Bug 53489 – updater/updates/check: apt_pkg.Error: W:GPG error. The repository buster/updates InRelease' is not signed

Bug 53489 - updater/updates/check: apt_pkg.Error: W:GPG error. The repository buster/updates InRelease' is not signed


Summary:	updater/updates/check: apt_pkg.Error: W:GPG error. The repository buster/upda...

Status:	NEW

Product:	UCS
Classification:	Unclassified
Component:	UCS Installer
Version:	UCS 5.0
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	---
Assigned To:	UCS maintainers
QA Contact:	UCS maintainers

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2021-06-21 14:57 CEST by Christian Castens
Modified:	2021-11-18 17:58 CET (History)
CC List:	1 user (show)

See Also:
What kind of report is it?:	Bug Report
What type of bug is this?:	6: Setup Problem: Issue for the setup process
Who will be affected by this bug?:	1: Will affect a very few installed domains
How will those affected feel about the bug?:	3: A User would likely not purchase the product
User Pain:	0.103
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:	2021061021000187, 2021072321000311, 2021110621000372
Bug group (optional):	Error handling, External feedback
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Christian Castens

2021-06-21 14:57:05 CEST

Version: 5.0-0 errata3

Remark: Fresh install, no upgrade from older version

Error:
Internal server error during "updater/updates/check".
Request: updater/updates/check

Traceback (most recent call last):
  File "%PY3%/apt/cache.py", line 587, in update
    pulse_interval)
apt_pkg.Error: W:GPG error: http://security.debian.org buster/updates InRelease: De volgende ondertekeningen konden niet geverifieerd worden omdat de publieke sleutel niet
beschikbaar is: NO_PUBKEY AA8E81B4331F7F50 NO_PUBKEY 112695A0E562B32A, E:The repository 'http://security.debian.org buster/updates InRelease' is not signed., W:Updating from
such a repository can't be done securely, and is therefore disabled by default., W:See apt-secure(8) manpage for repository creation and user configuration details., W:GPG error:
http://*****.debian.org/debian buster InRelease: De volgende ondertekeningen konden niet geverifieerd worden omdat de publieke sleutel niet beschikbaar is: NO_PUBKEY
04EE7237B7D453EC NO_PUBKEY 648ACFD622F3D138 NO_PUBKEY DCC9EFBF77E11517, E:The repository 'http://*****.debian.org/debian buster InRelease' is not signed., W:Updating from such
a repository can't be done securely, and is therefore disabled by default., W:See apt-secure(8) manpage for repository creation and user configuration details., W:GPG error:
http://*****.debian.org/debian buster-updates InRelease: De volgende ondertekeningen konden niet geverifieerd worden omdat de publieke sleutel niet beschikbaar is: NO_PUBKEY
04EE7237B7D453EC NO_PUBKEY 648ACFD622F3D138, E:The repository 'http://*****.debian.org/debian buster-updates InRelease' is not signed.

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "%PY3%/univention/management/console/base.py", line 344, in __error_handling
    six.reraise(etype, exc, etraceback)
  File "%PY3%/six.py", line 693, in reraise
    raise value
  File "%PY3%/univention/management/console/base.py", line 247, in execute
    function.__func__(self, request, *args, **kwargs)
  File "%PY3%/univention/management/console/modules/decorators.py", line 321, in _response
    result = _multi_response(self, request)
  File "%PY3%/univention/management/console/modules/decorators.py", line 181, in _response
    return function(self, request)
  File "%PY3%/univention/management/console/modules/decorators.py", line 443, in _response
    return list(function(self, iterator, *nones))
  File "%PY3%/univention/management/console/modules/decorators.py", line 289, in _fake_func
    yield function(self, *args)
  File "%PY3%/univention/management/console/modules/updater/__init__.py", line 305, in updates_check
    apt.update()
  File "%PY3%/apt/cache.py", line 589, in update
    raise FetchFailedException(e)
apt.cache.FetchFailedException: W:GPG error: http://security.debian.org buster/updates InRelease: De volgende ondertekeningen konden niet geverifieerd worden omdat de publieke
sleutel niet beschikbaar is: NO_PUBKEY AA8E81B4331F7F50 NO_PUBKEY 112695A0E562B32A, E:The repository 'http://security.debian.org buster/updates InRelease' is not signed.,
W:Updating from such a repository can't be done securely, and is therefore disabled by default., W:See apt-secure(8) manpage for repository creation and user configuration
details., W:GPG error: http://*****.debian.org/debian buster InRelease: De volgende ondertekeningen konden niet geverifieerd worden omdat de publieke sleutel niet beschikbaar
is: NO_PUBKEY 04EE7237B7D453EC NO_PUBKEY 648ACFD622F3D138 NO_PUBKEY DCC9EFBF77E11517, E:The repository 'http://*****.debian.org/debian buster InRelease' is not signed.,
W:Updating from such a repository can't be done securely, and is therefore disabled by default., W:See apt-secure(8) manpage for repository creation and user configuration
details., W:GPG error: http://*****.debian.org/debian buster-updates InRelease: De volgende ondertekeningen konden niet geverifieerd worden omdat de publieke sleutel niet
beschikbaar is: NO_PUBKEY 04EE7237B7D453EC NO_PUBKEY 648ACFD622F3D138, E:The repository 'http://*****.debian.org/debian buster-updates InRelease' is not signed.

Role: domaincontroller_master

Comment 1 Philipp Hahn

2021-06-21 17:01:08 CEST

No package repositories from *.debian.org should ever be included for UCS!
Where do they come from?

Correct would be https://updates.software-univention.de/

Comment 2 Maximilian Janßen

2021-11-18 17:58:57 CET

i think this is the same issue:


Version: 5.0-0 errata131

Remark: Error at update Univention 5.0

Error: 
Internal server error during "updater/updates/check".
Request: updater/updates/check

Traceback (most recent call last):
  File "%PY3%/apt/cache.py", line 587, in update
    pulse_interval)
apt_pkg.Error: W:GPG error: http://deb.debian.org/debian buster-backports InRelease: The following signatures couldn't be verified because the public key is not available:
NO_PUBKEY **** NO_PUBKEY ****, E:The repository 'http://deb.debian.org/debian buster-backports InRelease' is not signed.

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "%PY3%/univention/management/console/base.py", line 344, in __error_handling
    six.reraise(etype, exc, etraceback)
  File "%PY3%/six.py", line 693, in reraise
    raise value
  File "%PY3%/univention/management/console/base.py", line 247, in execute
    function.__func__(self, request, *args, **kwargs)
  File "%PY3%/univention/management/console/modules/decorators.py", line 321, in _response
    result = _multi_response(self, request)
  File "%PY3%/univention/management/console/modules/decorators.py", line 181, in _response
    return function(self, request)
  File "%PY3%/univention/management/console/modules/decorators.py", line 443, in _response
    return list(function(self, iterator, *nones))
  File "%PY3%/univention/management/console/modules/decorators.py", line 289, in _fake_func
    yield function(self, *args)
  File "%PY3%/univention/management/console/modules/updater/__init__.py", line 305, in updates_check
    apt.update()
  File "%PY3%/apt/cache.py", line 589, in update
    raise FetchFailedException(e)
apt.cache.FetchFailedException: W:GPG error: http://deb.debian.org/debian buster-backports InRelease: The following signatures couldn't be verified because the public key is not
available: NO_PUBKEY **** NO_PUBKEY ****, E:The repository 'http://deb.debian.org/debian buster-backports InRelease' is not signed.