[SERVER-38666] GPG Error: KEYEXPIRED 1544811256 Created: 17/Dec/18  Updated: 01/Mar/19  Resolved: 01/Mar/19

Status: Closed
Project: Core Server
Component/s: Packaging
Affects Version/s: 3.6.9
Fix Version/s: None

Type: Bug Priority: Major - P3
Reporter: Logan Marchione Assignee: Cristopher Stauffer
Resolution: Done Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Operating System: ALL
Participants:

 Description   

I have MongoDB 3.6 installed on Ubuntu 16.04 x64. When trying to run sudo apt update, I receive the error below:

W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: http://repo.mongodb.org/apt/ubuntu xenial/mongodb-org/3.6 Release: The following signatures were invalid: KEYEXPIRED 1544811256

 



 Comments   
Comment by Kelsey Schubert [ 01/Mar/19 ]

We've looked into this a bit, but are still not quite sure why it was necessary for you to refresh the certs. Since this doesn't appear to be a widespread issue and has a straightforward workaround, we're going to resolve this ticket and focus on other improvements to MongoDB.

Kind regards,
Kelsey

Comment by Simon Pithers [ 19/Dec/18 ]

thanks! 

sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv 2930ADAE8CAF5059EE73BB4B58712A2291FA4AD5

 

that worked for me

Comment by Cristopher Stauffer [ 17/Dec/18 ]

I don't believe so. I am trying to get more details regarding the circumstances under which one would have to refresh the certs. I will close this ticket once I have that information.

Comment by Logan Marchione [ 17/Dec/18 ]

Thanks, that worked! Will everyone using MongoDB 3.6 need to run that command manually?

$ sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv 2930ADAE8CAF5059EE73BB4B58712A2291FA4AD5
[sudo] password for logan:
Executing: /tmp/tmp.S9i0IvO3mw/gpg.1.sh --keyserver
hkp://keyserver.ubuntu.com:80
--recv
2930ADAE8CAF5059EE73BB4B58712A2291FA4AD5
gpg: requesting key 91FA4AD5 from hkp server keyserver.ubuntu.com
gpg: key 91FA4AD5: "MongoDB 3.6 Release Signing Key <packaging@mongodb.com>" 1 new signature
gpg: Total number processed: 1
gpg: new signatures: 1

Comment by Cristopher Stauffer [ 17/Dec/18 ]

Logan, can you try re-importing the keys here (See Step 1):

https://docs.mongodb.com/v3.6/tutorial/install-mongodb-on-ubuntu/

Comment by Cristopher Stauffer [ 17/Dec/18 ]

Logan, we are in the process of investigating. We have renewed the certificates recently (in preparation for expiration) and we have confirmed that the keys work on a clean machine/install. At this time we are looking at a potential caching issues.

Generated at Thu Feb 08 04:49:38 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.