[opensuse-factory] source_validator error: signature does not validate
Hello.
I can't build a package. Service source_validator failed.
% osc build
Run source service: /usr/lib/obs/service/format_spec_file --outdir /tmp/tmpVbBhay
Run source service: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i
/home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector.keyring
gpg: enabled debug flags: memstat
gpg: keyring `/tmp/check_if_valid_source_dir-NL8Ezs/.checkifvalidsourcedir-gpg-keyring' created
gpg: Oops: keyid_from_fingerprint: no pubkey
gpg: Oops: keyid_from_fingerprint: no pubkey
gpg: key 00000000 occurs more than once in the trustdb
gpg: key 015475F5: public key "Jakub Wilk
On Tue, 25 Jun 2013 13:57:35 +0400 Kyrill Detinov wrote:
% osc build Run source service: /usr/lib/obs/service/format_spec_file --outdir /tmp/tmpVbBhay Run source service: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector.keyring gpg: enabled debug flags: memstat gpg: keyring `/tmp/check_if_valid_source_dir-NL8Ezs/.checkifvalidsourcedir-gpg-keyring' created gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk
" imported gpg: Total number processed: 1 gpg: imported: 1 (RSA: 1) random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks gpg: enabled debug flags: memstat gpg: Signature made Mon Jun 24 22:36:51 2013 MSK using RSA key ID 015475F5 gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: Good signature from "Jakub Wilk " gpg: aka "Jakub Wilk " gpg: aka "Jakub Wilk " random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks (E) signature /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector-0.11.1.tar.gz.asc does not validate Aborting: service call failed: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i Source service run failed!
'osc --noservice' helps. It looks strange any way. -- WBR Kyrill
On Mon, Jul 01, 2013 at 01:03:04AM +0400, Kyrill Detinov wrote:
On Tue, 25 Jun 2013 13:57:35 +0400 Kyrill Detinov wrote:
% osc build Run source service: /usr/lib/obs/service/format_spec_file --outdir /tmp/tmpVbBhay Run source service: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector.keyring gpg: enabled debug flags: memstat gpg: keyring `/tmp/check_if_valid_source_dir-NL8Ezs/.checkifvalidsourcedir-gpg-keyring' created gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk
" imported gpg: Total number processed: 1 gpg: imported: 1 (RSA: 1) random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks gpg: enabled debug flags: memstat gpg: Signature made Mon Jun 24 22:36:51 2013 MSK using RSA key ID 015475F5 gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: Good signature from "Jakub Wilk " gpg: aka "Jakub Wilk " gpg: aka "Jakub Wilk " random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks (E) signature /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector-0.11.1.tar.gz.asc does not validate Aborting: service call failed: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i Source service run failed! 'osc --noservice' helps. It looks strange any way.
It seems that your keyring does contain slightly invalid data:
Oops: keyid_from_fingerprint: no pubkey gpg: Oops:
keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than
once in the trustdb gpg: key 015475F5: public key "Jakub Wilk
On Sun, 30 Jun 2013 23:40:06 +0200 Marcus Meissner wrote:
It seems that your keyring does contain slightly invalid data:
Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk
" imported gpg: Total number processed: 1
It was OK before I've removed gpg-offline from the spec. And I keep gpg-offline in my home project specs. Please look at build log: https://build.opensuse.org/package/rawlog?arch=i586&package=i18nspector&project=home%3ALazy_Kent&repository=openSUSE_Factory
Bits and pieces were imported, but apparently gpg returns an error.
No error from gpg:
gpg: Good signature from "Jakub Wilk
How did you get the keyring file?
gpg-offline --package=${PWD##*/} --add 015475F5 -- WBR Kyrill
On Mon, Jul 01, 2013 at 03:12:17AM +0400, Kyrill Detinov wrote:
On Sun, 30 Jun 2013 23:40:06 +0200 Marcus Meissner wrote:
It seems that your keyring does contain slightly invalid data:
Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk
" imported gpg: Total number processed: 1 It was OK before I've removed gpg-offline from the spec. And I keep gpg-offline in my home project specs. Please look at build log: https://build.opensuse.org/package/rawlog?arch=i586&package=i18nspector&project=home%3ALazy_Kent&repository=openSUSE_Factory
Bits and pieces were imported, but apparently gpg returns an error.
No error from gpg: gpg: Good signature from "Jakub Wilk
" Reproducible in graphics/icoutils.
How did you get the keyring file?
gpg-offline --package=${PWD##*/} --add 015475F5
Do you have any special local GPG configuration settings?
The local source verifier would also read them.
$ LANG=C bash ~/projects/obs-service-source_validator/20-files-present-and-referenced
/suse/meissner/projects/bs/home:Lazy_Kent/i18nspector/i18nspector.keyring
gpg: keyring `/tmp/check_if_valid_source_dir-K6jrFL/.checkifvalidsourcedir-gpg-keyring' created
gpg: key 015475F5: public key "Jakub Wilk
On Mon, 1 Jul 2013 14:50:43 +0200 Marcus Meissner wrote:
So all good here.
Not good at all.
First, I verify:
% gpg --verify i18nspector-0.16.tar.gz.asc
gpg: enabled debug flags: memstat
gpg: Signature made Fri Aug 22 21:23:19 2014 MSK using RSA key ID 015475F5
gpg: Good signature from "Jakub Wilk
participants (2)
-
Kyrill Detinov
-
Marcus Meissner