[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
Oddity with RH-package signatures
- From: Ralf Corsepius <corsepiu faw uni-ulm de>
- To: RPM List <rpm-list redhat com>
- Subject: Oddity with RH-package signatures
- Date: Wed, 10 Sep 2003 07:44:04 +0200
Hi,
I am facing an oddity with RH-package signatures (RH-9, rpm-4.2-0.69,
gnupg-1.2.1-4) being used by newer rawhide packages:
Example:
# rpm --checksig atk-1.3.5-1.i386.rpm
atk-1.3.5-1.i386.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS:
GPG#e418e3aa)
OK, a missing key, let's import it:
# gpg --recv-keys e418e3aa
gpg: key E418E3AA: "Red Hat, Inc. automated build signing key (2003)
<rawhide@redhat.com>" not changed
gpg: Total number processed: 1
gpg: unchanged: 1
# gpg --armor --export e418e3aa > gpg-pubkey-e418e3aa
# rpm -qa gpg-pubkey
<none, all keys intentionally removed for demonstration>
# rpm --import gpg-pubkey-e418e3aa
# rpm -qa gpg-pubkey
gpg-pubkey-49a563d9-3f4609f2
Why gpg-pubkey-49a563d9-3f4609f2 ?
Why not gpg-pubkey-e418e3aa-<something>?
# rpm --checksig atk-1.3.5-1.i386.rpm
atk-1.3.5-1.i386.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS:
GPG#e418e3aa)
GPG-key e418e3aa is still reported to be missing!
# gpg --recv-keys 0x49a563d9
gpg: key 49A563D9: "Mark Cox <mjc@redhat.com>"
Are RH's signatures corrupt, is gpg broken, is rpm in trouble handling
certain types of signatures, am I missing something?
RH's rawhide signatures are not the only signatures I can reproduce this
issue with. I also can reproduce this issue with a few other package
signatures.
Ralf
[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
[]