GPG key changed?

This post was flagged by the community and is temporarily hidden.

it took me 4 minutes to ask the same, lol :rofl:

Yep we rotated the key for the repos.

Have you updated the official key now? That’s the first thing i tried…

This post was flagged by the community and is temporarily hidden.

https://keys.openpgp.org/search?q=dev@jitsi.org

This post was flagged by the community and is temporarily hidden.

Either way, it doesn’t matter, you’ve switched key without providing the new key.

All documentation points to: https:// download . jitsi.org/jitsi-key.gpg.key

Which is the wrong key…

Well that is the correct key …

wget https://download.jitsi.org/jitsi-key.gpg.key
$ cat jitsi-key.gpg.key  | gpg --verbose --dry-run --import
gpg: pub  rsa4096/B4D2D216F1FD7806 2021-04-15  Jitsi <dev@jitsi.org>
gpg: Total number processed: 1
1 Like

Oh sorry, I think I clicked the wrong button for your initial post. trying to restore it

cat jitsi-key.gpg.key | gpg --verbose --dry-run
gpg: keybox ‘/root/.gnupg/pubring.kbx’ created
gpg: WARNING: no command supplied. Trying to guess what you mean …
pub rsa4096 2021-04-15 [SC]
FFD65A0DA2BEBDEB73D44C8BB4D2D216F1FD7806
uid Jitsi dev@jitsi.org
sig B4D2D216F1FD7806 2021-04-15 [selfsig]
sub rsa4096 2021-04-15 [E]
sig B4D2D216F1FD7806 2021-04-15 [keybind]

But… It doesn’t help, I can delete it and re-add it and there is still an error…

those, maybe because of the links, were marked as Spam, and me thinking that I approve them as not Spam, but I deleted those and cannot restore them at the moment. I’m sorry for the mess.

If you have followed the quick install your sources list will be like:
deb [signed-by=/usr/share/keyrings/jitsi-keyring.gpg] https://download.jitsi.org stable/

The instructions are:

curl https://download.jitsi.org/jitsi-key.gpg.key | sudo sh -c 'gpg --dearmor > /usr/share/keyrings/jitsi-keyring.gpg'
echo 'deb [signed-by=/usr/share/keyrings/jitsi-keyring.gpg] https://download.jitsi.org stable/' | sudo tee /etc/apt/sources.list.d/jitsi-stable.list > /dev/null

If this is the case you need to:

sudo rm /usr/share/keyrings/jitsi-keyring.gpg
sudo curl https://download.jitsi.org/jitsi-key.gpg.key | sudo sh -c 'gpg --dearmor > /usr/share/keyrings/jitsi-keyring.gpg'
sudo apt update
4 Likes

Why doesn’t it use: /etc/apt/trusted.gpg

Because of this:

1 Like

Which adds a catch 22, now doesn’t it… =)

sudo rm /usr/share/keyrings/jitsi-keyring.gpg
sudo curl https://download.jitsi.org/jitsi-key.gpg.key | sudo sh -c 'gpg --dearmor > /usr/share/keyrings/jitsi-keyring.gpg'
sudo apt update

Did that, but still get:

W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: https://download.jitsi.org unstable/ InRelease: The following signatures couldn’t be verified because the public key is not available: NO_PUBKEY B4D2D216F1FD7806
W: Failed to fetch https://download.jitsi.org/unstable/InRelease The following signatures couldn’t be verified because the public key is not available: NO_PUBKEY B4D2D216F1FD7806
W: Some index files failed to download. They have been ignored, or old ones used instead.
temporary issue?
thanks
Sascha

edit:
alright, didn’t have [signed-by=/usr/share/keyrings/jitsi-keyring.gpg] in my repo…
thanks
Sascha

I also have this error:

Err:6 https://download.jitsi.org stable/ InRelease            
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY B4D2D216F1FD7806
...
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: https://download.jitsi.org stable/ InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY B4D2D216F1FD7806
W: Failed to fetch https://download.jitsi.org/stable/InRelease  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY B4D2D216F1FD7806
W: Some index files failed to download. They have been ignored, or old ones used instead.

I don’t have this file: /usr/share/keyrings/jitsi-keyring.gpg

Trying to run sudo curl https://download.jitsi.org/jitsi-key.gpg.key | sudo sh -c 'gpg --dearmor > /usr/share/keyrings/jitsi-keyring.gpg' && apt update doesn’t help.

Please advice, thanks!