As for #32 this might be helpful for some when it comes to:
sudo apt-key list | grep C8CAB6595FDFF622
do:
sudo APT_KEY_DONT_WARN_ON_DANGEROUS_USAGE=DontWarn apt-key list | grep
...
to get print to STDOUT.
Beside that I'm somewhat curious how this is an issue *now* when bug is
from 2021-03-20
I can add maintainer script to check and remove expired copies of
0xC8CAB6595FDFF622 and then like print a message that one needs to
install ubuntu-dbgsym-keyring
Unfortunately, I cannot automatically ask apt to install ubuntu-dbgsym-
keyring if expired dbgsym key is detected on disk =/
--
You
FYI: I've today had two systems exposing that issue.
The cleanup in comment #32 helped, but I wonder what caused it initially.
Sadly I can't recreate it anymore with a new system/container - might have been
related to the keying update to 2021.03.26 a few days ago.
--
You received this bug
Re: #30 and #21. I have the same issue:
8<
$ for p in /etc/apt/trusted.gpg.d/ubuntu-*; do gpg --no-default-keyring
--keyring $p --list-keys; done
/etc/apt/trusted.gpg.d/ubuntu-keyring-2012-cdimage.gpg
--
pub rsa4096 2012-05-11 [SC]
It is possible that you have the key in _two_ keyrings in trusted.gpg.d/
& in trusted.gpg itself.
It would be best for you to do the following:
1) sudo apt remove --purge ubuntu-dbgsym-keyring
2) sudo apt-key del 0xC8CAB6595FDFF622
3) sudo apt-key list | grep C8CAB6595FDFF622 => it should be
Can you please show the output of:
apt-key export C8CAB6595FDFF622 | gpg --list-packets
?
I guess for some reason your apt keyring isn't updated correctly.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in
The updated packages don't work for me on groovy.
$ apt policy ubuntu-keyring ubuntu-dbgsym-keyring
ubuntu-keyring:
Installed: 2020.06.17.3
Candidate: 2020.06.17.3
Version table:
*** 2020.06.17.3 500
500 http://ru.archive.ubuntu.com/ubuntu groovy-updates/main amd64
Packages
More that a week was needed for this trivial harmless fix to go through
this nonsensical bureaucracy. The ubuntu update procedure is broken.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
This bug was fixed in the package ubuntu-keyring - 2018.09.18.1~18.04.2
---
ubuntu-keyring (2018.09.18.1~18.04.2) bionic; urgency=medium
* Remove expiry of the ddebs.ubuntu.com key. LP: #1920640
-- Dimitri John Ledkov Mon, 29 Mar 2021 15:33:14
+0100
--
You received this bug
This bug was fixed in the package ubuntu-keyring - 2020.02.11.4
---
ubuntu-keyring (2020.02.11.4) focal; urgency=medium
* Remove expiry of the ddebs.ubuntu.com key. LP: #1920640
-- Dimitri John Ledkov Mon, 29 Mar 2021 15:29:33
+0100
** Changed in: ubuntu-keyring (Ubuntu Focal)
This bug was fixed in the package ubuntu-keyring - 2020.06.17.3
---
ubuntu-keyring (2020.06.17.3) groovy; urgency=medium
* Remove expiry of the ddebs.ubuntu.com key. LP: #1920640
-- Dimitri John Ledkov Mon, 29 Mar 2021 15:28:00
+0100
** Changed in: ubuntu-keyring (Ubuntu
** Tags added: fr-1216
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
https://bugs.launchpad.net/bugs/1920640
Title:
EXPKEYSIG C8CAB6595FDFF622 Ubuntu Debug Symbol Archive Automatic
Signing Key
Setting to verification-done for Focal.
(focal-amd64)root@impulse:/home/bdmurray/source-trees/error-tracker-deployment/trunk#
apt-get update
...
Reading package lists... Done
W: GPG error: http://ddebs.ubuntu.com focal Release: The following signatures
were invalid: EXPKEYSIG C8CAB6595FDFF622
I tested this again in the Ubuntu Error Tracker using ubuntu-dbgsym-
keyring version 2018.09.18.1~18.04.2 and retracing started working
again.
2021-03-30
19:11:42,253:21370:140207348864832:INFO:root:64b7ba98-918a-11eb-8a05-fa163e7a7275:swift:Processing.
2021-03-30
Works on Groovy, the dbgsym repository updates without issues using
ubuntu-dbgsym-keyring 2020.06.17.2. :-)
** Tags removed: verification-needed-groovy
** Tags added: verification-done-groovy
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which
** Description changed:
[Impact]
- * Cannot update apt metadata from ddebs.ubuntu.com whilst using ubuntu-
+ * Cannot update apt metadata from ddebs.ubuntu.com whilst using ubuntu-
dbgsym-keyring package
[Test Plan]
+ * Install ubuntu-dbgsym-keyring package
+ * Add
Tested in focal.
Before test with proposed keyring packages: 'apt update' failed with the
aforementioned error. dbgsym packages could not be installed from
ddebs.ubuntu.com
After upgrading to proposed keyring packages: 'apt update' succeeded. A
sampling of dbgsym packages could be installed from
This bug was fixed in the package ubuntu-keyring - 2021.03.26
---
ubuntu-keyring (2021.03.26) hirsute; urgency=medium
* Remove expiry of the ddebs.ubuntu.com key. LP: #1920640
* Remove previous signatures from the ddebs.ubuntu.com key to minimize
keyring size.
* Remove
** Changed in: ubuntu-keyring (Ubuntu Hirsute)
Status: Fix Released => Fix Committed
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
https://bugs.launchpad.net/bugs/1920640
Title:
EXPKEYSIG
I tested this on Bionic (albeit using Ubuntu Error Tracker retracing
systems) and updating the ubuntu-dbgsym-kerying from -proposed allowed
them to retrace crashes again so setting to verification-done.
2021-03-26
Hello Felipe, or anyone else affected,
Accepted ubuntu-keyring into focal-proposed. The package will build now
and be available at https://launchpad.net/ubuntu/+source/ubuntu-
keyring/2020.02.11.3 in a few hours, and then in the -proposed
repository.
Please help us by testing this new package.
** Changed in: ubuntu-keyring (Ubuntu Focal)
Status: Confirmed => In Progress
** Changed in: ubuntu-keyring (Ubuntu Bionic)
Status: Confirmed => In Progress
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to
Hello Felipe, or anyone else affected,
Accepted ubuntu-keyring into groovy-proposed. The package will build now
and be available at https://launchpad.net/ubuntu/+source/ubuntu-
keyring/2020.06.17.2 in a few hours, and then in the -proposed
repository.
Please help us by testing this new package.
** Changed in: ubuntu-keyring (Ubuntu Groovy)
Status: Confirmed => In Progress
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
https://bugs.launchpad.net/bugs/1920640
Title:
EXPKEYSIG
** Description changed:
+ [Impact]
+
+ * Cannot update apt metadata from ddebs.ubuntu.com whilst using ubuntu-
+ dbgsym-keyring package
+
+ [Test Plan]
+
+ * Install ubuntu-dbgsym-keyring package
+ * Add ddebs.ubuntu.com repository for your release
+ * sudo apt update must be successful
+
You know that Canonical have huge problems if the guys responsible for
security are prompting you to trust keys downloaded through http
protocol
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
This bug was fixed in the package ubuntu-keyring - 2021.03.21.1
---
ubuntu-keyring (2021.03.21.1) hirsute; urgency=medium
* Update expiry of the ddebs.ubuntu.com key by one year. LP: #1920640
-- Dimitri John Ledkov Sun, 21 Mar 2021 13:47:59
+
** Changed in: ubuntu-keyring
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: ubuntu-keyring (Ubuntu Bionic)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: ubuntu-keyring (Ubuntu Groovy)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: ubuntu-keyring (Ubuntu Focal)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
** Also affects: ubuntu-keyring (Ubuntu Focal)
Importance: Undecided
Status: New
** Also affects: ubuntu-keyring (Ubuntu Groovy)
Importance: Undecided
Status: New
** Also affects: ubuntu-keyring (Ubuntu Hirsute)
Importance: High
Status: Confirmed
** Also affects:
Note: this is a duplicate of bug #1920610, which was submitted a few
hours earlier.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
https://bugs.launchpad.net/bugs/1920640
Title:
EXPKEYSIG
** Changed in: ubuntu-keyring (Ubuntu)
Importance: Undecided => Critical
** Changed in: ubuntu-keyring (Ubuntu)
Importance: Critical => High
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
Updated the following wiki pages:
https://wiki.ubuntu.com/Debug%20Symbol%20Packages
https://wiki.ubuntu.com/DebuggingProgramCrash
With the note:
Note: The GPG key expired on 2021-03-21 and may need updating by either
upgrading the ubuntu-dbgsym-keyring package or re-running the apt-key command.
Just to make the current status clear from what I can gather:
- The GPG key was extended by 1 year to 2022-03-21
- On Ubuntu Bionic (18.04) and newer the GPG key is normally installed
by the ubuntu-dbgsym-keyring package (on 18.04 Bionic onwards). This
package is not yet updated. An update to
Thanks for the workaround. Can confirm it works, I was just wondering
how the key was allowed to expire, and if there is anything being done
to make sure it doesn't happen again to this or other keys.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages,
Hi,
This is a workaround you can use temporarily:
$ wget -O- http://ddebs.ubuntu.com/dbgsym-release-key.asc | sudo apt-
key add -
$ sudo apt update
The key was extended temporarily.
Best,
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is
I have a similar error
Ign:16 http://ddebs.ubuntu.com focal-updates Release.gpg
Err:17 http://ddebs.ubuntu.com focal Release.gpg
The following signatures were invalid: EXPKEYSIG
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: ubuntu-keyring (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to ubuntu-keyring in Ubuntu.
39 matches
Mail list logo