[packagekit] signed packages are untrusted
Richard Hughes
hughsient at gmail.com
Tue Jan 4 09:51:36 PST 2011
On 4 January 2011 17:49, Adam Winberg <Adam.Winberg at smhi.se> wrote:
> packagekit complains about untrusted packages even though i have signed them and imported the key:
>
> [root at nrlx061 ~]# rpm --checksig /tmp/numlockx-1.1-1.el6.rf.x86_64.rpm
> /tmp/numlockx-1.1-1.el6.rf.x86_64.rpm: rsa sha1 (md5) pgp md5 OK
>
> "pkcon install-local /tmp/numlockx-1.1-1.el6.rf.x86_64.rpm" works fine, but when i move the rpm to a repository then i get "Message: untrusted-package: The package numlockx from repo rhel6_workstation_external is untrusted". So i thought a package was trusted if it was signed but it doesnt seem so?
Have you got the correct key in the repo file?
e.g.
gpgcheck=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-fedora-$basearch
Richard.
More information about the PackageKit
mailing list