Michael:
We are using this version of signd, built in 2010.
obs-signd-2.1.2-1.1
Name : obs-signd Relocations: (not relocatable)
Version : 2.1.2 Vendor: openSUSE Build Service
Release : 1.1 Build Date: Wed Nov 3 22:57:22 2010
Install Date: Fri Apr 29 12:44:47 2011 Build Host: build12
Group : Productivity/Networking/Web/Utilities Source RPM: obs-signd-2.1.2-1.1.src.rpm
Size : 77799 License: GPL
Signature : DSA/SHA1, Wed Nov 3 22:57:32 2010, Key ID 85753aa5eefefde9
URL : http://en.opensuse.org/Build_Service
Summary : The sign daemon
Description :
The openSUSE Build Service sign client and daemon.
This daemon can be used to sign anything via gpg, but it speaks with a remote server
to avoid the need to host the private key on the same server.
Authors:
--------
The openSUSE Team
When using the OBS signing service, we observe errors during rpm installation in Redhat 7 x86_64 builds, related to keys in the rpm headers.
For example, after we build and sign the perl-Authen-NTLM rpm, we see this in a downstream project that attempts to install it:
installing perl-Authen-NTLM-1.02-1.3 error: .init_b_cache/perl-Authen-NTLM.rpm: rpmReadSignature failed: sigh load: BAD
Research on rpmReadSignature errors reveals rpm header corruption as the root cause. Maybe you're using an old version of "obs-signd", we fixed a bug in late 2011 that caused corrupted headers in some cases. If that's not the issue you'll have to send me the corrupt rpm and I'll try to figure out what went wrong. Cheers, Michael. -- Michael Schroeder mls@suse.de SUSE LINUX Products GmbH, GF Jeff Hawn, HRB 16746 AG Nuernberg main(_){while(_=~getchar())putchar(~_-1/(~(_|32)/13*2-11)*13);}