#10821 (Bug) OBS: Ubuntu 16.04: uses weak digest algorithm (SHA1)

Closed
Component: DisplayCAL
Created by romplx 6 years ago

Last modified 6 years ago

When adding OBS Ubuntu 16.04 repository, apt warns that the repo uses SHA1 for encryption. The repo works, but this message appears every time you issue apt-get update:

W: http://download.opensuse.org/repositories/home:/fhoech/xUbuntu_16.04/Release.gpg: Signature by key 16B2D5A8C8B89785C1A93E67405899B3DAE4169B uses weak digest algorithm (SHA1)

5 comments on “OBS: Ubuntu 16.04: uses weak digest algorithm (SHA1)”

It’s just a warning, but not something I can change as the repo is provided by openSUSE Build Service. You may report this upstream for the openSUSE project against the BuildService component.

According to https://github.com/openSUSE/obs-sign/issues/5 , you have to switch from default RSA to DSA keys …

Creating a new key can be done with: osc signkey --create home:youruser:project
 You users will have to import the new key.



Then you may want trigger a rebuild of that project to make sure that all alreasy existing packages are signed again with the new key.

Florian Höch says:

2018-02-26 at 0:57

Thanks, that’s helpful, I may try that.
1. Florian Höch says:
  
  2018-02-26 at 17:05
  
  Key has been updated. Let me know if this gets rid of the warning.

Yeah its fixed. Thanks!

Comments are closed.

Display Calibration and Characterization powered by ArgyllCMS