[packagekit] signed packages are untrusted
Adam Winberg
Adam.Winberg at smhi.se
Tue Jan 4 09:56:11 PST 2011
On Tue, 2011-01-04 at 17:51 +0000, Richard Hughes wrote:
> On 4 January 2011 17:49, Adam Winberg <Adam.Winberg at smhi.se> wrote:
> > packagekit complains about untrusted packages even though i have signed them and imported the key:
> >
> > [root at nrlx061 ~]# rpm --checksig /tmp/numlockx-1.1-1.el6.rf.x86_64.rpm
> > /tmp/numlockx-1.1-1.el6.rf.x86_64.rpm: rsa sha1 (md5) pgp md5 OK
> >
> > "pkcon install-local /tmp/numlockx-1.1-1.el6.rf.x86_64.rpm" works fine, but when i move the rpm to a repository then i get "Message: untrusted-package: The package numlockx from repo rhel6_workstation_external is untrusted". So i thought a package was trusted if it was signed but it doesnt seem so?
>
> Have you got the correct key in the repo file?
>
> e.g.
>
> gpgcheck=1
> gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-fedora-$basearch
>
> Richard.
Hm, i thought it'd be enough to do a "rpm --import" but i have now added
as per your suggestion and it works - thanks!
/Adam
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/packagekit/attachments/20110104/63006bce/attachment-0002.htm>
More information about the PackageKit
mailing list