Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Using gpg2, getting error "Can't check signature: public key not found " #1030

Closed
sdelafond opened this issue Feb 11, 2022 · 2 comments
Closed

Using gpg2, getting error "Can't check signature: public key not found " #1030

sdelafond opened this issue Feb 11, 2022 · 2 comments

Comments

@sdelafond
Copy link

Trying to use aptly with keyrings generated with the current version of gpg in Debian bullseye fails with semi-obscure gpg errors.

Detailed description

This is Debian bug #1005289 (https://bugs.debian.org/#1005289).

gpgv: Signature made Sat 18 Dec 2021 11:39:50 CET using RSA key ID 22F3D138                                                                                                                    
gpgv: [don't know]: invalid packet (ctb=00)                                                                                                                                                    
gpgv: keydb_search failed: invalid packet                                                                                                                                                      

gpgv: Can't check signature: public key not found

Context

This is mentioned in a couple of upstream bugs:

Given that gpg2 is the default version of gpg in Debian, this invalidates, for example, following the tutorial at https://www.aptly.info/tutorial/mirror.

Your Environment

Default setup on Debian bullseye.
@Justinzobel
Copy link

I also just ran into this issue and found that aptly only supports gpg1.

@ghost
Copy link

ghost commented Oct 26, 2022

In fact, I found that aptly supports gpg2:

Then, I found this option:

-keyring=trustedkeys.gpg: gpg keyring to use when verifying Release file (could be specified multiple times)

https://www.aptly.info/doc/aptly/mirror/create/

So I use:

aptly mirror create -architectures=amd64 -filter='Priority (required) | Priority (important) | Priority (standard)' -keyring=~/.gnupg/pubring.kbx sid-main http://deb.debian.org/debian/ sid main

Now it seems to be working properly:

Mirror [sid-main]: http://deb.debian.org/debian/ sid successfully added.
You can run 'aptly mirror update sid-main' to download repository contents.

@iofq iofq closed this as completed Sep 12, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@sdelafond @Justinzobel @iofq