Mailinglist Archive: opensuse (1468 mails)

< Previous Next >
Re: [opensuse] gpg-pubkeys missing 'Distribution'
  • From: Anders Johansson <ajohansson@xxxxxxx>
  • Date: Sun, 7 Jun 2009 23:19:41 +0200
  • Message-id: <200906072319.41693.ajohansson@xxxxxxx>
On Sunday 07 June 2009 23:08:02 Linda Walsh wrote:
But this is a weird one (as it is inconsistent, but better than
the others that it is inconsistent with):
openSUSE 11.0 (i586) (noarch) : suse-build-key-1.0-855.1

It's a build key -- but is it only for signing i586 packages? Not sure
what was meant, but among "keys", it's the only one with ANY sort of
indication of what "Distribution" it was 'for', or was valid for signing.

The other 'gpg' keys, all have NO dist

"suse-build-key" is not a key, it is an rpm package, which contains a key.
You're right that it's not architecture dependant

and, using the above mentioned
rpm query, print out as:
(none) ((none)) : gpg-pubkey-0dfb3188-41ed929b

This on the other hand is a key. It is done by doing

rpm --import <gpg key>

So how do I tell what distro's the keys are good for signing?
How do I tell which are for old 'distro's, that I no longer want
to have enabled for "signed" installing?

There are only two suse keys in total. the suse "build" key (build@xxxxxxx)
and the security key (security@xxxxxxx)

They are used for all distributions, until they expire, at which time they get
an update. The current one will expire in May 2010, if I read correctly

The other keys you have could be various other repository keys. Each build
service repository has its own key, packman has its key and so on.

You can find out what each key is for with "rpm -qi". For example, here is the
output for the suse security key:

rpm -qi gpg-pubkey-3d25d3d9-36e12d04

Name : gpg-pubkey Relocations: (not relocatable)
Version : 3d25d3d9 Vendor: (none)
Release : 36e12d04 Build Date: Tue Dec 9 22:50:38
2008
Install Date: Tue Dec 9 22:50:38 2008 Build Host: localhost
Group : Public Keys Source RPM: (none)
Size : 0 License: pubkey
Signature : (none)
Summary : gpg(SuSE Security Team <security@xxxxxxx>)
Description :
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: rpm-4.4.2.3 (beecrypt-4.1.2)
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=Ay23
-----END PGP PUBLIC KEY BLOCK-----

Distribution: (none)
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

< Previous Next >
Follow Ups
References