Mailinglist Archive: opensuse-bugs (3178 mails)
| < Previous | Next > |
[Bug 727586] [security] Java:packages: Bug -- repository "signed with an unknown key"
- From: bugzilla_noreply@xxxxxxxxxx
- Date: Wed, 2 May 2012 05:24:49 +0000
- Message-id: <20120502052449.A86C2CC7D4@soval.provo.novell.com>
https://bugzilla.novell.com/show_bug.cgi?id=727586
https://bugzilla.novell.com/show_bug.cgi?id=727586#c29
Michael Smith <msmith@xxxxxxxxx> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |msmith@xxxxxxxxx
--- Comment #29 from Michael Smith <msmith@xxxxxxxxx> 2012-05-02 05:24:47 UTC
---
(In reply to comment #21)
The problem is on the PBS side, repomd.xml.asc is signed with F7B4039CC2C0E8D4
but repomd.xml.key is C2C0E8D4
The last 8 digits of F7B4039CC2C0E8D4 are C2C0E8D4. Does that mean anything?
Does anyone have a copy of the real key? The repomd.xml.key does not seem to
match the repomd.xml.asc, and without the key file, I can't push packages from
this repository through Puppet. I've googled high and low and I can't find key
F7B4039CC2C0E8D4.
I noticed "gpg --import" doesn't like the key in repomd.xml.key, either:
gpg: public key C2C0E8D4 is 109 seconds newer than the signature
gpg: public key C2C0E8D4 is 109 seconds newer than the signature
gpg: key C2C0E8D4: no valid user IDs
gpg: this may be caused by a missing self-signature
gpg: Total number processed: 1
gpg: w/o user IDs: 1
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
| < Previous | Next > |