Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

On GPG check FAILED recommend using --enableplugin=expired-pgp-keys #2156

Open
FrostyX opened this issue Nov 8, 2024 · 1 comment · May be fixed by #2166
Open

On GPG check FAILED recommend using --enableplugin=expired-pgp-keys #2156

FrostyX opened this issue Nov 8, 2024 · 1 comment · May be fixed by #2166
Labels
Priority:MEDIUM triaged

Comments

@FrostyX
Copy link
Member

FrostyX commented Nov 8, 2024

When DNF fails because of expired GPG keys like this:

error: Verifying a signature using certificate 519B71E71D5251A03A517DF8454724A7D1C452B2 (praiskup_myvpn (None) <praiskup#myvpn@copr.fedorahosted.org>):
  1. Certificiate 454724A7D1C452B2 invalid: certificate is not alive
      because: The primary key is not live
      because: Expired on 2022-09-02T17:42:01Z
  2. Key 454724A7D1C452B2 invalid: key is not alive
      because: The primary key is not live
      because: Expired on 2022-09-02T17:42:01Z
error: Verifying a signature using certificate 519B71E71D5251A03A517DF8454724A7D1C452B2 (praiskup_myvpn (None) <praiskup#myvpn@copr.fedorahosted.org>):
  1. Certificiate 454724A7D1C452B2 invalid: certificate is not alive
      because: The primary key is not live
      because: Expired on 2022-09-02T17:42:01Z
  2. Key 454724A7D1C452B2 invalid: key is not alive
      because: The primary key is not live
      because: Expired on 2022-09-02T17:42:01Z

Can we please improve the message to recommend using --enableplugin=expired-pgp-keys or enabling the plugin in /etc/dnf/plugins/expired-pgp-keys.conf? Otherwise, users have no way of discovering that the plugin exists.

By the way, a user enabled the plugin on my recommendation today, and it fixed his issues perfectly.

For the record, here is a step-by-step reproducer
rpm-software-management/dnf5#1192 (comment)
@FrostyX FrostyX mentioned this issue Nov 8, 2024
Open
@jan-kolarik
Copy link
Member

Hi @FrostyX, thanks for creating the ticket! I agree that providing such a hint would be beneficial for the users.

@github-project-automation github-project-automation bot moved this to Backlog in DNF team Nov 11, 2024
FrostyX added a commit to FrostyX/dnf that referenced this issue Dec 2, 2024
@FrostyX
Recommend a plugin to resolve expired GPG keys
6cf18a7 
Fix rpm-software-management#2156
@FrostyX FrostyX linked a pull request Dec 2, 2024 that will close this issue
Open
FrostyX added a commit to FrostyX/dnf that referenced this issue Dec 2, 2024
@FrostyX
Recommend a plugin to resolve expired GPG keys
3516532 
Fix rpm-software-management#2156
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
Priority:MEDIUM triaged
Projects
DNF team
Status: Backlog
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Recommend a plugin to resolve expired GPG keys FrostyX/dnf
2 participants
@FrostyX @jan-kolarik