Package: gpg
Version: 2.4.7-17
Severity: important
User:
debian-qa@lists.debian.org
Usertags: i386
Dear Maintainer,
One my machines can't update its APT database because every `apt update` fails with:
```
# apt-get update
Get:1
http://security.debian.org stable-security InRelease [48.0 kB]
Get:2
http://security.debian.org testing-security InRelease [48.0 kB]
Get:3
http://deb.debian.org/debian stable InRelease [151 kB]
Err:1
http://security.debian.org stable-security InRelease
No good signature
Err:2
http://security.debian.org testing-security InRelease
No good signature
Get:4
http://deb.debian.org/debian testing InRelease [178 kB]
Err:3
http://deb.debian.org/debian stable InRelease
No good signature
Err:4
http://deb.debian.org/debian testing InRelease
No good signature
Reading package lists... Done
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. OpenPGP signature verification failed:
http://security.debian.org stable-security InRelease: No good signature
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. OpenPGP signature verification failed:
http://security.debian.org testing-security InRelease: No good signature
W: OpenPGP signature verification failed:
http://deb.debian.org/debian stable InRelease: No good signature
E: The repository '
http://deb.debian.org/debian stable InRelease' is not signed.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.
W: OpenPGP signature verification failed:
http://deb.debian.org/debian testing InRelease: No good signature
E: The repository '
http://deb.debian.org/debian testing InRelease' is not signed.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.
#
```
I checked the `cat /etc/apt/sources.list.d/debian.sources` and the `/usr/share/keyrings/debian-archive-keyring.gpg` file it points to, and their md5sum is exactly the same as on another machine where it works fine.
The issue appears to be that the new version of GPG (or some library on which it depends) uses an instruction that's not supported by my CPU (Pentium III), although AFAIK a Pentium III should still be supported.
The reason why I think that's the issue is not only that this is the only machine I have with such an old CPU (and I've had similar problems with it in the past) but also because the above four "No good signature" messages are accompagnied by the following 4 lines in `dmesg`:
```
[662377.292836] traps: sqv[21420] trap invalid opcode ip:6e3ac9 sp:bf9fe160 error:0 in sqv[21eac9,4d5000+231000]
[662377.364879] traps: sqv[21421] trap invalid opcode ip:65dac9 sp:bfd72a80 error:0 in sqv[21eac9,44f000+231000]
[662377.401355] traps: sqv[21422] trap invalid opcode ip:6a4ac9 sp:bf86ac70 error:0 in sqv[21eac9,496000+231000]
[662377.457522] traps: sqv[21423] trap invalid opcode ip:65dac9 sp:bfcb1610 error:0 in sqv[21eac9,44f000+231000]
```
-- System Information:
Debian Release: 13.0
APT prefers testing
APT policy: (990, 'testing'), (500, 'stable-security'), (100, 'stable') Architecture: i386 (x86_64)
Foreign Architectures: amd64
Kernel: Linux 6.12.25-amd64 (SMP w/8 CPU threads; PREEMPT)
Locale: LANG=fr_CH.UTF-8, LC_CTYPE=fr_CH.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages gpg depends on:
ii gpgconf 2.4.7-17
ii init-system-helpers 1.68
ii libassuan9 3.0.2-2
ii libbz2-1.0 1.0.8-6
ii libc6 2.41-8
ii libgcrypt20 1.11.0-7
ii libgpg-error0 1.51-4
ii libksba8 1.6.7-2+b1
ii libnpth0t64 1.8-3
ii libreadline8t64 8.2-6
ii libsqlite3-0 3.46.1-4
ii zlib1g 1:1.3.dfsg+really1.3.1-1+b1
Versions of packages gpg recommends:
ii gnupg 2.4.7-17
gpg suggests no packages.
-- no debconf information
--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)