Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
I'm trying to install kalthura-nginx on a fresh installed Debian 9 box, but the repository signature seems to be invalid.
The key was downloaded and included in the ring, as specified:
Also tried to get the key from another server, without success.
There is a problem with the repository ?
The error happened because sha1 is no longer accepted by Stretch's apt for repo signatures. We will generate a new SHA256 key and start using that soon.
The below explanation is a bit long so don't feel compelled to read it, especially since you've already compiled the module yourself:) I'll provide it anyhow, in case you're interested and for the benefit of other Debian Stretch users.
Like I wrote before, the specific error you got stems from the fact that, starting from Stretch, SHA1 keys are no longer supported. Starting with the next version, we will be signing our packages with a SHA256 key.
However, the kaltura-nginx package from our repos will not work with Debian Stretch for other reasons.
For example, the kaltura-ffmpeg package, which kaltura-nginx depends on, requires libschroedinger and libopenjpeg5. These exist in the Jessie repos [which is why the same deb can be deployed on Jessie] but are not available in the Stretch repo.
Also, Stretch has libssl of version libssl1.0.2 and libssl1.1, whereas our kaltura-nginx package built for Ubuntu 16.04, requires libssl1.0.0.
And so, the kaltura-nginx package from http://installrepo.kaltura.org/repo/apt/debian will work with Debian Wheezy  and Debian Jessie , as stated in the README but not with Stretch .
That said, the package specs for all our packages are available so, if you wanted to, with some adjustments, you could build your own deb packages for Stretch based on these specs.
Note that the Nginx VOD module only requires ffmpeg for the following features:
If you don't require one of these, you can build the Nginx package without ffmpeg and if you have Nginx >= 1.9.11, you can also compile the VOD module as an SO and dynamically load it.