Ubuntu (Linux)で、apt update したところ、Veeamのバックアップエージェントの更新確認でエラーになった。エラーをみると、PGPキーの有効期限が切れているというエラーだった。VeeamのPGPキーを更新したので、そのメモ。
apt updateで表示されたエラー
W: Failed to fetch http://repository.veeam.com/backup/linux/agent/dpkg/debian/public/dists/stable/InRelease The following signatures were invalid: EXPKEYSIG 3268CF038EEC045B Veeam Software Repository key <support@veeam.com>
W: Some index files failed to download. They have been ignored, or old ones used instead.
対応方法
念のため、PGPキーのリストを表示して確認する。(やらなくても問題はない)
sudo apt-key list
Veeamの古いPGPキー(GPGキー)を削除するために、下記のコマンドを実行する。
sudo apt-key del FBF8A590
Veeamの新しいGPGキーをダウンロードするために、下記のコマンドを実行する。
sudo wget http://repository.veeam.com/keys/veeam.gpg -O /etc/apt/trusted.gpg.d/veeam.gpg
もう一度、apt Updateする。
sudo apt update
これでアップデートが成功すれば、完了。
対応したときのログ
zen@web:~$ sudo apt-key
Usage: apt-key [--keyring file] [command] [arguments]
Manage apt's list of trusted keys
apt-key add <file> - add the key contained in <file> ('-' for stdin)
apt-key del <keyid> - remove the key <keyid>
apt-key export <keyid> - output the key <keyid>
apt-key exportall - output all trusted keys
apt-key update - update keys using the keyring package
apt-key net-update - update keys using the network
apt-key list - list keys
apt-key finger - list fingerprints
apt-key adv - pass advanced options to gpg (download key)
If no specific keyring file is given the command applies to all keyring files.
zen@web:~$ sudo apt-key list
/etc/apt/trusted.gpg
--------------------
pub rsa2048 2017-02-20 [SC]
9DD9 479D 06BA A713 2280 3AC1 6633 2B78 417E 73EA
uid [ unknown] Hatena Co., Ltd. <admin@mackerel.io>
~~~~略~~~~~
/etc/apt/trusted.gpg.d/veeam.gpg
--------------------------------
pub rsa4096 2016-05-06 [SC]
EFAF F6B4 4E68 80EA DDD2 17E4 7AFD EEB8 FBF8 A590
uid [ unknown] Veeam Software Repository key <support@veeam.com>
sub rsa4096 2016-05-06 [E]
zen@web:~$
zen@web:~$ sudo apt-key del FBF8A590
OK
zen@web:~$
zen@web:~$ sudo wget http://repository.veeam.com/keys/veeam.gpg -O /etc/apt/trusted.gpg.d/veeam.gpg
--2022-09-08 10:19:26-- http://repository.veeam.com/keys/veeam.gpg
Resolving repository.veeam.com (repository.veeam.com)... 99.84.50.24, 99.84.50.103, 99.84.50.113, ...
Connecting to repository.veeam.com (repository.veeam.com)|99.84.50.24|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 4401 (4.3K) [application/octet-stream]
Saving to: '/etc/apt/trusted.gpg.d/veeam.gpg'
/etc/apt/trusted.gp 100%[===================>] 4.30K --.-KB/s in 0s
2022-09-08 10:19:26 (503 MB/s) - '/etc/apt/trusted.gpg.d/veeam.gpg' saved [4401/4401]
zen@web:~$ sudo apt update
Hit:1 http://jp.archive.ubuntu.com/ubuntu bionic InRelease
Hit:2 http://apt.mackerel.io/v2 mackerel InRelease
Hit:3 http://jp.archive.ubuntu.com/ubuntu bionic-updates InRelease
Hit:4 http://jp.archive.ubuntu.com/ubuntu bionic-backports InRelease
Get:5 http://repository.veeam.com/backup/linux/agent/dpkg/debian/public stable InRelease [7,549 B]
Get:6 http://repository.veeam.com/backup/linux/agent/dpkg/debian/public stable/veeam amd64 Packages [6,448 B]
Hit:8 http://security.ubuntu.com/ubuntu bionic-security InRelease
Hit:10 http://ppa.launchpad.net/brightbox/ruby-ng/ubuntu bionic InRelease
Hit:7 https://downloads.mariadb.com/MariaDB/mariadb-10.3/repo/ubuntu bionic InRelease
Hit:9 https://downloads.mariadb.com/MaxScale/2.4/ubuntu bionic InRelease
Hit:11 https://downloads.mariadb.com/Tools/ubuntu bionic InRelease
Fetched 14.0 kB in 2s (6,034 B/s)
Reading package lists... Done
Building dependency tree
Reading state information... Done
3 packages can be upgraded. Run 'apt list --upgradable' to see them.
N: Skipping acquire of configured file 'main/binary-i386/Packages' as repository 'http://downloads.mariadb.com/MariaDB/mariadb-10.3/repo/ubuntu bionic InRelease' doesn't support architecture 'i386'
zen@web:~$
参考
https://helpcenter.veeam.com/docs/veeampn/userguide/veeampn_update_troubleshooting.html?ver=21