[SOLVED] apt gpg key still failing for non-subscription repository

castillian

New Member
Nov 10, 2020
5
0
1
122
I saw that there was a similar thread on the forum a few months ago, and it was unclear if it was ever resolved. I'm new to proxmox and would like to evaluate it but it's not very confidence-inspiring to have such infrastructure problems with bad certificates. I've managed to manually download the gpg file at http://download.proxmox.com/debian/proxmox-ve-release-6.x.gpg and the sha512sum does match, and I can perform apt-key add, but when I then attempt either apt update or apt-get update, the process errors due to certificate verification failure (could not handshake 144.217.255.162:443). The gpg file is dated 23-may-2019.
 

fabian

Proxmox Staff Member
Staff member
Jan 7, 2016
7,251
1,330
164
you probably configured a wrong repository? without subscription, the correct one (for PVE) is

Code:
deb http://ftp.debian.org/debian buster main contrib
deb http://ftp.debian.org/debian buster-updates main contrib

# PVE pve-no-subscription repository provided by proxmox.com,
# NOT recommended for production use
deb http://download.proxmox.com/debian/pve buster pve-no-subscription

# security updates
deb http://security.debian.org/debian-security buster/updates main contrib
 

castillian

New Member
Nov 10, 2020
5
0
1
122
may you post full output of apt update command?
Here's the output, in two parts. First STDOUT:
Code:
Hit:1 http://security.debian.org buster/updates InRelease
Hit:2 http://ftp.us.debian.org/debian buster InRelease
Hit:3 http://ftp.us.debian.org/debian buster-updates InRelease
Ign:4 https://download.proxmox.com/debian/pve buster InRelease
Err:5 https://download.proxmox.com/debian/pve buster Release
  Certificate verification failed: The certificate is NOT trusted. The name in the certificate does not match the expected.  Could not handshake: Error in the certificate verification. [IP: 144.217.225.162 443]
Reading package lists...
And here's STDERR:
Code:
E: The repository 'https://download.proxmox.com/debian/pve buster Release' does not have a Release file.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.
And here's the relevant line in my apt sources.list
Code:
  deb https://download.proxmox.com/debian/pve buster pve-no-subscription
 

janssensm

Well-Known Member
Dec 18, 2016
202
63
48
On top of the page, next to watch or unwatch button, there's a 3 dot button with pull down menu and "edit thread", you can set it to solved there.
 

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get your own in 60 seconds.

Buy now!