

- #FAILED TO VERIFY SIGNATURE FOR MACPORTS SOURCE UPDATE#
- #FAILED TO VERIFY SIGNATURE FOR MACPORTS SOURCE VERIFICATION#
- #FAILED TO VERIFY SIGNATURE FOR MACPORTS SOURCE DOWNLOAD#
If what you say is correct, it would mean macport does not have really establish an "El Capitan" "chain of trust". All the data that are synchronized before and after seem to work with dependencies for me. Because as far as i can understand, the line wich is impacted by the test is only a "ssh key" validation.
#FAILED TO VERIFY SIGNATURE FOR MACPORTS SOURCE UPDATE#
Running this installer will only update MacPorts itself and leave your installed ports as-is.
#FAILED TO VERIFY SIGNATURE FOR MACPORTS SOURCE DOWNLOAD#
If your version of MacPorts is outdated, it is a much better idea to download one of the installers, because those are signed with an Apple Developer ID. This is a bad idea, because it breaks the chain of trust that normally ensures the macports update has not been tampered with.
#FAILED TO VERIFY SIGNATURE FOR MACPORTS SOURCE VERIFICATION#
Ui_debug "failed verification with key $pubkey" Replying to to sugget a (temporary) workaround:Įdit /opt/local/libexec/macports/lib/macports1.0/macports.tcl MD5 /opt/local/var/macports/sources//release/tarballs/base.tar MD5 /opt/local/var/macports/sources//release/tarballs/160 MD5 /opt/local/share/macports/macports-pubkey.pem rw-r-r- 1 root admin 27013120 Oct 11 16:34 /opt/local/var/macports/sources//release/tarballs/base.tar rw-r-r- 1 root admin 512 Oct 11 16:07 /opt/local/var/macports/sources//release/tarballs/160 r-r-r- 1 root admin 800 Oct 1 15:42 /opt/local/share/macports/macports-pubkey.pem Ls -lrt /opt/local/share/macports/macports-pubkey.pem /opt/local/var/macports/sources//release/tarballs/160 /opt/local/var/macports/sources//release/tarballs/base.tar Openssl dgst -rmd160 -verify /opt/local/share/macports/macports-pubkey.pem -signature. Here's all I see happening "under the hood" with the verification step - nothing very exciting. To report a bug, follow the instructions in the guide:Įrror: /opt/local/bin/port: port selfupdate failed: Failed to verify signature for MacPorts source! "macports::selfupdate base_updated"Įrror: Failed to verify signature for MacPorts source! Sent 36 bytes received 76 bytes 74.67 bytes/secĭEBUG: failed verification with key /opt/local/share/macports/macports-pubkey.pemĭEBUG: openssl output: Verification FailureĭEBUG: Failed to verify signature for MacPorts source! Sent 36 bytes received 69 bytes 70.00 bytes/sec

> Updating MacPorts base sources using rsync This problem repros for me using OS X 10.11 and the latest stable "MacPorts-2.3.4-10.11".ĭEBUG: Copying /Users/mherdeg/Library/Preferences/.ist to /opt/local/var/macports/home/Library/PreferencesĭEBUG: MacPorts sources location: /opt/local/var/macports/sources//release/tarballs Harris), grimreaper (Eitan Adler), bunk3m (Bunk3m), smeingast (Stefan Meingast), nortcele, netgamer7 (Roger Ward), eddieh (Eddie Hillenbrand), ClintO (Clint O), 0xced (Cédric Luthi), axet (Alexey Kuznetsov), todmorrison (Tod Morrison), petermisak (Peter Misak), bodait, neilt (Neil Tiffin), stromnov (Andrew Stromnov), jsalort (Julien Salort), Feuermurmel (Michael Schwarz), tk7r (Thomas Kotzian), fracai, vosslab (Neil Voss), majoc-at-astro (majoc-at-astro), texas-swift (Spencer Swift), jmgoicolea (Jose Goicolea), eschnett (Erik Schnetter), H3ik0, marco-comini (Marco Comini), skymoo (Adam Mercer), macuserguru Lambert), neurodroid (Christoph Schmidt-Hieber), avysk (Alexey Vyskubov), MaurizioLoreti, joaogeada (Joao Geada), mjwybrow (Michael Wybrow), deesto (John S. Owned sandym (Sandy Martel), NeilGirdhar (Neil), ryandesign (Ryan Schmidt), EnekoGotzon, rubendibattista (Ruben Di Battista), gsulshski (Greg Ulsh), hapaguy (Brian Kurt Fujikawa), moderndeveloperllc (Mark Garrett), epaell, Miroboru (Tor Andre Myrvoll), mndavidoff (Monte Davidoff), gallafent, djlambert (Derek J. Selfupdate fails with "Failed to verify signature for MacPorts source" Reported by: Last modified 7 years ago #49233 closed defect
