Re: [p2-dev] P2 repository update failure

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [p2-dev] P2 repository update failure

From: Ed Merks <ed.merks@xxxxxxxxx>
Date: Thu, 6 Mar 2025 14:43:21 +0100
Delivered-to: p2-dev@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/p2-dev/>
List-help: <mailto:p2-dev-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/p2-dev>, <mailto:p2-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/p2-dev>, <mailto:p2-dev-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla Thunderbird

Please ask questions here:

https://github.com/eclipse-equinox/p2/discussions

Your problem sounds more like an issue where the signature was presentbut the key was not present. Some of the very early implementationdetails for the PGP key support was a bit flawed with respect to how andwhere the keys were maintained, i.e., originally only as a property onthe root of the repository. In the later versions we always stored boththe key and the signature on each artifact and ensured thatmirroring/downloading always transferred/copied these properties properly.


On 06.03.2025 05:40, Amit Patil via p2-dev wrote:

Hello devs,
I am working on a product, which is a client application starter.Server side is AIX and GUI is windows. We use migration scripts tomigrate the application from one version to another.Here, in version 20.4 of my application, I am using p2 repositoryversion 2021-06, and in version 21.4 of my application, p2 repositoryversion 2023-03 is used. Now the difference here is obviously the p2repository, but 2021-06 p2 repo does not have any pgp signatures inits artifacts.xml file and 2023-03 does have pgp signatures in it.When I start the application, the update gets stuck and it freezes.When I debugged it, the error was this: P2 update finished but notsuccessful. Event result: Status ERROR: org.eclipse.equinox.p2.enginecode=4 An error occurred while collecting items to be installed ...Public key not found for 8074478291308066379.
It says public key not found. Now, I updated the p2 repository to2022-06 which was the first p2 version to use pgp signatures. And theerror was gone and the application got successfully updated. I want tomake sure that the older p2 repository was the issue because it didnot have any pgp signatures.
If the old release does not have any signatures, why should itsuddenly ask for signatures during an update to a newer version? Thatdoes not make sense. For years I have updated my private Eclipseversion via p2 through all the changes (introduction of signatures,bundling the JRE with Eclipse) without problems. Only once I had to dosomething manually because they disabled http repositories by default.Though I do every update, so it might be that the situation isdifferent if one jumps over four+ releases.
Can someone please help me here to confirm that not having the pgpsignatures in the old p2 release was the actual root cause or wasthere anything else?
Thanks,
Amit Patil

_______________________________________________
p2-dev mailing list
p2-dev@xxxxxxxxxxx
To unsubscribe from this list, visit https://www.eclipse.org/mailman/listinfo/p2-dev

References:
- [p2-dev] P2 repository update failure
  - From: Amit Patil

Prev by Date: [p2-dev] P2 repository update failure
Previous by thread: [p2-dev] P2 repository update failure
Index(es):
- Date
- Thread

Breadcrumbs