Comment # 3 on bug 1120838 from 
I have performed the following steps:

# transactional-update shell

# zypper ar obs://network:samba:STABLE network:samba:STABLE
Guessed: platform = openSUSE_Leap_$releasever
Adding repository 'network:samba:STABLE'
.................................................................................................................................................................[done]
Repository 'network:samba:STABLE' successfully added

URI         :
https://download.opensuse.org/repositories/network:/samba:/STABLE/openSUSE_Leap_15.0
Enabled     : Yes
GPG Check   : Yes
Autorefresh : No
Priority    : 99 (default priority)

Repository priorities are without effect. All enabled repositories share the
same priority.

# zypper ref
Retrieving repository 'network:samba:STABLE' metadata
-------------------------------------------------------------------------------------------------------------------------------------------------------[\]
Download (curl) error for
'https://download.opensuse.org/repositories/network:/samba:/STABLE/openSUSE_Leap_15.0/repodata/repomd.xml':
Error code: Curl error 60
Error message: SSL certificate problem: unable to get local issuer certificate

Abort, retry, ignore? [a/r/i/...? shows all options] (a): ?

a - Skip retrieval of the file and abort current operation.
r - Try to retrieve the file again.
i - Skip retrieval of the file and try to continue with the operation without
the file.
u - Change current base URI and try retrieving the file again.
s - Disable SSL certificate authority check and continue.

[a/r/i/...? shows all options] (a): s
SSL certificate authority check disabled.
Abort, retry, ignore? [a/r/i/...? shows all options] (a): r
Retrieving repository 'network:samba:STABLE' metadata
-------------------------------------------------------------------------------------------------------------------------------------------------------[/]
Download (curl) error for
'https://download.opensuse.org/repositories/network:/samba:/STABLE/openSUSE_Leap_15.0/repodata/repomd.xml':
Error code: Curl error 60
Error message: SSL certificate problem: unable to get local issuer certificate

Abort, retry, ignore? [a/r/i/...? shows all options] (a): s
SSL certificate authority check disabled.
Abort, retry, ignore? [a/r/i/...? shows all options] (a): r
Retrieving repository 'network:samba:STABLE' metadata
-------------------------------------------------------------------------------------------------------------------------------------------------------[-]
Warning: File 'repomd.xml' from repository 'network:samba:STABLE' is unsigned.

    Note: Signing data enables the recipient to verify that no modifications
occurred after the data
    were signed. Accepting data with no, wrong or unknown signature can lead to
a corrupted system
    and in extreme cases even to a system compromise.

    Note: File 'repomd.xml' is the repositories master index file. It ensures
the integrity of the
    whole repo.

    Warning: We can't verify that no one meddled with this file, so it might
not be trustworthy
    anymore! You should not continue unless you know it's safe.

File 'repomd.xml' from repository 'network:samba:STABLE' is unsigned, continue?
[yes/no] (no): yes
Retrieving repository 'network:samba:STABLE' metadata
....................................................................................................................................................[done]
Building repository 'network:samba:STABLE' cache
.........................................................................................................................................................[done]
Repository 'openSUSE-Leap-15.0-Non-Oss' is up to date.
Repository 'openSUSE-Leap-15.0-Oss' is up to date.
Repository 'openSUSE-Leap-15.0-Update' is up to date.
Repository 'openSUSE-Leap-15.0-Update-Non-Oss' is up to date.
All repositories have been refreshed.



I then rebooted, and ran transactional-update, and no updates were proposed. I
realised that this is due to the vendor change being required, so I did a shell
+ zypper update allow-vendor-change, which has installed the packages. I'd like
to note that even still, all packages failed to verify with GPG regardless of
the enabled repo above:

Retrieving package samba-4.9.3+git.121.c328d5e9101-lp150.1.1.x86_64            
                                                                               
         (34/39), 724.5 KiB (  1.6 MiB unpacked)
Retrieving: samba-4.9.3+git.121.c328d5e9101-lp150.1.1.x86_64.rpm
...........................................................................................................................[done
(259.4 KiB/s)]
samba-4.9.3+git.121.c328d5e9101-lp150.1.1.x86_64.rpm:
    Header V3 DSA/SHA1 Signature, key ID 27daa6b9: NOKEY
    V3 DSA/SHA1 Signature, key ID 27daa6b9: NOKEY

Looking for gpg key ID 27DAA6B9 in cache /var/cache/zypp/pubkeys.
Repository network:samba:STABLE does not define additional 'gpgkey=' URLs.
samba-4.9.3+git.121.c328d5e9101-lp150.1.1.x86_64 (network:samba:STABLE):
Signature verification failed [4-Signatures public key is not available]
Abort, retry, ignore? [a/r/i] (a): i


I really appreciate your time with this issue. Perhaps transactional-update
needs to inherit some of the addrepo and other repo commands similar to how it
does pkg install?

You are receiving this mail because: