http://bugzilla.opensuse.org/show_bug.cgi?id=1120838 http://bugzilla.opensuse.org/show_bug.cgi?id=1120838#c3 --- Comment #3 from William Brown --- I have performed the following steps: # transactional-update shell # zypper ar obs://network:samba:STABLE network:samba:STABLE Guessed: platform = openSUSE_Leap_$releasever Adding repository 'network:samba:STABLE' .................................................................................................................................................................[done] Repository 'network:samba:STABLE' successfully added URI : https://download.opensuse.org/repositories/network:/samba:/STABLE/openSUSE_L... Enabled : Yes GPG Check : Yes Autorefresh : No Priority : 99 (default priority) Repository priorities are without effect. All enabled repositories share the same priority. # zypper ref Retrieving repository 'network:samba:STABLE' metadata -------------------------------------------------------------------------------------------------------------------------------------------------------[\] Download (curl) error for 'https://download.opensuse.org/repositories/network:/samba:/STABLE/openSUSE_L...': Error code: Curl error 60 Error message: SSL certificate problem: unable to get local issuer certificate Abort, retry, ignore? [a/r/i/...? shows all options] (a): ? a - Skip retrieval of the file and abort current operation. r - Try to retrieve the file again. i - Skip retrieval of the file and try to continue with the operation without the file. u - Change current base URI and try retrieving the file again. s - Disable SSL certificate authority check and continue. [a/r/i/...? shows all options] (a): s SSL certificate authority check disabled. Abort, retry, ignore? [a/r/i/...? shows all options] (a): r Retrieving repository 'network:samba:STABLE' metadata -------------------------------------------------------------------------------------------------------------------------------------------------------[/] Download (curl) error for 'https://download.opensuse.org/repositories/network:/samba:/STABLE/openSUSE_L...': Error code: Curl error 60 Error message: SSL certificate problem: unable to get local issuer certificate Abort, retry, ignore? [a/r/i/...? shows all options] (a): s SSL certificate authority check disabled. Abort, retry, ignore? [a/r/i/...? shows all options] (a): r Retrieving repository 'network:samba:STABLE' metadata -------------------------------------------------------------------------------------------------------------------------------------------------------[-] Warning: File 'repomd.xml' from repository 'network:samba:STABLE' is unsigned. Note: Signing data enables the recipient to verify that no modifications occurred after the data were signed. Accepting data with no, wrong or unknown signature can lead to a corrupted system and in extreme cases even to a system compromise. Note: File 'repomd.xml' is the repositories master index file. It ensures the integrity of the whole repo. Warning: We can't verify that no one meddled with this file, so it might not be trustworthy anymore! You should not continue unless you know it's safe. File 'repomd.xml' from repository 'network:samba:STABLE' is unsigned, continue? [yes/no] (no): yes Retrieving repository 'network:samba:STABLE' metadata ....................................................................................................................................................[done] Building repository 'network:samba:STABLE' cache .........................................................................................................................................................[done] Repository 'openSUSE-Leap-15.0-Non-Oss' is up to date. Repository 'openSUSE-Leap-15.0-Oss' is up to date. Repository 'openSUSE-Leap-15.0-Update' is up to date. Repository 'openSUSE-Leap-15.0-Update-Non-Oss' is up to date. All repositories have been refreshed. I then rebooted, and ran transactional-update, and no updates were proposed. I realised that this is due to the vendor change being required, so I did a shell + zypper update allow-vendor-change, which has installed the packages. I'd like to note that even still, all packages failed to verify with GPG regardless of the enabled repo above: Retrieving package samba-4.9.3+git.121.c328d5e9101-lp150.1.1.x86_64 (34/39), 724.5 KiB ( 1.6 MiB unpacked) Retrieving: samba-4.9.3+git.121.c328d5e9101-lp150.1.1.x86_64.rpm ...........................................................................................................................[done (259.4 KiB/s)] samba-4.9.3+git.121.c328d5e9101-lp150.1.1.x86_64.rpm: Header V3 DSA/SHA1 Signature, key ID 27daa6b9: NOKEY V3 DSA/SHA1 Signature, key ID 27daa6b9: NOKEY Looking for gpg key ID 27DAA6B9 in cache /var/cache/zypp/pubkeys. Repository network:samba:STABLE does not define additional 'gpgkey=' URLs. samba-4.9.3+git.121.c328d5e9101-lp150.1.1.x86_64 (network:samba:STABLE): Signature verification failed [4-Signatures public key is not available] Abort, retry, ignore? [a/r/i] (a): i I really appreciate your time with this issue. Perhaps transactional-update needs to inherit some of the addrepo and other repo commands similar to how it does pkg install? -- You are receiving this mail because: You are the assignee for the bug.