Forum Discussion
microsoft-edge-stable-115.0.1901.183-1.x86_64.rpm UPDATE on Fedora 38 fails with: "GPG check FAILED"
[root@leno-mini2 ~]# cat /etc/fedora-release
Fedora release 38 (Thirty Eight)
[root@leno-mini2 ~]# uname -a
Linux leno-mini2.localdomain 6.3.12-200.fc38.x86_64 #1 SMP PREEMPT_DYNAMIC Thu Jul 6 04:05:18 UTC 2023 x86_64 GNU/Linux
[root@leno-mini2 ~]# LANG=en_US.UTF8; export LANG
[root@leno-mini2 ~]# dnf update microsoft-edge-stable
Last metadata expiration check: 2:12:07 ago on Sat 22 Jul 2023 11:02:17 PM CEST.
Dependencies resolved.
====================================================================================================================================================================================
Package Architecture Version Repository Size
====================================================================================================================================================================================
Upgrading:
microsoft-edge-stable x86_64 115.0.1901.183-1 microsoft-edge 145 M
Transaction Summary
====================================================================================================================================================================================
Upgrade 1 Package
Total size: 145 M
Is this ok [y/N]: y
Downloading Packages:
[SKIPPED] microsoft-edge-stable-115.0.1901.183-1.x86_64.rpm: Already downloaded
Problem opening package microsoft-edge-stable-115.0.1901.183-1.x86_64.rpm
The downloaded packages were saved in cache until the next successful transaction.
You can remove cached packages by executing 'dnf clean packages'.
Error: GPG check FAILED
[root@leno-mini2 ~]# gpg --version
gpg (GnuPG) 2.4.0
libgcrypt 1.10.2-unknown
Copyright (C) 2021 Free Software Foundation, Inc.
License GNU GPL-3.0-or-later <https://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Home: /root/.gnupg
Supported algorithms:
Pubkey: RSA, ELG, DSA, ECDH, ECDSA, EDDSA
Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH,
CAMELLIA128, CAMELLIA192, CAMELLIA256
Hash: SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
Compression: Uncompressed, ZIP, ZLIB, BZIP2
[root@leno-mini2 ~]#Jeremiah-VThe issue seems to be resolved by now. A new stable version microsoft-edge-stable-115.0.1901.188-1 could be installed on my box with dnf update just now.
This is what worked for me on Fedora:
sudo dnf update -y --exclude=microsoft-edge-stable-115.0.1901.183-1Hi pschneider1968,
Thank you for reporting this issue! I've reached out to the feature owner asking them to investigate. I'll let you know once I have more info.
- The package has been temporarily hidden while the engineers investigate. Thanks again for reporting this!
Thanks for your feedback! I hope the engineers will find the reason for this issue and will be able to fix it and publish a corrected package soon.
Jeremiah-VThe issue seems to be resolved by now. A new stable version microsoft-edge-stable-115.0.1901.188-1 could be installed on my box with dnf update just now.
pschneider1968Other users on Reddit having the same issue reported a more detailed error message.
See this thread: https://www.reddit.com/r/MicrosoftEdge/comments/156khdd/error_gpg_check_failed/
E.g.:
Error: Transaction test error: package microsoft-edge-stable-115.0.1901.183-1.x86_64 does not verify: RSA signature: BAD (header tag 1002: invalid OpenPGP signature: Parsing an OpenPGP packet: Failed to parse Signature Packet because: Signature appears to be created by a non-conformant OpenPGP implementation, see <https://github.com/rpm-software-management/rpm/issues/2351>. because: Malformed MPI: leading bit is not set: expected bit 1 to be set in 0 (0))I have had Edge installed on this Fedora box for quite some time, and I have succesfully installed updates in the past for at least three or four times. So to me it seems that the (initially) imported GPG signing key is fine, but something in the way the most recent Edge update was signed by Microsoft must have changed, in a way that doesn't work out now.
pschneider1968Quite interestingly, the version from the Beta channel (with the same version and build number) i.e. microsoft-edge-beta-115.0.1901.183-1.x86_64.rpm does NOT exhibit this problem. I can download it with wget and install it with
rpm -U microsoft-edge-beta-115.0.1901.183-1.x86_64.rpmwithout getting a GPG check failure error message. So this one seems to be signed correctly. Same with the DEV version 116.
