Fix Microsoft Edge install on Ubuntu 26.04 in Linux Intune Installer#265
Open
theneiljohnson wants to merge 1 commit intomicrosoft:masterfrom
Open
Fix Microsoft Edge install on Ubuntu 26.04 in Linux Intune Installer#265theneiljohnson wants to merge 1 commit intomicrosoft:masterfrom
theneiljohnson wants to merge 1 commit intomicrosoft:masterfrom
Conversation
The 2026-04-23 release wrote the selected Microsoft signing key to a single
fixed path (/usr/share/keyrings/microsoft.gpg). On Ubuntu 26.04+ this
overwrote the legacy microsoft.asc key with the newer microsoft-2025.asc key,
which broke GPG verification for the Microsoft Edge apt repo (still signed
with the legacy key on every Ubuntu release).
Changes:
- Always import microsoft.asc to /usr/share/keyrings/microsoft.gpg so the
Edge repo verifies on every supported Ubuntu release.
- On Ubuntu 26.04+, additionally import microsoft-2025.asc to
/usr/share/keyrings/microsoft-2025.gpg (separate file, no overwrite).
- New MS_GPG_KEYRING variable points the PMC repo's signed-by= at the
correct keyring per release.
- RHEL/AlmaLinux path unchanged.
- Header 'Recent changes' block updated.
|
I'm seeing the same issue in my testing. Ubuntu 24.04 runs successfully, though. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Fixes a regression introduced in #252 (release 2026-04-23) that breaks Microsoft Edge installation on Ubuntu 26.04+.
The bug
The previous release wrote the selected Microsoft signing key to a single fixed path:
On Ubuntu 26.04+ this overwrote the legacy
microsoft.asckey with the newermicrosoft-2025.asckey. But the Microsoft Edge apt repo (packages.microsoft.com/repos/edge) is still signed with the legacy key on every Ubuntu release, and our Edgesources.list.dentry hard-codessigned-by=/usr/share/keyrings/microsoft.gpg. Result:apt-get updatefails GPG verification on the Edge repo, andmicrosoft-edge-stablecannot install on 26.04.The fix
microsoft.ascto/usr/share/keyrings/microsoft.gpgso the Edge repo verifies on every supported Ubuntu release.microsoft-2025.ascto/usr/share/keyrings/microsoft-2025.gpg(separate file, no overwrite).MS_GPG_KEYRINGvariable points the PMC repo'ssigned-by=at the correct keyring per release:/usr/share/keyrings/microsoft-2025.gpg/usr/share/keyrings/microsoft.gpgsigned-by=is unchanged (still legacymicrosoft.gpg), which is now correct on 26.04+ too.Recent changesblock updated.Scope
Linux/Intune Installer/installer.shTesting
bash -nsyntax check passes.packages.microsoft.comsigning key assignments per release.