Bug#346002: apt: GPG error when updating

To: mvo@debian.org
Cc: 346002@bugs.debian.org
Subject: Bug#346002: apt: GPG error when updating
From: Mark Hedges <hedges@ucsd.edu>
Date: Mon, 9 Jan 2006 13:13:57 -0800 (PST)
Message-id: <[🔎] Pine.BSI.4.50.0601091240260.8145-100000@network.ucsd.edu>
Reply-to: Mark Hedges <hedges@ucsd.edu>, 346002@bugs.debian.org

> On Sun, Jan 08, 2006 at 09:28:24AM +0100, Harald Dunkel wrote:
> > Michael Vogt wrote:
> > > You can run apt-get with "--allow-unauthenticated" or
> > > APT::Get::AllowUnauthenticated=true in apt.conf
> >
> > Thanx for the hint, but this option just changed the error
> > message. Now I get:
> >
> > W: There are no public key available for the following key IDs:
> > 010908312D230C5F
> > W: You may want to run apt-get update to correct these problems
>
> The warning is justified IMHO because the user should be told that
> there is are signatures on the Release file for that no public key is
> available. The Debian Release should should still be authenticated now
> (because it found a valid signature from a trusted key and only a
> missing signature) and you should get no authenticated packages
> warnings anymore.
>
> Maybe I should reword the warning to make it more clear what it
> means?

I still got this error as of this morning on `apt-get update`:

    W: GPG error: http://ftp.us.debian.org testing Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 010908312D230C5F

  mhedges@mhedges:~$ sudo apt-key update
  ERROR: Can't find the archive-keyring
  Is the debian-keyring package installed?
  mhedges@mhedges:~$ sudo apt-get install debian-keyring
  Reading package lists... Done
  Building dependency tree... Done
  debian-keyring is already the newest version.
  0 upgraded, 0 newly installed, 0 to remove and 64 not upgraded.

I tried installing just the upgrade of apt and apt-utils without
verification but it didn't help.  Same error.  Is the relevant
key in some other package?

I finally got sick of waiting and answered 'Y' to dist-upgrade's question:

    WARNING: The following packages cannot be authenticated!
    ...
    Install these packages without verification [y/N]? y

After that, I *still* get the same error for `apt-get update`:

    W: There are no public key available for the following key IDs: 010908312D230C5F

Will there be some way to go back and verify package integrity
after this gets fixed?  Reinstall these packages?

Thanks for looking into it....

Mark

Reply to:

Follow-Ups:
- Bug#346002: apt: GPG error when updating
  - From: Michael Vogt <mvo@debian.org>

Prev by Date: Bug#347258: apt: "Ign" missing space (bug in en_GB.po?)
Next by Date: Bug#347258: apt: "Ign" missing space (bug in en_GB.po?)
Previous by thread: Re: Bug#346002: apt: GPG error when updating
Next by thread: Bug#346002: apt: GPG error when updating
Index(es):
- Date
- Thread