The Repository 'Http://Dl.Google.Com/Linux/Chrome/Deb Stable Release' Is Not Signed

The repository 'http://dl.google.com/linux/chrome/deb stable Release' is not signed

You don't. You must wait for Google to renew their keys and for an update.

The important message is:

The following signatures were invalid: EXPKEYSIG 1397BC53640DB551 Google Inc. (Linux Packages Signing Authority)

It means that the cryptographic signature is invalid. The source of this can be an attack, a misconfiguration, or other kind of technical problem. Forcing your system to update will result in running an unverified version of your web browser, which can expose you to a lot of security troubles.

E: Repository 'http://dl.google.com/linux/chrome/deb stable Release' changed its 'Origin' value from 'Google, Inc.' to 'Google LLC'

Solution

Run:

$ sudo apt update

Note this is apt and not apt-get

Then enter y to accept the change:

E: Repository 'http://dl.google.com/linux/chrome/deb stable Release' changed its 'Origin' value from 'Google, Inc.' to 'Google LLC'
N: This must be accepted explicitly before updates for this repository can be applied. See apt-secure(8) manpage for details.
Do you want to accept these changes and continue updating from this repository? [y/N] y

The error will not show up again. You need to run sudo apt-get update and sudo apt-get upgrade as usual to get your updates.

Details

As pointed out in the question, this error message is meant to ensure that the new entity named Google LLC you are fetching Google Chrome updates from is the same as Google, Inc. that your system trusts and knows its signature. By accepting the change, you are asking your system to trust Google LLC and accept Google Chrome updates from it in the future.

Error when installing google-chrome-stable on python image in Dockerfile

As per the instructions here you need to add the chrome repo. So changing your dockerfile to something like the following works:

FROM python:3.8
WORKDIR /test
RUN wget -q -O - https://dl-ssl.google.com/linux/linux_signing_key.pub | apt-key add -
RUN echo "deb [arch=amd64] http://dl.google.com/linux/chrome/deb/ stable main" >> /etc/apt/sources.list.d/google.list
RUN apt-get update && apt-get install -y google-chrome-stable

How to disallow update command to look for google-chrome dependency

You can comment your update link for google chrome in the apt source list file.

1. cd /etc/apt
2. sudo grep -rn "google" * to find out the apt list file which includes the update link of google chrome
3. Use one of your familiar editor to mark those lines.

In my case, the messages are as followed,

sources.list.d/google-chrome.list:3:deb http://dl.google.com/linux/chrome/deb/ stable main
sources.list.d/google-chrome.list.save:3:deb http://dl.google.com/linux/chrome/deb/ stable main

The following signatures couldn't be verified because the public key is not available while updating sudo apt update

I am got the same issue while running the below command

$ sudo apt update

In your case, you can follow below option to resolved these issue.

1. sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 78BD65473CB3BD13

   Or

2. sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys 78BD65473CB3BD13

In first option, we don't have to decide which port should be or you can go with second option. Either way, both will work.

---

Related Topics