com/debian/pve buster pve-enterprise | ||
Proxmox VE 6.x No-Subscription | Proxmox VE 6.x No-Subscription | ||
deb http://download.proxmox.com/debian buster pve-no-subscription | deb http://download.proxmox.com/debian/pve buster pve-no-subscription | ||
Proxmox VE 6.x Test | Proxmox VE 6.x Test | ||
deb http://download.proxmox.com/debian buster pvetest | deb http://download.proxmox.com/debian/pve buster pvetest | ||
Proxmox VE 5.x Repositories | Proxmox VE 5.x Repositories | ||
Proxmox VE 5.x is based on Debian 9.x (“stretch”). Please note that this release is | Proxmox VE 5.x is based on Debian 9.x (“stretch”). Please note that this release is | ||
| Line 131: | Line 129: | ||
sources.list entry | sources.list entry | ||
Proxmox VE 5.x Enterprise | Proxmox VE 5.x Enterprise | ||
deb https://enterprise.proxmox.com/debian stretch pve-enterprise | deb https://enterprise.proxmox.com/debian/pve stretch pve-enterprise | ||
Proxmox VE 5.x No-Subscription | Proxmox VE 5.x No-Subscription | ||
deb http://download.proxmox.com/debian stretch pve-no-subscription | deb http://download.proxmox.com/debian/pve stretch pve-no-subscription | ||
Proxmox VE 5.x Test | Proxmox VE 5.x Test | ||
deb http://download.proxmox.com/debian stretch pvetest | deb http://download.proxmox.com/debian/pve stretch pvetest | ||
Proxmox VE 4.x Repositories | Proxmox VE 4.x Repositories | ||
Proxmox VE 4.x is based on Debian 8.x (“jessie”). Please note that this release is | Proxmox VE 4.x is based on Debian 8.x (“jessie”). Please note that this release is | ||
| Line 143: | Line 141: | ||
sources.list entry | sources.list entry | ||
Proxmox VE 4.x Enterprise | Proxmox VE 4.x Enterprise | ||
deb https://enterprise.proxmox.com/debian jessie pve-enterprise | deb https://enterprise.proxmox.com/debian/pve jessie pve-enterprise | ||
Proxmox VE 4.x No-Subscription | Proxmox VE 4.x No-Subscription | ||
deb http://download.proxmox.com/debian jessie pve-no-subscription | deb http://download.proxmox.com/debian/pve jessie pve-no-subscription | ||
Proxmox VE 4.x Test | Proxmox VE 4.x Test | ||
deb http://download.proxmox.com/debian jessie pvetest | deb http://download.proxmox.com/debian/pve jessie pvetest | ||
Proxmox VE 3.x Repositories | Proxmox VE 3.x Repositories | ||
Proxmox VE 3.x is based on Debian 7.x (“wheezy”). Please note that this release is | Proxmox VE 3.x is based on Debian 7.x (“wheezy”). Please note that this release is | ||
| Line 155: | Line 153: | ||
sources.list entry | sources.list entry | ||
Proxmox VE 3.x Enterprise | Proxmox VE 3.x Enterprise | ||
deb https://enterprise.proxmox.com/debian wheezy pve-enterprise | deb https://enterprise.proxmox.com/debian/pve wheezy pve-enterprise | ||
Proxmox VE 3.x No-Subscription | Proxmox VE 3.x No-Subscription | ||
deb http://download.proxmox.com/debian wheezy pve-no-subscription | deb http://download.proxmox.com/debian/pve wheezy pve-no-subscription | ||
Proxmox VE 3.x Test | Proxmox VE 3.x Test | ||
deb http://download.proxmox.com/debian wheezy pvetest | deb http://download.proxmox.com/debian/pve wheezy pvetest | ||
Outdated: stable Repository pve | Outdated: stable Repository pve | ||
This repository is a leftover to ease the update to 3.1. It will not get any | This repository is a leftover to ease the update to 3.1. It will not get any | ||
Revision as of 09:27, 17 November 2021
Contents
- Repositories in Proxmox VE
- Debian Base Repositories
- Proxmox VE Enterprise Repository
- Proxmox VE No-Subscription Repository
- Proxmox VE Test Repository
- Ceph Repositories
- Debian Firmware Repository
- SecureApt
- Proxmox VE 8 Repositories
- Proxmox VE 7 Repositories
- Proxmox VE 6.x Repositories
- Outdated: Proxmox VE VE 1 to 5 Repositories
Proxmox VE uses APT as its package management tool like any other Debian-based system.
Proxmox VE automatically checks for package updates on a daily basis. The root@pam user is notified via email about available updates. From the GUI, the Changelog button can be used to see more details about an selected update.
Repositories in Proxmox VE
Repositories are a collection of software packages, they can be used to install new software, but are also important to get new updates.
|
You need valid Debian and Proxmox repositories to get the latest security updates, bug fixes and new features. |
APT Repositories are defined in the file /etc/apt/sources.list in the legacy single-line format and in .sources files placed in /etc/apt/sources.list.d/ for the modern deb822 multi-line format, see Repository Formats for details.
Repository Management
Since Proxmox VE 7, you can check the repository state in the web interface. The node summary panel shows a high level status overview, while the separate Repository panel shows in-depth status and list of all configured repositories.
Basic repository management, for example, activating or deactivating a repository, is also supported.
The available packages from a repository are acquired by running apt update. Updates can be installed directly using apt, or via the GUI (Node → Updates).
Repository Formats
Package repositories can be configured in the source list /etc/apt/sources.list and the files contained in /etc/apt/sources.list.d/.
There are two formats supported:
- single line
-
In a single-line sources.list file, each line defines a package repository. Empty lines are ignored. A # character anywhere on a line marks the remainder of that line as a comment. This is the legacy format. Since Debian 13 Trixie apt will complain about using this format. You can automatically migrate most repositories using the apt modernize-sources command.
- deb822
-
In the multi-line format repo.sources file each entry consists of multiple lines of key-value pairs. A file can include multiple entries by separating each group with a blank line. This is the modern format.
Available Repositories
Proxmox VE provides three different package repositories in addition to requiring the base Debian repositories.
Debian Base Repositories
Types: deb deb-src URIs: http://deb.debian.org/debian/ Suites: trixie trixie-updates Components: main non-free-firmware Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg Types: deb deb-src URIs: http://security.debian.org/debian-security/ Suites: trixie-security Components: main non-free-firmware Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg
Proxmox VE Enterprise Repository
This is the recommended repository and available for all Proxmox VE subscription users. It contains the most stable packages and is suitable for production use. The pve-enterprise repository is enabled by default:
Types: deb URIs: https://enterprise.proxmox.com/debian/pve Suites: trixie Components: pve-enterprise Signed-By: /usr/share/keyrings/proxmox-archive-keyring.gpg
Please note that you need a valid subscription key to access the pve-enterprise repository. We offer different support levels, which you can find further details about at https://proxmox.com/en/proxmox-virtual-environment/pricing.
|
|
You can disable this repository by commenting out the above line using a # (at the start of the line). This prevents error messages if your host does not have a subscription key. Please configure the pve-no-subscription repository in that case. |
Proxmox VE No-Subscription Repository
As the name suggests, you do not need a subscription key to access this repository. It can be used for testing and non-production use. It’s not recommended to use this on production servers, as these packages are not always as heavily tested and validated.
We recommend to configure this repository in /etc/apt/sources.list.d/proxmox.sources.
Types: deb URIs: http://download.proxmox.com/debian/pve Suites: trixie Components: pve-no-subscription Signed-By: /usr/share/keyrings/proxmox-archive-keyring.gpg
|
|
Remember that you will always need the base Debian repositories in addition to a Proxmox VE Proxmox repository |
Proxmox VE Test Repository
This repository contains the latest packages and is primarily used by developers to test new features. To configure it, add the following stanza to the file /etc/apt/sources.list.d/proxmox.sources:
Types: deb URIs: http://download.proxmox.com/debian/pve Suites: trixie Components: pve-test Signed-By: /usr/share/keyrings/proxmox-archive-keyring.gpg
|
The pve-test repository should (as the name implies) only be used for testing new features or bug fixes. |
Ceph Repositories
Ceph-related packages are kept up to date with a preconfigured Ceph enterprise repository. Preinstalled packages enable connecting to an external Ceph cluster and adding its RBD or CephFS pools as storage. You can also build a hyper-converged infrastructure (HCI) by running Ceph on top of the Proxmox VE cluster.
Information from this chapter is helpful in the following cases:
- Installing Ceph to build an HCI
-
Decide on a below described repository and recent Ceph release, which you can then select in the web-based wizard or the CLI tool.
- Already running the HCI and want to upgrade to the succeeding Ceph major release
-
Please follow the related Ceph upgrade guide.
- Already running the HCI and want to upgrade to the succeeding Proxmox VE major release
-
In an HCI each Proxmox VE major release requires a corresponding minimum Ceph major release, please follow the related Proxmox VE upgrade guide.
- Not running an HCI but using an external Ceph cluster
-
To install newer packages used to connect to Ceph, apply available system updates, decide on a repository and Ceph release listed below, add it to your node via the Repository panel, apply newly available system updates, verify the result by running ceph --version and disable the old Ceph repository.
Ceph releases available in Proxmox VE 9
To read the latest version of the admin guide for your Proxmox VE release, make sure that all system updates are installed and that this page has been reloaded.
enterprise |
no-subscription |
test |
||
ceph-squid |
2026-09 (v19.2) |
recommended |
available |
available |
Ceph repositories for Proxmox VE 9
The content of the ceph.sources file below serves as a reference (prior to Proxmox VE 9 the file ceph.list was used). To make changes, please follow the case that applies to your situation as described at the beginning of this subchapter. If you have disabled a repository in the web UI and also want to delist it, you can manually remove the corresponding entry from the file.
enterprise
This repository is recommended for production use and contains the most stable package versions. It is accessible if the Proxmox VE node has a valid subscription of any level. For details and included customer support levels visit:
Types: deb URIs: https://enterprise.proxmox.com/debian/ceph-squid Suites: trixie Components: enterprise Signed-By: /usr/share/keyrings/proxmox-archive-keyring.gpg
no-subscription
This repository is suitable for testing and for non-production use. It is freely accessible and does not require a valid subscription. After some time, its package versions are also made available in the enterprise repository.
Types: deb URIs: http://download.proxmox.com/debian/ceph-squid Suites: trixie Components: no-subscription Signed-By: /usr/share/keyrings/proxmox-archive-keyring.gpg
test
This repository contains the latest package versions and is primarily used by developers to test new features and bug fixes.
Types: deb URIs: http://download.proxmox.com/debian/ceph-squid Suites: trixie Components: test Signed-By: /usr/share/keyrings/proxmox-archive-keyring.gpg
|
|
The Ceph test repository should (as the name implies) only be used for testing new features or bug fixes. |
Debian Firmware Repository
Starting with Debian Bookworm (Proxmox VE 8) non-free firmware (as defined by DFSG) has been moved to the newly created Debian repository component non-free-firmware.
Since Proxmox VE 9 this repository is enabled by default for new installations to ensure they can get Early OS Microcode Updates.
You can also acquire need additional Runtime Firmware Files not already included in the pre-installed package pve-firmware.
To be able to install packages from this component, run editor /etc/apt/sources.list, append non-free-firmware to the end of each .debian.org repository line and run apt update.
If you upgraded your Proxmox VE 9 install from a previous version of Proxmox VE and have modernized your package repositories to the new deb822-style, you will need to adapt /etc/apt/sources.list.d/debian.sources instead. Run editor /etc/apt/sources.list.d/debian.sources and add non-free-firmware to the lines starting with Components: of each stanza.
|
|
Modernizing your package repositories is recommended. Otherwise, apt on Debian Trixie will complain. You can run apt modernize-sources to do so. |
SecureApt
The Release files in the repositories are signed with GnuPG. APT is using these signatures to verify that all packages are from a trusted source.
If you install Proxmox VE from an official ISO image, the key for verification is already installed.
If you install Proxmox VE on top of Debian, download and install the key with the following commands:
# wget https://enterprise.proxmox.com/debian/proxmox-archive-keyring-trixie.gpg -O /usr/share/keyrings/proxmox-archive-keyring.gpg
|
|
The wget command above adds the keyring for Proxmox releases based on Debian Trixie. Once the proxmox-archive-keyring package is installed, it will manage this file. At that point, the hashes below may no longer match the hashes of this file, as keys for new Proxmox releases get added or removed. This is intended, apt will ensure that only trusted keys are being used. Modifying this file is discouraged once proxmox-archive-keyring is installed. |
Verify the checksum afterwards with the sha512sum CLI tool:
# sha256sum /usr/share/keyrings/proxmox-archive-keyring.gpg 136673be77aba35dcce385b28737689ad64fd785a797e57897589aed08db6e45 /usr/share/keyrings/proxmox-archive-keyring.gpg
or the md5sum CLI tool:
# md5sum /usr/share/keyrings/proxmox-archive-keyring.gpg 77c8b1166d15ce8350102ab1bca2fcbf /usr/share/keyrings/proxmox-archive-keyring.gpg
|
|
Make sure the path you install the key to matches the Signed-By: lines in your repository stanzas. |
Proxmox VE 8 Repositories
Proxmox VE 8 is based on Debian 12 (“bookworm”). Please note that this release is not the newest stable release anymore, for details see the FAQ support table. Existing installations should be updated. Nevertheless access to these repositories is still provided.
| Repository | sources.list entry |
|---|---|
Proxmox VE 8 Enterprise |
deb https://enterprise.proxmox.com/debian/pve bookworm pve-enterprise |
Proxmox VE 8 No-Subscription |
deb http://download.proxmox.com/debian/pve bookworm pve-no-subscription |
Proxmox VE 8 Test |
deb http://download.proxmox.com/debian/pve bookworm pvetest |
Release key URL: https://enterprise.proxmox.com/debian/proxmox-release-bookworm.gpg
Release key hash sums:
sha512sum /etc/apt/trusted.gpg.d/proxmox-release-bookworm.gpg 7da6fe34168adc6e479327ba517796d4702fa2f8b4f0a9833f5ea6e6b48f6507a6da403a274fe201595edc86a84463d50383d07f64bdde2e3658108db7d6dc87 md5sum /etc/apt/trusted.gpg.d/proxmox-release-bookworm.gpg 41558dc019ef90bd0f6067644a51cf5b
Proxmox VE 7 Repositories
Proxmox VE 7 is based on Debian 11 (“bullseye”). Please note that this release is out of date (see the FAQ support table). Existing installations should be updated. Nevertheless access to these repositories is still provided.
| Repository | sources.list entry |
|---|---|
Proxmox VE 7 Enterprise |
deb https://enterprise.proxmox.com/debian/pve bullseye pve-enterprise |
Proxmox VE 7 No-Subscription |
deb http://download.proxmox.com/debian/pve bullseye pve-no-subscription |
Proxmox VE 7 Test |
deb http://download.proxmox.com/debian/pve bullseye pvetest |
Release key URL: https://enterprise.proxmox.com/debian/proxmox-release-bullseye.gpg
Release key hash sums:
sha512sum /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg 7fb03ec8a1675723d2853b84aa4fdb49a46a3bb72b9951361488bfd19b29aab0a789a4f8c7406e71a69aabbc727c936d3549731c4659ffa1a08f44db8fdcebfa md5sum /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg bcc35c7173e0845c0d6ad6470b70f50e
Proxmox VE 6.x Repositories
Proxmox VE 6.x is based on Debian 10.x (“buster”). Please note that this release is out of date. Existing installations should be updated. Nevertheless access to these repositories is still provided.
| Repository | sources.list entry |
|---|---|
Proxmox VE 6.x Enterprise |
deb https://enterprise.proxmox.com/debian/pve buster pve-enterprise |
Proxmox VE 6.x No-Subscription |
deb http://download.proxmox.com/debian/pve buster pve-no-subscription |
Proxmox VE 6.x Test |
deb http://download.proxmox.com/debian/pve buster pvetest |
Outdated: Proxmox VE VE 1 to 5 Repositories
Proxmox VE releases 1 (based on Debian 5.0 “lenny”), 2 (based on Debian 6 “squeeze”), 3 (based on Debian 7 “wheezy”), 4 (based on Debian 6 “jessie”), and 5 (based on Debian 8 “stretch”) are very outdated.
For Proxmox VE 3 and newer repositories are still available, but they might be archived at any time. See the shipped version of the reference documentation on your installation for details about the repositories.
Please upgrade to latest version as soon as possible!