I can’t see any movement at oss.atix.de. Does anybody know if subscription-manager for Ubuntu 24.04 is coming any time soon?
Not sure if you are the correct one to ping @maximilian, but you at least will know who is doing the work.
Hey @voorman
We (ATIX) are working on it and will report back to you. I cannot give any timeline yet but will let you know ASAP.
2 Likes
Hi @voorman
We have packaged, signed, and published subscription-manager for Ubuntu 24.04 “Noble”: Ubuntu 24.04 “Noble” on oss.atix.de.
1 Like
Thank you, maximilian! For packaging in the first place of course, and for letting me know! Have a great weekend! I’m going to test and deploy Ubuntu 24.04.
1 Like
The packages seem to work fine, but with a warning though:
N: Missing Signed-By in the sources.list(5) entry
for each line. Should subscription-manager perhaps use a different format for the rhsm.sources file as of Ubuntu 24.04?
You need to store the public key you have used for the debian packages to /etc/apt/trusted.gpg.d/ and it should be named like “client.gpg”. Please try this.
@maximilian we should document this.
1 Like
I tried this:
#!/bin/bash
GPG_DIR="/etc/apt/trusted.gpg.d/"
TEMP_KEYRING="/tmp/apt-keyring.gpg"
SOURCE_FILE="/etc/apt/sources.list.d/rhsm.sources"
mkdir -p $GPG_DIR
while IFS= read -r line; do
if [[ $line =~ ^name:\ (.*) ]]; then
repo_name="${BASH_REMATCH[1]}"
repo_name=${repo_name// /_}
fi
if [[ $line =~ ^gpgkey:\ (.*) ]]; then
gpgkey_url="${BASH_REMATCH[1]}"
gpg --no-default-keyring --keyring $TEMP_KEYRING --fingerprint
wget -qO- "$gpgkey_url" | gpg --no-default-keyring --keyring $TEMP_KEYRING --import
gpg --no-default-keyring --keyring $TEMP_KEYRING --export -o "${GPG_DIR}${repo_name}.gpg"
rm $TEMP_KEYRING
fi
done < $SOURCE_FILE
But that didn’t fix the warnings. Is there a different way I should save these keys?
@voorman We have updated the description for Ubuntu 24.04 “Noble”. Please let me know if this works for you.
1 Like
Hi @maximilian, it worked! Had to rebuild my template, but that’s my procedure.
So in short, it works when I follow your procedure on my template. I have to add your key to the /etc/apt/trusted.gpg.d/ dir before I subscribe to the UB24 repo’s.
I’m open to discuss or exchange any further info if you like!
Kind regards,
Jasper
2 Likes
Hello,
Im having the same issue, specifically on Ubuntu 24.04 (but not on Debian 12).
Im not using ATIX key (i have my own keys for the repos published by katello, and i mirror the atix repo there)
I already have my key in /etc/apt/sources.list.d but i still get:
N: Missing Signed-By in the sources.list(5) entry for 'katello://redacted.net/pulp/deb/redacted/Prod_Environment/Ubuntu_24_04_Composite/custom/Puppet_Agent/Puppet_agent_7_DEB'
N: Missing Signed-By in the sources.list(5) entry for 'katello://redacted.net/pulp/deb/redacted/Prod_Environment/Ubuntu_24_04_Composite/custom/Ubuntu_24_04/ATIX_Ubuntu_24_04_foreman_client_tools'
N: Missing Signed-By in the sources.list(5) entry for 'katello://redacted.net/pulp/deb/redacted/Prod_Environment/Ubuntu_24_04_Composite/custom/Ubuntu_24_04/Ubuntu_24_04_main'
N: Missing Signed-By in the sources.list(5) entry for 'katello://redacted.net/pulp/deb/redacted/Prod_Environment/Ubuntu_24_04_Composite/custom/Ubuntu_24_04/Ubuntu_24_04_updates'
N: Missing Signed-By in the sources.list(5) entry for 'katello://redacted.net/pulp/deb/redacted/Prod_Environment/Ubuntu_24_04_Composite/custom/Ubuntu_24_04/Ubuntu_24_04_security'
They are just warnings, but to me they seem to indicate that we need to have “signed-by” in the DEB822 sources file which subscription-manager creates?
If i add this manually then it works without warnings.
Signed-By: /etc/apt/trusted.gpg.d/katello-repos.gpg
This is not an issue on Debian 12 so i guess Ubuntu is more strict here, or perhaps newer apt is more strict…
So i went looking into the source code of the subscription-manager and it’s also mentioned somewhere in the forums here.
But i found this part: subscription-manager/src/rhsm/repofile.py at 3e116be960d8eafc055749d58cd28704add785d6 · ATIX-AG/subscription-manager · GitHub
Which basically means:
look in /etc/apt/trusted.gpg.d/ for a file starting with:
orcharhino_ or pulp_ or client.
But also ending with:
.gpg or .asc
Because Ubuntu expects .asc in that directory, you should try to do the following:
apt update # Show's the warnings
echo meep > /etc/apt/trusted.gpg.d/client.asc
<unregister and register your client> # sorry realised this after posting here
apt update # Warnings are gone
Let me know if that worked 
i know it seems weird, and it is. But it did fix those warnings and i believe the subscription-manager manages GPG keys already properly, so this is purely to fix these informational warnings.