Unable to pull in package repo: "pfSense-repoc: invalid signature"
-
Hi,
I was going to install a new package today for my homelab, but noticed I am unable to install any new packages on my virtualized whitebox install of pfSense+ 23.09, the "Available Packages" page shows no available packages and the update page shows the message "pfSense-repoc: invalid signature":
Running the following command (
pkg-static upgrade -fy pfSense-repoc) in the shell also results in an error:pfSense-repoc Updating pfSense-core repository catalogue... pkg-static: An error occured while fetching package pkg-static: An error occured while fetching package repository pfSense-core has no meta file, using default settings pkg-static: An error occured while fetching package pkg-static: An error occured while fetching package Unable to update repository pfSense-core Updating pfSense repository catalogue... pkg-static: An error occured while fetching package pkg-static: An error occured while fetching package repository pfSense has no meta file, using default settings pkg-static: An error occured while fetching package pkg-static: An error occured while fetching package Unable to update repository pfSense Error updating repositories!All attempts to run
pkg-static -d updateresult in< HTTP/1.1 400 Bad Request < Server: nginx < Date: Mon, 04 Dec 2023 22:43:12 GMT < Content-Type: text/html < Content-Length: 208 < Connection: closeAlso, a reboot did not clear the error. I also verified proper DNS operation on the pfSense host.
Any help would be much appreciated,
Thank you!
-
The 'Bad rquest' error indicates the system is sending an invalid client cert.
The 'invalid signature' error from repoc indicates it's not able to pull a new cert.
Send me your NDI in chat and I'll check it.
Steve
-
@stephenw10 NDI sent!
Thank you for investigating!
-
This ended up being my fault by adding a new NIC to the VM in Proxmox and therefore invalidating/changing the NDI. I was able to reactivate with a new pfSense+ token and now everything works again.
-
Hello! I'm having the same problem. What is the proper way to handle / avoid this ?
-
Send me the NDI in chat and I'll check it.
-
Hi, I too am facing this issue. What should I do?
-
Also send me the NDI in chat so I can check it.
-
Mind if I send you my NDI - am also experiencing the same issue.
-
I now have the same issue, after replacing a NIC with a faulty port. How does one invalidate the prior license key so that it can register again on the same device (albeit with a different network card)?
Thanks!
-
Send me your NDI in chat and I'll check it
-
Having this issue on CE 2.7.0, won't register 2.7.2.
- Couldn't find host pkg00-atx.netgate.com in the .netrc file; using defaults
- Hostname pkg00-atx.netgate.com was found in DNS cache
- Trying 208.123.73.207:443...
- Connected to pkg00-atx.netgate.com (208.123.73.207) port 443
- ALPN: curl offers http/1.1
- CAfile: none
- CApath: /etc/ssl/certs/
- SSL certificate problem: self-signed certificate in certificate chain
- Closing connection
pkg-static: An error occured while fetching package
Unable to update repository pfSense
-
@jlw52761 said in Unable to pull in package repo: "pfSense-repoc: invalid signature":
SSL certificate problem: self-signed certificate in certificate chain
Run:
certctl rehashThen recheck.
-
@stephenw10 what a simple fix. Strange on a fresh install that’s a problem but seems to have resolved. Will need to retry the upgrade in the daytime me.
-
That's fixed in 2.7.2.
-
Hi @stephenw10 pfSense-repoc: invalid signature here.
Thanks -
After system failure and disk replacement I'm facing same issue and unfortunetely running certctl rehash gives no effect.
Do I have to regenerate my token for my pfSense+ license? If yes, how to do that? -
Send me your NDI in chat and I'll check it. That would only be an issue in Plus though.
-
Happy New Year,
after connecting two pfSense instances via WireGuard VPN (home and cloud) I have the same problem.
On both instances I have the "pfSense-repoc: invalid signature" message on the System - Update page.@stephenw10 May I send you the two NDIs via PM?
Best regards
Arne -
Sure send me them in chat and I can check them.
