The repository 'http://dl.google.com/linux/chrome/deb stable Release' is not signed

Question 1

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.

                        </div>

This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.

Closed 2 years ago.

                    Improve this question

                </a>

I have the following step in my CircleCi setup to install Google Chrome:

  - run:
      name: Install Chrome headless
      working_directory: /
      command: |
        wget -q -O - https://dl-ssl.google.com/linux/linux_signing_key.pub | apt-key add - && \
          echo "deb http://dl.google.com/linux/chrome/deb/ stable main" > /etc/apt/sources.list.d/google.list && \
          apt-get update && \
          apt-get install -y dbus-x11 google-chrome-unstable && \
          rm -rf /var/lib/apt/lists/*

It stopped working and return the following error message:

W: GPG error: http://dl.google.com/linux/chrome/deb stable Release: The following signatures were invalid: EXPKEYSIG 1397BC53640DB551 Google Inc. (Linux Packages Signing Authority) <linux-packages-keymaster@google.com>
W: The repository 'http://dl.google.com/linux/chrome/deb stable Release' is not signed.
N: Data from such a repository can't be authenticated and is therefore potentially dangerous to use.
N: See apt-secure(8) manpage for repository creation and user configuration details.
Reading package lists… Done
Building dependency tree
Reading state information… Done
The following additional packages will be installed:
libappindicator3-1 libdbusmenu-gtk3-4 libindicator3-7
Recommended packages:
libu2f-udev
The following NEW packages will be installed:
dbus-x11 google-chrome-unstable libappindicator3-1 libdbusmenu-gtk3-4
libindicator3-7
0 upgraded, 5 newly installed, 0 to remove and 48 not upgraded.
Need to get 60.4 MB of archives.
After this operation, 214 MB of additional disk space will be used.
WARNING: The following packages cannot be authenticated!
google-chrome-unstable
E: There were unauthenticated packages and -y was used without –allow-unauthenticated
Exited with code 100

How can I fix that?

Question 2

You don't. You must wait for Google to renew their keys and for an update.

The important message is:

The following signatures were invalid: EXPKEYSIG 1397BC53640DB551 Google Inc. (Linux Packages Signing Authority)

It means that the cryptographic signature is invalid. The source of this can be an attack, a misconfiguration, or other kind of technical problem. Forcing your system to update will result in running an unverified version of your web browser, which can expose you to a lot of security troubles.

The repository 'http://dl.google.com/linux/chrome/deb stable Release' is not signed

Question

Answer