W: GPG error: https://apt.corretto.aws stable InRelease: The following signatures were invalid: EXPKEYSIG

[kumartri]

Thank you for taking the time to help improve OpenJDK and Corretto.

If your request concerns a security vulnerability then please report it by email to aws-security@amazon.com instead of here. (You can find more information regarding security issues at https://aws.amazon.com/security/vulnerability-reporting/.)

Otherwise, if your issue concerns OpenJDK and is not specific to Corretto we ask that you raise it to the OpenJDK community. Depending on your contributor status for OpenJDK, please use the JDK bug system or the appropriate mailing list for the given problem area or update project.

If your issue is specific to Corretto, then you are in the right place. Please proceed with the following.

Describe the bug

We are seeing an issue while building our application on JDK 17

To Reproduce

Try to build an image with CorrettoJDK 17

Expected behavior

Should build successfully with out any issues and worked couple of days ago

Screenshots

If applicable, add screenshots to help explain your problem.

Platform information

OS: [Ubuntu]
Version [java-17-amazon-corretto-jdk]

Additional context

Add any other context about the problem here.

For VM crashes, please attach the error report file. By default the file name is hs_err_pidpid.log, where pid is the process ID of the process.

[kumartri]

W: GPG error: https://apt.corretto.aws/ stable InRelease: The following signatures were invalid: EXPKEYSIG A122542AB04F24E3 Amazon Services LLC (Amazon Corretto release) corretto-team@amazon.com E: The repository https://apt.corretto.aws/ stable InRelease is not signed. xargs: unmatched single quote; by default quotes are special to xargs unless you use the -0 option W: GPG error: https://dl.google.com/linux/chrome/deb stable InRelease: The following signatures E: The repository https://dl.google.com/linux/chrome/deb stable InRelease is not signed. Reading package lists... Building dependency tree... Reading state information... E: Unable to locate package java-17-amazon-corretto-jdk

[thombergs]

We observe a similar issue when running apt-get update in our build:

#13 2.482 Reading package lists...
#13 3.416 W: https://apt.corretto.aws/dists/stable/InRelease: Key is stored in legacy trusted.gpg keyring (/etc/apt/trusted.gpg), see the DEPRECATION section in apt-key(8) for details.
#13 3.416 W: GPG error: https://apt.corretto.aws/ stable InRelease: The following signatures were invalid: EXPKEYSIG A122542AB04F24E3 Amazon Services LLC (Amazon Corretto release) <[corretto-team@amazon.com](mailto:corretto-team@amazon.com)>
#13 3.416 E: The repository 'https://apt.corretto.aws stable InRelease' is not signed.
#13 ERROR: process "/bin/sh -c apt-get update -q" did not complete successfully: exit code: 100

Running curl -fsSL https://apt.corretto.aws/corretto.key > /etc/apt/trusted.gpg.d/corretto.asc before the apt-get update fixes the issue for us.

[Yauhenda]

Same issue for us while apt-get update command

W: GPG error: https://apt.corretto.aws/ stable InRelease: The following signatures were invalid: EXPKEYSIG A122542AB04F24E3 Amazon Services LLC (Amazon Corretto release) corretto-team@amazon.com E: The repository 'https://apt.corretto.aws/ stable InRelease' is not signed.

[kumartri]

We did Running command curl -fsSL https://apt.corretto.aws/corretto.key > /etc/apt/trusted.gpg.d/corretto.asc and echo Force cache invalidation prior to running apt-get update nothing working so far still seeing issue.