[opensuse-factory] source_validator error: signature does not validate

newer
[opensuse-factory] support systemd...

Kyrill Detinov

25 Jun 2013 25 Jun '13

09:57

Hello. I can't build a package. Service source_validator failed. % osc build Run source service: /usr/lib/obs/service/format_spec_file --outdir /tmp/tmpVbBhay Run source service: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector.keyring gpg: enabled debug flags: memstat gpg: keyring `/tmp/check_if_valid_source_dir-NL8Ezs/.checkifvalidsourcedir-gpg-keyring' created gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk " imported gpg: Total number processed: 1 gpg: imported: 1 (RSA: 1) random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks gpg: enabled debug flags: memstat gpg: Signature made Mon Jun 24 22:36:51 2013 MSK using RSA key ID 015475F5 gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: Good signature from "Jakub Wilk " gpg: aka "Jakub Wilk " gpg: aka "Jakub Wilk " random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks (E) signature /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector-0.11.1.tar.gz.asc does not validate Aborting: service call failed: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i Source service run failed! As far as I can see, the signature is good. This also happens with another package (graphics/icoutils). What is the problem? -- WBR Kyrill

Attachments:

signature.asc (application/pgp-signature — 163 bytes)

Show replies by date

Kyrill Detinov

30 Jun 30 Jun

21:03

New subject: [opensuse-factory] Re: source_validator error: signature does not validate

On Tue, 25 Jun 2013 13:57:35 +0400 Kyrill Detinov wrote:

...

% osc build Run source service: /usr/lib/obs/service/format_spec_file --outdir /tmp/tmpVbBhay Run source service: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector.keyring gpg: enabled debug flags: memstat gpg: keyring `/tmp/check_if_valid_source_dir-NL8Ezs/.checkifvalidsourcedir-gpg-keyring' created gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk " imported gpg: Total number processed: 1 gpg: imported: 1 (RSA: 1) random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks gpg: enabled debug flags: memstat gpg: Signature made Mon Jun 24 22:36:51 2013 MSK using RSA key ID 015475F5 gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: Good signature from "Jakub Wilk " gpg: aka "Jakub Wilk " gpg: aka "Jakub Wilk " random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks (E) signature /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector-0.11.1.tar.gz.asc does not validate Aborting: service call failed: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i Source service run failed!

'osc --noservice' helps. It looks strange any way. -- WBR Kyrill

Marcus Meissner

21:40

New subject: [opensuse-factory] Re: source_validator error: signature does not validate

On Mon, Jul 01, 2013 at 01:03:04AM +0400, Kyrill Detinov wrote:

...

On Tue, 25 Jun 2013 13:57:35 +0400 Kyrill Detinov wrote:

...
% osc build Run source service: /usr/lib/obs/service/format_spec_file --outdir /tmp/tmpVbBhay Run source service: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector.keyring gpg: enabled debug flags: memstat gpg: keyring `/tmp/check_if_valid_source_dir-NL8Ezs/.checkifvalidsourcedir-gpg-keyring' created gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk " imported gpg: Total number processed: 1 gpg: imported: 1 (RSA: 1) random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks gpg: enabled debug flags: memstat gpg: Signature made Mon Jun 24 22:36:51 2013 MSK using RSA key ID 015475F5 gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: Good signature from "Jakub Wilk " gpg: aka "Jakub Wilk " gpg: aka "Jakub Wilk " random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks (E) signature /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector-0.11.1.tar.gz.asc does not validate Aborting: service call failed: /usr/lib/obs/service/source_validator --outdir /tmp/tmpIQYU6i Source service run failed!

'osc --noservice' helps. It looks strange any way.

It seems that your keyring does contain slightly invalid data: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk " imported gpg: Total number processed: 1 Bits and pieces were imported, but apparently gpg returns an error. How did you get the keyring file? Ciao, Marcus -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org

Kyrill Detinov

23:12

New subject: [opensuse-factory] Re: source_validator error: signature does not validate

On Sun, 30 Jun 2013 23:40:06 +0200 Marcus Meissner wrote:

...

It seems that your keyring does contain slightly invalid data:

Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk " imported gpg: Total number processed: 1

It was OK before I've removed gpg-offline from the spec. And I keep gpg-offline in my home project specs. Please look at build log: https://build.opensuse.org/package/rawlog?arch=i586&package=i18nspector&project=home%3ALazy_Kent&repository=openSUSE_Factory

...

Bits and pieces were imported, but apparently gpg returns an error.

No error from gpg: gpg: Good signature from "Jakub Wilk " Reproducible in graphics/icoutils.

...

How did you get the keyring file?

gpg-offline --package=${PWD##*/} --add 015475F5 -- WBR Kyrill

Marcus Meissner

1 Jul 1 Jul

12:50

New subject: [opensuse-factory] Re: source_validator error: signature does not validate

On Mon, Jul 01, 2013 at 03:12:17AM +0400, Kyrill Detinov wrote:

...

On Sun, 30 Jun 2013 23:40:06 +0200 Marcus Meissner wrote:

...
It seems that your keyring does contain slightly invalid data:

Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: key 015475F5: public key "Jakub Wilk " imported gpg: Total number processed: 1

It was OK before I've removed gpg-offline from the spec. And I keep gpg-offline in my home project specs. Please look at build log: https://build.opensuse.org/package/rawlog?arch=i586&package=i18nspector&project=home%3ALazy_Kent&repository=openSUSE_Factory

...
Bits and pieces were imported, but apparently gpg returns an error.

No error from gpg: gpg: Good signature from "Jakub Wilk "

Reproducible in graphics/icoutils.

...
How did you get the keyring file?

gpg-offline --package=${PWD##*/} --add 015475F5

Do you have any special local GPG configuration settings? The local source verifier would also read them. $ LANG=C bash ~/projects/obs-service-source_validator/20-files-present-and-referenced /suse/meissner/projects/bs/home:Lazy_Kent/i18nspector/i18nspector.keyring gpg: keyring `/tmp/check_if_valid_source_dir-K6jrFL/.checkifvalidsourcedir-gpg-keyring' created gpg: key 015475F5: public key "Jakub Wilk " imported gpg: Total number processed: 1 gpg: imported: 1 (RSA: 1) gpg: Signature made Mon Jun 24 20:36:51 2013 CEST using RSA key ID 015475F5 gpg: please do a --check-trustdb gpg: Good signature from "Jakub Wilk " gpg: aka "Jakub Wilk " gpg: aka "Jakub Wilk " gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: CDB5 A124 3ACD B630 09AD 0721 2D4E B3A6 0154 75F5 $ echo $? 0 $ So all good here. Ciao, Marcus -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org

Kyrill Detinov

25 Aug 25 Aug

23:37

New subject: [opensuse-factory] Re: source_validator error: signature does not validate

On Mon, 1 Jul 2013 14:50:43 +0200 Marcus Meissner wrote:

...

So all good here.

Not good at all. First, I verify: % gpg --verify i18nspector-0.16.tar.gz.asc gpg: enabled debug flags: memstat gpg: Signature made Fri Aug 22 21:23:19 2014 MSK using RSA key ID 015475F5 gpg: Good signature from "Jakub Wilk " [unknown] gpg: aka "Jakub Wilk " [full] gpg: aka "Jakub Wilk " [full] gpg: aka "[jpeg image of size 6044]" [unknown] random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks Then, building for M17N: % osc build openSUSE:Factory Run source service: /usr/lib/obs/service/format_spec_file --outdir /tmp/tmpa_6e9D Run source service: /usr/lib/obs/service/source_validator --outdir /tmp/tmp2Q35Z6 gpg: enabled debug flags: memstat gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks gpg: enabled debug flags: memstat gpg: Signature made Fri Aug 22 21:23:19 2014 MSK using RSA key ID 015475F5 gpg: Oops: keyid_from_fingerprint: no pubkey gpg: Oops: keyid_from_fingerprint: no pubkey gpg: key 00000000 occurs more than once in the trustdb gpg: Good signature from "Jakub Wilk " [unknown] gpg: aka "Jakub Wilk " [full] gpg: aka "Jakub Wilk " [full] random usage: poolsize=600 mixed=0 polls=0/0 added=0/0 outmix=0 getlvl1=0/0 getlvl2=0/0 secmem usage: 0/32768 bytes in 0 blocks (E) signature /home/kent/rpmbuild/projects/M17N/i18nspector/i18nspector-0.16.tar.gz.asc does not validate Aborting: service call failed: /usr/lib/obs/service/source_validator --outdir /tmp/tmp2Q35Z6 Source service run failed! I see: "gpg: Good signature from "Jakub Wilk" [unknown]" and then: (E) signature ... does not validate Aborting:... What is wrong? -- WBR Kyrill

3534

Age (days ago)

3960

Last active (days ago)

List overview

Download

5 comments

2 participants

participants (2)

Kyrill Detinov
Marcus Meissner