Missing Signed-By in the source list

Hi every one,

I’m facing error messages when I launch apt update :

greg@greg-NUC11TNKv7:~$ sudo apt update
Atteint :1 http://mirrors.ircam.fr/pub/ubuntu/archive noble InRelease
Atteint :2 http://mirrors.ircam.fr/pub/ubuntu/archive noble-updates InRelease                                                                                    
Atteint :3 https://dl.winehq.org/wine-builds/ubuntu jammy InRelease                                                                                              
Atteint :4 http://mirrors.ircam.fr/pub/ubuntu/archive noble-security InRelease                                                                                   
Atteint :5 http://mirrors.ircam.fr/pub/ubuntu/archive noble-backports InRelease                                                                                  
Réception de :6 https://esm.ubuntu.com/apps/ubuntu noble-apps-security InRelease [7 532 B]                                                                       
Réception de :7 https://esm.ubuntu.com/apps/ubuntu noble-apps-updates InRelease [7 468 B]                          
Atteint :8 https://ppa.launchpadcontent.net/sane-project/sane-release/ubuntu noble InRelease                       
Réception de :9 https://esm.ubuntu.com/infra/ubuntu noble-infra-security InRelease [7 462 B]                  
Réception de :10 https://esm.ubuntu.com/infra/ubuntu noble-infra-updates InRelease [7 461 B]
Atteint :11 https://debian.qgis.org/debian jammy InRelease                  
29,9 ko réceptionnés en 1s (44,8 ko/s)
Lecture des listes de paquets... Fait
Construction de l'arbre des dépendances... Fait
Lecture des informations d'état... Fait      
2 paquets peuvent être mis à jour. Exécutez « apt list --upgradable » pour les voir.
N: Missing Signed-By in the sources.list(5) entry for 'https://esm.ubuntu.com/apps/ubuntu'
N: Missing Signed-By in the sources.list(5) entry for 'https://esm.ubuntu.com/apps/ubuntu'
N: Missing Signed-By in the sources.list(5) entry for 'https://esm.ubuntu.com/infra/ubuntu'
N: Missing Signed-By in the sources.list(5) entry for 'https://esm.ubuntu.com/infra/ubuntu'
greg@greg-NUC11TNKv7:~$ 

As you can see, I have “Missing Signed-By…” error messages. I have this message since I updated Ubunut 22.04 to 24.04.

Have you got any clue to solve this ?

Thx a lot

I’m no pro here but I’ll take a shot at it.

Do you have an Ubuntu Pro subscription?If yes keep reading,if no then what follows won’t help.

Open up Software&Updates then open Ubuntu Pro,is Pro enabled?If not enable it and under Security are the three switches toggled on?If not toggle them on and try updating again.

Hello,

thx for the suggestion, unfortunately, they all were already enabled

Under Other Software are both entries for these ticked?

noble-apps-security noble-apps-updates
https://esm.ubuntu.com/apps/ubuntu

noble-infra-security noble-security-updates
https://esm.ubuntu.com/infra/ubuntu

Hello,

I think so :

My only other thought is it may be an issue from upgrading from Jammy to Noble but that’s pretty much the extent of my ability to help at this point.

There are certainly more knowledgeable people here who should be able to help.

1 Like

Those are only "N"otes, not warnings or errors. It just means that repository is signed by a globally-trusted APT key (stored somewhere in /etc/apt/trusted.gpg.d) instead of being signed by a key specific to that repository. You can safely ignore those notes.

Addressing the notes would involve manually specifying which specific key in /etc/apt/trusted.gpg.d is used to sign those repositories. To start figuring out how/where to do that would involve seeing the output from running the following commands in Terminal -

grep -F -r 'https://esm.ubuntu.com/' /etc/apt/sources.list.d
ls /etc/apt/trusted.gpg.d/
ls /var/lib/apt/lists/esm.ubuntu.com_*InRelease

Hello,

sorry for the delay but I’m a bit occupied by my job this days. Here is your request :

greg@greg-NUC11TNKv7:~$ grep -F -r 'https://esm.ubuntu.com/' /etc/apt/sources.list.d
ls /etc/apt/trusted.gpg.d/
ls /var/lib/apt/lists/esm.ubuntu.com_*InRelease
/etc/apt/sources.list.d/ubuntu-esm-infra.list.save:deb https://esm.ubuntu.com/infra/ubuntu jammy-infra-security main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.save:# deb-src https://esm.ubuntu.com/infra/ubuntu jammy-infra-security main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.save:deb https://esm.ubuntu.com/infra/ubuntu jammy-infra-updates main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.save:# deb-src https://esm.ubuntu.com/infra/ubuntu jammy-infra-updates main
/etc/apt/sources.list.d/ubuntu-esm-infra.sources:URIs: https://esm.ubuntu.com/infra/ubuntu
/etc/apt/sources.list.d/ubuntu-esm-apps.list.save:deb https://esm.ubuntu.com/apps/ubuntu jammy-apps-security main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.save:# deb-src https://esm.ubuntu.com/apps/ubuntu jammy-apps-security main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.save:deb https://esm.ubuntu.com/apps/ubuntu jammy-apps-updates main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.save:# deb-src https://esm.ubuntu.com/apps/ubuntu jammy-apps-updates main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.distUpgrade:deb https://esm.ubuntu.com/apps/ubuntu noble-apps-security main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.distUpgrade:# deb-src https://esm.ubuntu.com/apps/ubuntu jammy-apps-security main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.distUpgrade:deb https://esm.ubuntu.com/apps/ubuntu noble-apps-updates main
/etc/apt/sources.list.d/ubuntu-esm-apps.list.distUpgrade:# deb-src https://esm.ubuntu.com/apps/ubuntu jammy-apps-updates main
/etc/apt/sources.list.d/ubuntu-esm-apps.sources:URIs: https://esm.ubuntu.com/apps/ubuntu
/etc/apt/sources.list.d/ubuntu-esm-apps.sources.save:URIs: https://esm.ubuntu.com/apps/ubuntu
/etc/apt/sources.list.d/ubuntu-esm-infra.sources.save:URIs: https://esm.ubuntu.com/infra/ubuntu
/etc/apt/sources.list.d/ubuntu-esm-infra.list.distUpgrade:deb https://esm.ubuntu.com/infra/ubuntu noble-infra-security main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.distUpgrade:# deb-src https://esm.ubuntu.com/infra/ubuntu jammy-infra-security main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.distUpgrade:deb https://esm.ubuntu.com/infra/ubuntu noble-infra-updates main
/etc/apt/sources.list.d/ubuntu-esm-infra.list.distUpgrade:# deb-src https://esm.ubuntu.com/infra/ubuntu jammy-infra-updates main
appimagelauncher-team-ubuntu-stable.gpg
appimagelauncher-team-ubuntu-stable.gpg~
bablu-boy-ubuntu-nutty_0_1.gpg
bablu-boy-ubuntu-nutty_0_1.gpg~
bablu-boy-ubuntu-nutty.gpg
bablu-boy-ubuntu-nutty.gpg~
elementary-os-ubuntu-stable.gpg
elementary-os-ubuntu-stable.gpg~
flatpak-ubuntu-stable.gpg
flatpak-ubuntu-stable.gpg~
freecad-maintainers-ubuntu-freecad-stable.gpg
freecad-maintainers-ubuntu-freecad-stable.gpg~
microsoft.gpg
ubuntu-keyring-2012-cdimage.gpg
ubuntu-keyring-2018-archive.gpg
ubuntu-pro-esm-apps.gpg
ubuntu-pro-esm-infra.gpg
/var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-security_InRelease
/var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-updates_InRelease
/var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-security_InRelease
/var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-updates_InRelease
greg@greg-NUC11TNKv7:~$ 

The files to add Signed-By to are probably /etc/apt/sources.list.d/ubuntu-esm-apps.sources and /etc/apt/sources.list.d/ubuntu-esm-infra.sources

Could you please post the full contents of each of these two files?

To verify that the relevant keyrings for these repositories are what it looks like, you can run these commands:

cat /var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-security_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg
cat /var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-updates_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg
cat /var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-security_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg
cat /var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-updates_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg

If these are the correct keyrings for these repositories, every single one of these commands should say “Good signature from …”

It seems everything is ok :

greg@greg-NUC11TNKv7:~$ cat /var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-security_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg
gpgv: Signature faite le mer. 11 déc. 2024 18:13:10 CET
gpgv:                avec la clef RSA E8A443CE358113D187BEE0E6AB01A101DB53907B
gpgv: Bonne signature de « Ubuntu Apps Automatic Signing Key <esm@canonical.com> »
greg@greg-NUC11TNKv7:~$ cat /var/lib/apt/lists/esm.ubuntu.com_apps_ubuntu_dists_noble-apps-updates_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg
gpgv: Signature faite le mer. 11 déc. 2024 18:13:11 CET
gpgv:                avec la clef RSA E8A443CE358113D187BEE0E6AB01A101DB53907B
gpgv: Bonne signature de « Ubuntu Apps Automatic Signing Key <esm@canonical.com> »
greg@greg-NUC11TNKv7:~$ cat /var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-security_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg
gpgv: Signature faite le mer. 11 déc. 2024 18:10:24 CET
gpgv:                avec la clef RSA 56F7650A24C9E9ECF87C4D8D4067E40313CB4B13
gpgv: Bonne signature de « Ubuntu Extended Security Maintenance Automatic Signing Key v2 <esm@canonical.com> »
greg@greg-NUC11TNKv7:~$ cat /var/lib/apt/lists/esm.ubuntu.com_infra_ubuntu_dists_noble-infra-updates_InRelease | gpgv --keyring=/etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg
gpgv: Signature faite le mer. 11 déc. 2024 18:10:25 CET
gpgv:                avec la clef RSA 56F7650A24C9E9ECF87C4D8D4067E40313CB4B13
gpgv: Bonne signature de « Ubuntu Extended Security Maintenance Automatic Signing Key v2 <esm@canonical.com> »
greg@greg-NUC11TNKv7:~$ 

no ?
(“Bonne signature” means “good signature from”)

Yes, looks like those are the relevant keyrings :+1:

Now with the remaining requested information it should become clear where to add Signed-By and what to specify -

I don’t have a 24.04 install nor do I use Ubuntu Pro, so the only way I would know the content of those files (and thus where to suggest specifying the Signed-By options) is if you post their contents. Thanks :slightly_smiling_face:

Hello,

/etc/apt/sources.list.d/ubuntu-esm-apps.sources :

Types: deb
URIs: https://esm.ubuntu.com/apps/ubuntu
Suites: noble-apps-security noble-apps-updates
Components: main

/etc/apt/sources.list.d/ubuntu-esm-infra.sources :

Types: deb
URIs: https://esm.ubuntu.com/infra/ubuntu
Suites: noble-infra-security noble-infra-updates
Components: main

In /etc/apt/sources.list.d/ubuntu-esm-apps.sources, append this line -

Signed-By: /etc/apt/trusted.gpg.d/ubuntu-pro-esm-apps.gpg

And in /etc/apt/sources.list.d/ubuntu-esm-infra.sources, append this line -

Signed-By: /etc/apt/trusted.gpg.d/ubuntu-pro-esm-infra.gpg

There should be no blank lines between these added lines and the existing lines in those files.

To confirm this worked, run sudo apt update, it should complete without error and without showing the notes about missing Signed-By.

1 Like

Firstly, I’m sorry to take such a long time to answer : I’ve been quite busy at work, and it’s now holidays time…

Secondly : thanks a lot for having solved my problem. I don’t have any more error messages.

If it’s not too much, and as I’m still a beginner in Linux environment, could you explain to me why these lines weren’t in place ? I had no problem when I was on Ubuntu 22.04.

That question is likely unanswerable using remote volunteer support.
It’s like asking a mechanic why your bicycle tyre went flat…without letting them examine the tyre in their shop.

:sweat_smile:

As I try to understand everything, my questions are sometimes silly.

diplo95 - Hey :smiley:

This platform also serves as an institution of teaching, Here we abide by " the only silly question is the one not asked".

Believe me, we were all beginners at some point and none of us were born knowing what we know,

I speak for many -
-We stand on the shoulders of the giants who came before us.-

1 Like