Bug#942413: [emacs] Installation of packages from GNU ELPA fails due to expired key
On Wed, 15 Jul 2020 00:00:44 -0500, Steve Suehs wrote: > Is it upstream 26.3 that fixes this? What process would bring 26.3 to > buster? There is no way really to get 26.3 into Buster, but there is a bug #969971 which requests additional updates for the version in Buster to fix this. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=969971 /* era */ -- If this were a real .signature, it would suck less. Well, maybe not.
Bug#942413: [emacs] Installation of packages from GNU ELPA fails due to expired key
Is it upstream 26.3 that fixes this? What process would bring 26.3 to buster? On Tue, 15 Oct 2019 23:40:13 +0200 Michael Kesper wrote: > Package: emacs > Version: 1:26.1+1-3.2 > Severity: important > > --- Please enter the report below this line. --- > > The key for signing the emacs packages in the official GNU ELPA archive has changed. > The key included in this emacs version has expired. > This disables the download of the archive list as well as any package from elpa. > > The measures listed on https://elpa.gnu.org/packages/gnu-elpa-keyring-update.html > can only partly fix this situation, it leads to: > > package-install-from-archive: https://elpa.gnu.org/packages/gnu-elpa-keyring-update-2019.3.tar: Bad Request > > Please update the included keyring (or use a newer upstream where it's included). > > --- System information. --- > Architecture: > Kernel: Linux 4.19.0-6-amd64 > > Debian Release: 10.1 > 990 stable security.debian.org > 990 stable ftp2.de.debian.org > 500 stable-updates ftp2.de.debian.org > > --- Package information. --- > Depends (Version) | Installed > -+-= > emacs-gtk (>= 1:26.1) | 1:26.1+1-3.2 > OR emacs-lucid (>= 1:26.1) | > OR emacs-nox (>= 1:26.1) | > > > Package's Recommends field is empty. > > Package's Suggests field is empty. >
Bug#942413: [emacs] Installation of packages from GNU ELPA fails due to expired key
Package: emacs-lucid Version: 1:26.1+1-3.2+deb10u1 Followup-For: Bug #942413 I see the same output, but in my case I have already manually fetched the latest signing key and imported it into ~/.emacs.d/elpa/gnupg, namely 066DAFCB81E42C40. So my problem may be different, or it may be another subtle aspect of the same problem. Please see also my question on stackexchange: https://emacs.stackexchange.com/questions/58424/is-elpa-broken -- System Information: Debian Release: 10.4 APT prefers stable APT policy: (990, 'stable'), (500, 'stable-updates'), (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-9-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /usr/bin/dash Init: sysvinit (via /sbin/init) Versions of packages emacs-lucid depends on: ii emacs-bin-common 1:26.1+1-3.2+deb10u1 ii emacs-common 1:26.1+1-3.2+deb10u1 ii libacl12.2.53-4 ii libasound2 1.1.8-1 ii libc6 2.28-10 ii libcairo2 1.16.0-4 ii libdbus-1-31.12.16-1 ii libfontconfig1 2.13.1-2 ii libfreetype6 2.9.1-3+deb10u1 ii libgdk-pixbuf2.0-0 2.38.1+dfsg-1 ii libgif75.1.4-3 ii libglib2.0-0 2.58.3-2+deb10u2 ii libgnutls303.6.7-4+deb10u3 ii libgomp1 8.3.0-6 ii libgpm21.20.7-5 ii libice62:1.0.9-2 ii libjpeg62-turbo1:1.5.2-2+b1 ii liblcms2-2 2.9-3 ii libm17n-0 1.8.0-2 ii libmagickcore-6.q16-6 8:6.9.10.23+dfsg-2.1 ii libmagickwand-6.q16-6 8:6.9.10.23+dfsg-2.1 ii libotf00.9.13-4 ii libpng16-161.6.36-6 ii librsvg2-2 2.44.10-2.1 ii libselinux12.8-1+b1 ii libsm6 2:1.2.3-1 ii libsystemd0241-7~deb10u4 ii libtiff5 4.1.0+git191117-2~deb10u1 ii libtinfo6 6.1+20181013-2+deb10u2 ii libx11-6 2:1.6.7-1 ii libx11-xcb12:1.6.7-1 ii libxcb11.13.1-2 ii libxext6 2:1.3.3-1+b2 ii libxfixes3 1:5.0.3-1 ii libxft22.3.2-2 ii libxinerama1 2:1.1.4-2 ii libxml22.9.4+dfsg1-7+b3 ii libxmu62:1.1.2-2+b3 ii libxpm41:3.5.12-1 ii libxrandr2 2:1.5.1-1 ii libxrender11:0.9.10-1 ii libxt6 1:1.1.5-1+b3 ii xaw3dg 1.5+E-18.3 ii zlib1g 1:1.2.11.dfsg-1 emacs-lucid recommends no packages. Versions of packages emacs-lucid suggests: ii emacs-common-non-dfsg 1:26.1+1-1 -- no debconf information
Bug#942413: [emacs] Installation of packages from GNU ELPA fails due to expired key
Michael Kesper writes: > Dear maintainers, > > I don't think this is an adequate solution as that version does not get > installed > by default, even if buster-updates are enabled. > The version in buster is just broken without this patch. Sure, until the buster-updates make it in to buster proper (unless the default priorities are changed in /etc/apt/preferences -- apt-preferences(5))? Assuming I don't misunderstand the situation. Thanks -- Rob Browning rlb @defaultvalue.org and @debian.org GPG as of 2011-07-10 E6A9 DA3C C9FD 1FF8 C676 D2C4 C0F0 39E9 ED1B 597A GPG as of 2002-11-03 14DD 432F AE39 534D B592 F9A0 25C8 D377 8C7E 73A4
Bug#942413: [emacs] Installation of packages from GNU ELPA fails due to expired key
Dear maintainers, I don't think this is an adequate solution as that version does not get installed by default, even if buster-updates are enabled. The version in buster is just broken without this patch. $ LANG=C apt policy emacs emacs: Installed: 1:26.1+1-3.2 Candidate: 1:26.1+1-3.2 Version table: 1:26.1+1-3.2+deb10u1 500 500 http://ftp2.de.debian.org/debian buster-updates/main amd64 Packages 500 http://ftp2.de.debian.org/debian buster-updates/main i386 Packages *** 1:26.1+1-3.2 990 990 http://ftp2.de.debian.org/debian buster/main amd64 Packages 990 http://ftp2.de.debian.org/debian buster/main i386 Packages 100 /var/lib/dpkg/status Bye Michael signature.asc Description: OpenPGP digital signature
Bug#942413: [emacs] Installation of packages from GNU ELPA fails due to expired key
Michael Kesper writes: > Please update the included keyring (or use a newer upstream where it's > included). I believe the fixes should be in buster-updates and bullseye: https://packages.debian.org/emacs https://metadata.ftp-master.debian.org/changelogs//main/e/emacs/emacs_26.1+1-3.2+deb10u1_changelog https://metadata.ftp-master.debian.org/changelogs//main/e/emacs/emacs_26.1+1-4_changelog but please feel free to re-open the bug if if you don't feel that adequately addresses the problem. Thanks -- Rob Browning rlb @defaultvalue.org and @debian.org GPG as of 2011-07-10 E6A9 DA3C C9FD 1FF8 C676 D2C4 C0F0 39E9 ED1B 597A GPG as of 2002-11-03 14DD 432F AE39 534D B592 F9A0 25C8 D377 8C7E 73A4
Bug#942413: [emacs] Installation of packages from GNU ELPA fails due to expired key
Package: emacs Version: 1:26.1+1-3.2 Severity: important --- Please enter the report below this line. --- The key for signing the emacs packages in the official GNU ELPA archive has changed. The key included in this emacs version has expired. This disables the download of the archive list as well as any package from elpa. The measures listed on https://elpa.gnu.org/packages/gnu-elpa-keyring-update.html can only partly fix this situation, it leads to: package-install-from-archive: https://elpa.gnu.org/packages/gnu-elpa-keyring-update-2019.3.tar: Bad Request Please update the included keyring (or use a newer upstream where it's included). --- System information. --- Architecture: Kernel: Linux 4.19.0-6-amd64 Debian Release: 10.1 990 stable security.debian.org 990 stable ftp2.de.debian.org 500 stable-updates ftp2.de.debian.org --- Package information. --- Depends(Version) | Installed -+-= emacs-gtk (>= 1:26.1) | 1:26.1+1-3.2 OR emacs-lucid (>= 1:26.1) | OR emacs-nox(>= 1:26.1) | Package's Recommends field is empty. Package's Suggests field is empty. signature.asc Description: OpenPGP digital signature
