BADSIG return from GPG on archive.ubuntu.com
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apt (Ubuntu) |
Fix Released
|
High
|
Michael Vogt |
Bug Description
Ok this is starting to annoy me.
I don't know why, but right now every time I run ``apt-get update'' I get this:
$ sudo apt-get update
Password:
Get:1 http://
Get:2 http://
Get:3 http://
Ign http://
Get:4 http://
Ign http://
Get:5 http://
Hit http://
Get:6 http://
Hit http://
Fetched 2623kB in 24s (109kB/s)
Reading Package Lists... Done
W: GPG error: http://
signatures were invalid: BADSIG 40976EAF437D05B5 Ubuntu Archive Automatic
Signing Key <email address hidden>
W: GPG error: http://
following signatures were invalid: BADSIG 40976EAF437D05B5 Ubuntu Archive
Automatic Signing Key <email address hidden>
W: You may want to run apt-get update to correct these problems
$
First, how obtuse is it for apt-get update failing and then suggesting I run
apt-get update to remedy the problem? I know I can still just do ``apt-get
dist-upgrade'' and it will work assuming I enter 'y' at the "are you sure
archive.ubuntu.com hasn't been compromised and is now releasing trojans?"
proviso. But the thing is I am not. So I set about trying to figure out a
workaround. And the only way I've found to remedy the problem is by removing the
contents of /var/lib/apt/lists and /var/lib/
apt-get update completes, no problem. And then I can dist-upgrade without
answering that question. And I would be happy with this workaround if it worked.
Because then someone commits a new package, and I update again, and this
happens.. again. Now I've gone and purged the lists dir 3 times now to work
around and I'd just like to know what the matter is and if anyone else is having
this problem.
FYI my /etc/apt/
5f942e58b05
Thanks for this bugreport.
If you can reproduce the problem easily, can you please run: pkgAcquire: :Auth=true"
"apt-get update -o Debug::
and attach the output here?
I'm not able to reproduce the problem here and I verified that the md5sum of
your key is correct.