build-qa-image failing due to Google GPG keys expiring
The build-qa-image is failing (https://gitlab.com/gitlab-org/gitlab-ce/-/jobs/195406535):
WARNING: The following packages cannot be authenticated!
google-chrome-stable
E: There were unauthenticated packages and -y was used without --allow-unauthenticated
The command '/bin/sh -c apt-get update -q && apt-get install -y google-chrome-stable && apt-get clean' returned a non-zero code: 100
The key expired today:
$ gpg linux_signing_key.pub
pub 1024D/7FAC5991 2007-03-08 Google, Inc. Linux Package Signing Key <linux-packages-keymaster@google.com>
sub 2048g/C07CB649 2007-03-08
pub 4096R/D38B4796 2016-04-12 Google Inc. (Linux Packages Signing Authority) <linux-packages-keymaster@google.com>
sub 4096R/640DB551 2016-04-12 [expires: 2019-04-12]
sub 4096R/997C215E 2017-01-24 [expires: 2020-01-24]
For now, we can probably workaround this by adding --allow-unauthenticated
to the apt-get
call, but perhaps we should build this QA image with Chrome outside of this project.
Slack conversation: https://gitlab.slack.com/archives/C02PF508L/p1555051832011400