[opensuse-buildservice] local Fedora_Extras_5 build?
Doing a local "osc build Fedora_Extras_5 i586 my.spec" currently fails with: - --- snip --- The following package could not be verified: /var/tmp/osbuild-packagecache/Fedora:Core5/standard/i386/SysVinit-2.86-2.2.2.i386.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS: GPG#4f2a6fd2) - If the key is missing, install it first. For example, do the following as root: gpg --keyserver pgp.mit.edu --recv-keys 4f2a6fd2 gpg --armor --export 4f2a6fd2 > /root/keyfile-4f2a6fd2 rpm --import /root/keyfile-4f2a6fd2 Then, just start the build again. - --- snap --- Isn't this something that "osc build" should take care of for me? Otherwise, am I expected to run the mentioned commands manually in the chroot? Or am I missing something else? +Thomas -- Thomas Anders (thomas.anders at blue-cable.de) --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-buildservice+help@opensuse.org
On 2006-11-18 11:29:56 +0100, Thomas Anders wrote:
Doing a local "osc build Fedora_Extras_5 i586 my.spec" currently fails with:
- --- snip --- The following package could not be verified: /var/tmp/osbuild-packagecache/Fedora:Core5/standard/i386/SysVinit-2.86-2.2.2.i386.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS: GPG#4f2a6fd2)
- If the key is missing, install it first. For example, do the following as root: gpg --keyserver pgp.mit.edu --recv-keys 4f2a6fd2 gpg --armor --export 4f2a6fd2 > /root/keyfile-4f2a6fd2 rpm --import /root/keyfile-4f2a6fd2
Then, just start the build again. - --- snap ---
Isn't this something that "osc build" should take care of for me? Otherwise, am I expected to run the mentioned commands manually in the chroot? Or am I missing something else?
it calls "rpm --root <chrootdir> ...." iirc. darix -- openSUSE - SUSE Linux is my linux openSUSE is good for you www.opensuse.org --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-buildservice+help@opensuse.org
On Sat, Nov 18, 2006 at 11:29:56AM +0100, Thomas Anders wrote:
Doing a local "osc build Fedora_Extras_5 i586 my.spec" currently fails with:
- --- snip --- The following package could not be verified: /var/tmp/osbuild-packagecache/Fedora:Core5/standard/i386/SysVinit-2.86-2.2.2.i386.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS: GPG#4f2a6fd2)
- If the key is missing, install it first. For example, do the following as root: gpg --keyserver pgp.mit.edu --recv-keys 4f2a6fd2 gpg --armor --export 4f2a6fd2 > /root/keyfile-4f2a6fd2 rpm --import /root/keyfile-4f2a6fd2
Then, just start the build again. - --- snap ---
Isn't this something that "osc build" should take care of for me?
Yes, looks like a bug or limitation of 'osc' to me. It wither needs to verify with '--nosignature' or offer an option to select this. (Not that the build servise itself doesn't to the verification, so the builds just fail with osc.) Cheers, Michael. -- Michael Schroeder mls@suse.de main(_){while(_=~getchar())putchar(~_-1/(~(_|32)/13*2-11)*13);} --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-buildservice+help@opensuse.org
On Sat, Nov 18, 2006 at 11:29:56AM +0100, Thomas Anders wrote:
Doing a local "osc build Fedora_Extras_5 i586 my.spec" currently fails with:
- --- snip --- The following package could not be verified: /var/tmp/osbuild-packagecache/Fedora:Core5/standard/i386/SysVinit-2.86-2.2.2.i386.rpm: (SHA1) DSA sha1 md5 (GPG) NOT OK (MISSING KEYS: GPG#4f2a6fd2)
- If the key is missing, install it first. For example, do the following as root: gpg --keyserver pgp.mit.edu --recv-keys 4f2a6fd2 gpg --armor --export 4f2a6fd2 > /root/keyfile-4f2a6fd2 rpm --import /root/keyfile-4f2a6fd2
Then, just start the build again. - --- snap ---
Isn't this something that "osc build" should take care of for me? Otherwise, am
osc could automatically do that in theory, yes, if people are fine with that. However, it does not run as root, so it isn't really possible. Do people want an option to disable gpg key checking?
I expected to run the mentioned commands manually in the chroot? Or am I missing something else?
No, in the system. Those commands import the key into the systems's rpm keychain, so the packages are verified even before the buildsystem is started to set up. If you have any suggestions how the text could be made clearer I'd be grateful. Thanks, Peter -- SUSE LINUX Products GmbH Bug, bogey, bugbear, bugaboo: Research & Development A malevolent monster (not true?); Some mischief microbic; What makes someone phobic; The work one does not want to do. From: Chris Young (The Omnificent English Dictionary In Limerick Form)
participants (4)
-
Dr. Peter Poeml -
Marcus Rueckert -
Michael Schroeder -
Thomas Anders