Missing Signed-By in the source list

Hi every one,

I’m facing error messages when I launch apt update :

greg@greg-NUC11TNKv7:~$ sudo apt update
Atteint :1 http://mirrors.ircam.fr/pub/ubuntu/archive noble InRelease
Atteint :2 http://mirrors.ircam.fr/pub/ubuntu/archive noble-updates InRelease                                                                                    
Atteint :3 https://dl.winehq.org/wine-builds/ubuntu jammy InRelease                                                                                              
Atteint :4 http://mirrors.ircam.fr/pub/ubuntu/archive noble-security InRelease                                                                                   
Atteint :5 http://mirrors.ircam.fr/pub/ubuntu/archive noble-backports InRelease                                                                                  
Réception de :6 https://esm.ubuntu.com/apps/ubuntu noble-apps-security InRelease [7 532 B]                                                                       
Réception de :7 https://esm.ubuntu.com/apps/ubuntu noble-apps-updates InRelease [7 468 B]                          
Atteint :8 https://ppa.launchpadcontent.net/sane-project/sane-release/ubuntu noble InRelease                       
Réception de :9 https://esm.ubuntu.com/infra/ubuntu noble-infra-security InRelease [7 462 B]                  
Réception de :10 https://esm.ubuntu.com/infra/ubuntu noble-infra-updates InRelease [7 461 B]
Atteint :11 https://debian.qgis.org/debian jammy InRelease                  
29,9 ko réceptionnés en 1s (44,8 ko/s)
Lecture des listes de paquets... Fait
Construction de l'arbre des dépendances... Fait
Lecture des informations d'état... Fait      
2 paquets peuvent être mis à jour. Exécutez « apt list --upgradable » pour les voir.
N: Missing Signed-By in the sources.list(5) entry for 'https://esm.ubuntu.com/apps/ubuntu'
N: Missing Signed-By in the sources.list(5) entry for 'https://esm.ubuntu.com/apps/ubuntu'
N: Missing Signed-By in the sources.list(5) entry for 'https://esm.ubuntu.com/infra/ubuntu'
N: Missing Signed-By in the sources.list(5) entry for 'https://esm.ubuntu.com/infra/ubuntu'
greg@greg-NUC11TNKv7:~$ 

As you can see, I have “Missing Signed-By…” error messages. I have this message since I updated Ubunut 22.04 to 24.04.

Have you got any clue to solve this ?

Thx a lot

I’m no pro here but I’ll take a shot at it.

Do you have an Ubuntu Pro subscription?If yes keep reading,if no then what follows won’t help.

Open up Software&Updates then open Ubuntu Pro,is Pro enabled?If not enable it and under Security are the three switches toggled on?If not toggle them on and try updating again.

Hello,

thx for the suggestion, unfortunately, they all were already enabled

image1052×580 70.8 KB

Under Other Software are both entries for these ticked?

noble-apps-security noble-apps-updates
https://esm.ubuntu.com/apps/ubuntu

noble-infra-security noble-security-updates
https://esm.ubuntu.com/infra/ubuntu

Hello,

I think so :

image1060×584 95.8 KB

My only other thought is it may be an issue from upgrading from Jammy to Noble but that’s pretty much the extent of my ability to help at this point.

There are certainly more knowledgeable people here who should be able to help.

Those are only "N"otes, not warnings or errors. It just means that repository is signed by a globally-trusted APT key (stored somewhere in /etc/apt/trusted.gpg.d) instead of being signed by a key specific to that repository. You can safely ignore those notes.

Addressing the notes would involve manually specifying which specific key in /etc/apt/trusted.gpg.d is used to sign those repositories. To start figuring out how/where to do that would involve seeing the output from running the following commands in Terminal -

grep -F -r 'https://esm.ubuntu.com/' /etc/apt/sources.list.d
ls /etc/apt/trusted.gpg.d/
ls /var/lib/apt/lists/esm.ubuntu.com_*InRelease

Hello,

sorry for the delay but I’m a bit occupied by my job this days. Here is your request :

greg@greg-NUC11TNKv7:~$ grep -F -r 'https://esm.ubuntu.com/' /etc/apt/sources.list.d
ls /etc/apt/trusted.gpg.d/
ls /var/lib/apt/lists/esm.ubuntu.com_*InRelease
/etc/apt/sources.list.d/ubuntu-esm-infra.list.save:deb https://esm.ubuntu.com/infra/ubuntu jammy-infra-security main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.save:# deb-src https://esm.ubuntu.com/infra/ubuntu jammy-infra-security main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.save:deb https://esm.ubuntu.com/infra/ubuntu jammy-infra-updates main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.save:# deb-src https://esm.ubuntu.com/infra/ubuntu jammy-infra-updates main
/etc/apt/sources.list.d/ubuntu-esm-infra.sources:URIs: https://esm.ubuntu.com/infra/ubuntu
/etc/apt/sources.list.d/ubuntu-esm-apps.list.save:deb https://esm.ubuntu.com/apps/ubuntu jammy-apps-security main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.save:# deb-src https://esm.ubuntu.com/apps/ubuntu jammy-apps-security main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.save:deb https://esm.ubuntu.com/apps/ubuntu jammy-apps-updates main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.save:# deb-src https://esm.ubuntu.com/apps/ubuntu jammy-apps-updates main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.distUpgrade:deb https://esm.ubuntu.com/apps/ubuntu noble-apps-security main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.distUpgrade:# deb-src https://esm.ubuntu.com/apps/ubuntu jammy-apps-security main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.distUpgrade:deb https://esm.ubuntu.com/apps/ubuntu noble-apps-updates main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.distUpgrade:# deb-src https://esm.ubuntu.com/apps/ubuntu jammy-apps-updates main
/etc/apt/sources.list.d/ubuntu-esm-apps.sources:URIs: https://esm.ubuntu.com/apps/ubuntu
/etc/apt/sources.list.d/ubuntu-esm-apps.sources.save:URIs: https://esm.ubuntu.com/apps/ubuntu
/etc/apt/sources.list.d/ubuntu-esm-infra.sources.save:URIs: https://esm.ubuntu.com/infra/ubuntu
/etc/apt/sources.list.d/ubuntu-esm-infra.list.distUpgrade:deb https://esm.ubuntu.com/infra/ubuntu noble-infra-security main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.distUpgrade:# deb-src https://esm.ubuntu.com/infra/ubuntu jammy-infra-security main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.distUpgrade:deb https://esm.ubuntu.com/infra/ubuntu noble-infra-updates main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.distUpgrade:# deb-src https://esm.ubuntu.com/infra/ubuntu jammy-infra-updates main
appimagelauncher-team-ubuntu-stable.gpg
appimagelauncher-team-ubuntu-stable.gpg~
bablu-boy-ubuntu-nutty_0_1.gpg
bablu-boy-ubuntu-nutty_0_1.gpg~
bablu-boy-ubuntu-nutty.gpg
bablu-boy-ubuntu-nutty.gpg~
elementary-os-ubuntu-stable.gpg
elementary-os-ubuntu-stable.gpg~
flatpak-ubuntu-stable.gpg
flatpak-ubuntu-stable.gpg~
freecad-maintainers-ubuntu-freecad-stable.gpg
freecad-maintainers-ubuntu-freecad-stable.gpg~
microsoft.gpg
ubuntu-keyring-2012-cdimage.gpg
ubuntu-keyring-2018-archive.gpg
ubuntu-pro-esm-apps.gpg
ubuntu-pro-esm-infra.gpg
/var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-security_InRelease
/var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-updates_InRelease
/var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-security_InRelease
/var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-updates_InRelease
greg@greg-NUC11TNKv7:~$ 

The files to add Signed-By to are probably /etc/apt/sources.list.d/ubuntu-esm-apps.sources and /etc/apt/sources.list.d/ubuntu-esm-infra.sources

Could you please post the full contents of each of these two files?

To verify that the relevant keyrings for these repositories are what it looks like, you can run these commands:

cat /var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-security_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg
cat /var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-updates_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg
cat /var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-security_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg
cat /var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-updates_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg

If these are the correct keyrings for these repositories, every single one of these commands should say “Good signature from …”

It seems everything is ok :

greg@greg-NUC11TNKv7:~$ cat /var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-security_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg
gpgv: Signature faite le mer. 11 déc. 2024 18:13:10 CET
gpgv:                avec la clef RSA E8A443CE358113D187BEE0E6AB01A101DB53907B
gpgv: Bonne signature de « Ubuntu Apps Automatic Signing Key <esm@canonical.com> »
greg@greg-NUC11TNKv7:~$ cat /var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-updates_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg
gpgv: Signature faite le mer. 11 déc. 2024 18:13:11 CET
gpgv:                avec la clef RSA E8A443CE358113D187BEE0E6AB01A101DB53907B
gpgv: Bonne signature de « Ubuntu Apps Automatic Signing Key <esm@canonical.com> »
greg@greg-NUC11TNKv7:~$ cat /var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-security_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg
gpgv: Signature faite le mer. 11 déc. 2024 18:10:24 CET
gpgv:                avec la clef RSA 56F7650A24C9E9ECF87C4D8D4067E40313CB4B13
gpgv: Bonne signature de « Ubuntu Extended Security Maintenance Automatic Signing Key v2 <esm@canonical.com> »
greg@greg-NUC11TNKv7:~$ cat /var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-updates_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg
gpgv: Signature faite le mer. 11 déc. 2024 18:10:25 CET
gpgv:                avec la clef RSA 56F7650A24C9E9ECF87C4D8D4067E40313CB4B13
gpgv: Bonne signature de « Ubuntu Extended Security Maintenance Automatic Signing Key v2 <esm@canonical.com> »
greg@greg-NUC11TNKv7:~$ 

no ?
(“Bonne signature” means “good signature from”)